Uploaded image for project: 'Thorntail'
  1. Thorntail
  2. THORN-1040

can't enable HTTPS without setting swarm.http.certificate.alias

    XMLWordPrintable

Details

    • Bug
    • Status: Closed (View Workflow)
    • Major
    • Resolution: Done
    • None
    • 2017.3.3
    • None
    • None
    • 2017-Mar-A

    Description

      WildFly Core's FileKeystore.load method is clearly able to use a keystore for which a key alias isn't defined (though not sure what would happen if there are multiple keys). However, Swarm's CertInfo.isValid rejects that situation.

      This means that configuration like this

      swarm:
        http:
          keystore:
            path: /path/to/keystore
            password: password
      

      isn't enough to enable HTTPS, the key alias needs to be specified as well. Which isn't always necessary. IMHO, Swarm is being overly cautious here.

      Attachments

        Activity

          People

            bmcwhirt@redhat.com Bob McWhirter (Inactive)
            lthon@redhat.com Ladislav Thon
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: