[
https://issues.apache.org/jira/browse/MESOS-3753?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Joseph Wu updated MESOS-3753:
-----------------------------
Description:
Currently, the HTTP Scheduler library does not support SSL-enabled Mesos.
(You can manually test this by spinning up an SSL-enabled master and attempt to
run the event-call framework example against it.)
We need to add tests that check the HTTP Scheduler library against SSL-enabled
Mesos:
* with downgrade support,
* with required framework/client-side certifications,
* with/without verification of certificates (master-side),
* with/without verification of certificates (framework-side),
* with a custom certificate authority (CA)
These options should be controlled by the same environment variables found on
the [SSL user doc|http://mesos.apache.org/documentation/latest/ssl/].
Note: This issue will be broken down into smaller sub-issues as bugs/problems
are discovered.
was:
Currently, the HTTP Scheduler library does not support SSL-enabled Mesos.
We need to add tests that check the schedule library against SSL-enabled Mesos
with SSL:
* with downgrade support,
* with/without verification of certificates (framework-side),
* with required framework/client-side certifications,
* with/without verification of certificates (master-side),
* with a custom certificate authority (CA),
These options should be controlled by the same environment variables found on
the [SSL user doc|http://mesos.apache.org/documentation/latest/ssl/].
Note: This issue will be broken down into smaller sub-issues as bugs/problems
are discovered.
> Test the HTTP Scheduler library with SSL enabled
> ------------------------------------------------
>
> Key: MESOS-3753
> URL: https://issues.apache.org/jira/browse/MESOS-3753
> Project: Mesos
> Issue Type: Story
> Components: framework, HTTP API, test
> Reporter: Joseph Wu
> Assignee: Joseph Wu
> Labels: mesosphere, security
>
> Currently, the HTTP Scheduler library does not support SSL-enabled Mesos.
> (You can manually test this by spinning up an SSL-enabled master and attempt
> to run the event-call framework example against it.)
> We need to add tests that check the HTTP Scheduler library against
> SSL-enabled Mesos:
> * with downgrade support,
> * with required framework/client-side certifications,
> * with/without verification of certificates (master-side),
> * with/without verification of certificates (framework-side),
> * with a custom certificate authority (CA)
> These options should be controlled by the same environment variables found on
> the [SSL user doc|http://mesos.apache.org/documentation/latest/ssl/].
> Note: This issue will be broken down into smaller sub-issues as bugs/problems
> are discovered.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
