smolnar82 opened a new pull request, #717:
URL: https://github.com/apache/knox/pull/717
## What changes were proposed in this pull request?
There are 2 changes in this PR:
- TLS cipher suites and protocols are now customizable in CM service
discovery:
- end-users can define the TLS protocol(s) and cipher suite(s) to use
while creating a secure connection to a CM instance
- if none is defined, Knox will pick up the relevant supported values from
Java's own `java.security` thru the acquired SSL context.
- Added a new method to indicate the TLS protocols to be included when
creating SSL context in the embedded Jetty server. Prior to this change,
end-users could only tell what to exclude.
## How was this patch tested?
Unit testing and running service discovery in a secure cluster with updated
SSL configs.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
