[teiid-issues] [JBoss JIRA] (TEIIDSB-86) Plans for secure socket transports
[
https://issues.jboss.org/browse/TEIIDSB-86?page=com.atlassian.jira.plugin...
]
Steven Hawkins commented on TEIIDSB-86:
---------------------------------------
1-way secure transports using the service generated certificate
While this simplifies the creation of keystore, it is cumbersome for intra and especially
external cluster clients. Internal generally require an init container to prep the
service.ca mounted file. External clients still require some mechanism to export the
public key(s). The only option to externalize this is to use stunnels so that the ssl
configuration is defined on the stunnel route.
Plans for secure socket transports
----------------------------------
Key: TEIIDSB-86
URL: https://issues.jboss.org/browse/TEIIDSB-86
Project: Teiid Spring Boot
Issue Type: Quality Risk
Reporter: Steven Hawkins
Assignee: Steven Hawkins
Priority: Major
Fix For: 1.1.0
The Teiid Spring Boot configuration allows for only non-secured pg / JDBC socket
transports. For external client scenarios and even for varying degrees of compliance with
intra-cluster traffic, a secure layer may be required.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)