[jboss-jira] [JBoss JIRA] (ELY-587) SSLContext integration into DirContext supplier service

Jan Kalina (JIRA) issues at jboss.org
Sat Aug 13 16:23:00 EDT 2016 

    [ https://issues.jboss.org/browse/ELY-587?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13278816#comment-13278816 ] 

Jan Kalina edited comment on ELY-587 at 8/13/16 4:22 PM:
---------------------------------------------------------

*How to pass SSLContext into DirContext:*
http://docs.oracle.com/javase/jndi/tutorial/ldap/security/ssl.html (Using Custom Sockets)
Problem:
*How to decide in CustomSocketFactory, which DirContext it is?*
what happens with socketFactory is described here:
http://grepcode.com/file/repository.grepcode.com/java/root/jdk/openjdk/8u40-b25/com/sun/jndi/ldap/Connection.java#279
*Idea:* To use ThreadLocal to store created SSLSocketFactory before every LDAP connecting. Us SocketFactory will delegate to SocketFactory from ThreadLocal.
(I dont see other way to pass same information about currently connecting DirContext into SocketFactory...)


was (Author: honza889):
*How to pass SSLContext into DirContext:*
http://docs.oracle.com/javase/jndi/tutorial/ldap/security/ssl.html (Using Custom Sockets)
Problem:
*How to decide in CustomSocketFactory, which DirContext it is?*
what happens with socketFactory is described here:
http://grepcode.com/file/repository.grepcode.com/java/root/jdk/openjdk/8u40-b25/com/sun/jndi/ldap/Connection.java#279
*Idea:* To use ThreadLocal to store created SSLSocketFactory before every LDAP connecting. Us SocketFactory will delegate to SocketFactory from ThreadLocal.
(I dont see other way to send SSLContext/SSLSocketFactory of given DirContext into it without standalone class for every ssl-context)

> SSLContext integration into DirContext supplier service
> -------------------------------------------------------
>
>                 Key: ELY-587
>                 URL: https://issues.jboss.org/browse/ELY-587
>             Project: WildFly Elytron
>          Issue Type: Task
>          Components: SSL
>            Reporter: Jan Kalina
>            Assignee: Jan Kalina
>
> * we already have a resource to define the SSLContext
> * we want use it for connection to LDAP
> * resource of DirContext supplier (see ELY-462) should reference SSLContext resource / capability



--
This message was sent by Atlassian JIRA
(v6.4.11#64026)

More information about the jboss-jira mailing list