[jira] [Commented] (QPID-3914) SSL Client Authentication support for the Windows C++ client

[Michal Zerola (JIRA)]

    [ 
https://issues.apache.org/jira/browse/QPID-3914?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13395898#comment-13395898
 ] 

Michal Zerola commented on QPID-3914:
-------------------------------------

One of the reason of extending the client for certificate options was to make 
it convenient for users to provide certificates on the command line to the 
application + be able to transfer application to another machine with 
certificates and be able to execute it without any administration needed. This 
is what one can easily do with Linux client.

I am not sure if you have studied the patch, but the client's private key can 
be provided to the application without any modification of the machine's store. 
The public key of the server where client attempts to connect has to be in the 
Trusted Root store in order to accept the connection. Currently, with the 
patch, during the connection hand-shaking, the window is popped up (the same 
way as when one adds certificate to the store in a Windows traditional way) and 
the user can decide whether to import the certificate or not. If you are aware 
of any other way how to provide the public key to the client from the 
filesystem, please let me know.

I understand your opinion, therefore I have proposed the 2 options above.
                
> SSL Client Authentication support for the Windows C++ client
> ------------------------------------------------------------
>
>                 Key: QPID-3914
>                 URL: https://issues.apache.org/jira/browse/QPID-3914
>             Project: Qpid
>          Issue Type: New Feature
>          Components: C++ Client
>    Affects Versions: 0.14, 0.16
>         Environment: Windows (all versions)
>            Reporter: JAkub Scholz
>         Attachments: ssl-client-auth-filecert.patch, 
> ssl-client-authentication.patch
>
>
> The Windows C++ client has been missing support for the SSL Client 
> Authentication - authentication using SSL certificates on the client side. 
> The patch attached to this JIRA implements this feature.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org
For additional commands, e-mail: dev-h...@qpid.apache.org