Uploaded image for project: 'Quarkus'
  1. Quarkus
  2. QUARKUS-2246

Integrate Vertx HTTP extension with custom CredentialsProvider

    XMLWordPrintable

Details

    Description

      Customer would like to configure below points:
      1. client-cert authentication/authorization with 2 way ssl

      Note this requirement only applies to configuring Quarkus Vert.x HTTP component.

       Quarkus support mTLS authentication so that you can authenticate users based on their X.509 certificates as described in [1]. It does not explicitly support client-cert auth like formm basic etc.

      2. the keystore/truststore passwords to be stored in the vault file.

      There is no configuration option listed in [2] to store keystore passwords in vault.
      [1]https://quarkus.io/guides/security-built-in-authentication#mutual-tls

      [2]https://quarkus.io/guides/all-config

       

      Could you kindly let us know how Keystore and trustore passwords to be stored on vault while using RHAPM + quarkus integration on Openshift ?Any examples or doc on the same?

      Attachments

        Issue Links

          account is impacted by

          Task - Represents a small unit of work that is not end-user facing. RHPAM-4423 Update Quarkus version in PIM to support Keystore and trustore passwords to be stored on vault

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is cloned by

          Task - Represents a small unit of work that is not end-user facing. RHPAM-4423 Update Quarkus version in PIM to support Keystore and trustore passwords to be stored on vault

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              sbiarozk Sergey Beryozkin
              rhn-support-spatra Sweta Patra (Inactive)
              Rostislav Svoboda Rostislav Svoboda
              Votes:
              2 Vote for this issue
              Watchers:
              16 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: