[jboss-jira] [JBoss JIRA] (ELY-433) Support verification of a users certificate against an LDAP Server
Jan Kalina (JIRA)
issues at jboss.org
Tue Sep 20 11:51:01 EDT 2016
[ https://issues.jboss.org/browse/ELY-433?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13295853#comment-13295853 ]
Jan Kalina edited comment on ELY-433 at 9/20/16 11:50 AM:
----------------------------------------------------------
It is possible to do this by two ways:
* To use LDAP as trust-store and to have a whole certificate of user in database
* To have a CA in trust-store and authenticate users by certificate serial number (Apache HTTP server do it by this way)
* Not mentioning a possibility to use same property of certificate signed by CA
Which way(s) do we want to support?
was (Author: honza889):
It is possible to do this by two ways:
* To use LDAP as trust-store and authenticate directly by whole certificate
* To have a CA in trust-store and authenticate users by certificate serial number (Apache HTTP server do it by this way)
Which way(s) do we want to support?
> Support verification of a users certificate against an LDAP Server
> ------------------------------------------------------------------
>
> Key: ELY-433
> URL: https://issues.jboss.org/browse/ELY-433
> Project: WildFly Elytron
> Issue Type: Feature Request
> Components: Realms, SSL
> Reporter: Darran Lofthouse
> Assignee: Jan Kalina
> Fix For: 1.1.0.Beta10
>
>
> LDAP realm should be able to authenticate user using user certificate.
> This is specifically for authentication - NOT for general TrustManager requirements - another Jira issue is tracking looking into a KeyStore implementation backed by LDAP.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list