haneel-kumar commented on issue #790: URL: https://github.com/apache/arrow-java/issues/790#issuecomment-2999217070
### TLS Disabled Test Summary (`arrow-flight.server-ssl-enabled = false`) I have tested this : When `arrow-flight.server-ssl-enabled` is set to `false`, the Arrow Flight server runs in **plaintext (non-TLS)** mode. This means: - No TLS or mTLS handshake takes place. - Certificates provided by the client or server are **not used**. - All client-server communication occurs **unencrypted** over HTTP/2. - The client can still connect successfully even if `.useTls()` or certificates are configured — these are ignored unless the `Location` is set to `forGrpcTls(...)`. #### Test Scenarios which i have verified | **Test Scenario** | **TLS/mTLS Active?** | **Certs Used?** | **Expected Result** | **Reason** | |-------------------------------|----------------------|------------------|----------------------|------------------------------------------------------| | `server-ssl-enabled = false` | No | Ignored | ✅ Pass | Server runs in plaintext | | Tampered `server.crt` | No | Ignored | ✅ Pass | Server certificate is not validated | | Tampered `client.crt` | No | Ignored | ✅ Pass | Client certificate is not checked | <img width="1274" alt="Image" src="https://github.com/user-attachments/assets/94f4fdc2-2f1d-4437-8c97-f537f6e51642"; /> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
