[jboss-jira] [JBoss JIRA] (WFLY-12592) Usage of Elytron's SSL-Context in establishing SSL communication with DataBase
Darran Lofthouse (Jira)
issues at jboss.org
Fri Sep 27 06:52:00 EDT 2019
[ https://issues.jboss.org/browse/WFLY-12592?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13790140#comment-13790140 ]
Darran Lofthouse commented on WFLY-12592:
-----------------------------------------
Setting the 'default-ssl-context' attribute on the Elytron subsystem provides a way to register a JVM wide SSLContext managed by the Elytron subsystem without the need for the 'javax.net.ssl' system properties.
> Usage of Elytron's SSL-Context in establishing SSL communication with DataBase
> ------------------------------------------------------------------------------
>
> Key: WFLY-12592
> URL: https://issues.jboss.org/browse/WFLY-12592
> Project: WildFly
> Issue Type: Feature Request
> Components: Security
> Affects Versions: 14.0.0.Final
> Reporter: Saurabh Shriramwar
> Priority: Major
>
> To secure the connection between Wildfly and datasource using TCP/IP over SSL datasource should be able to utilize the ssl-context for trust-managers (pointing to java keystore or truststore containing the datasource CA certificates) configured in Elytron so that Wildfly can trust the datasource connection instead of setting java truststore in the system properties or providing as JAVA_OPTS (-Djavax.net.ssl.trustStore=/path/to/truststore.jks)
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
More information about the jboss-jira
mailing list