[
https://issues.apache.org/jira/browse/JCR-4536?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17112683#comment-17112683
]
Max Barrass commented on JCR-4536:
----------------------------------
[~reschke] thank you for feedback.
The code only has the changes needed, this was already pointed out and cleaned
up. Anything, in particular, you want to be reviewed?
This came about from using Adobes and Vendor environments where devs do not
have control to update environments to have the proper config of SSL.
This behaviour is similar to when you run curl with --insecure option, this is
not a default option and requires an explicit parameter to activate, its not
something that you unintentionally would do.
Happy to add Logging message if it's beneficial, do you want me to add this?
> Feature/enable insecure https host
> ----------------------------------
>
> Key: JCR-4536
> URL: https://issues.apache.org/jira/browse/JCR-4536
> Project: Jackrabbit Content Repository
> Issue Type: Improvement
> Components: jackrabbit-spi2dav
> Reporter: Max Barrass
> Priority: Major
>
> Adding support for insecure parameter to allow access to https with invalid
> certs.
> Enabling optional support for expired ssl certs when using https on
> development server with self generated certificates.
> Pull request already created and ready for review
> [https://github.com/apache/jackrabbit/pull/88]
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
