[teiid-issues] [JBoss JIRA] (TEIIDSB-86) Plans for secure socket transports
Steven Hawkins (Jira)
issues at jboss.org
Tue May 14 12:20:00 EDT 2019
[ https://issues.jboss.org/browse/TEIIDSB-86?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13733382#comment-13733382 ]
Steven Hawkins commented on TEIIDSB-86:
---------------------------------------
> 1-way secure transports using the service generated certificate
While this simplifies the creation of keystore, it is cumbersome for intra and especially external cluster clients. Internal generally require an init container to prep the service.ca mounted file. External clients still require some mechanism to export the public key(s). The only option to externalize this is to use stunnels so that the ssl configuration is defined on the stunnel route.
> Plans for secure socket transports
> ----------------------------------
>
> Key: TEIIDSB-86
> URL: https://issues.jboss.org/browse/TEIIDSB-86
> Project: Teiid Spring Boot
> Issue Type: Quality Risk
> Reporter: Steven Hawkins
> Assignee: Steven Hawkins
> Priority: Major
> Fix For: 1.1.0
>
>
> The Teiid Spring Boot configuration allows for only non-secured pg / JDBC socket transports. For external client scenarios and even for varying degrees of compliance with intra-cluster traffic, a secure layer may be required.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
More information about the teiid-issues
mailing list