Riak control on HTTP (not HTTPS)
Hi, Is it possible to have Riak control running at HTTP port on localhost? Assuming security is provided by SSH tunnels. If so what is needed to be done at app.config? I enabled Riak control but it is redirecting me to HTTPS. Thanks, Guido. ___ riak-users mailing list riak-users@lists.basho.com http://lists.basho.com/mailman/listinfo/riak-users_lists.basho.com
Re: Riak control on HTTP (not HTTPS)
I've opened an issue for this: https://github.com/basho/riak_control/issues/156 Thanks! - Chris -- Christopher Meiklejohn Software Engineer Basho Technologies, Inc. On Wednesday, September 18, 2013 at 10:32 AM, Guido Medina wrote: > Now it is working, maybe to be added to a wish list, a flag to > "enforce_secure_transport" and by default be true, I'm quite sure many > users use SSH tunnels for those things, no point on loading certificates > and stuff if your servers are well protected and there is a different > transport for sensitive information. > > Regards, > > Guido. ___ riak-users mailing list riak-users@lists.basho.com http://lists.basho.com/mailman/listinfo/riak-users_lists.basho.com
Re: Riak control on HTTP (not HTTPS)
Thanks for the quick response, Now it is working, maybe to be added to a wish list, a flag to "enforce_secure_transport" and by default be true, I'm quite sure many users use SSH tunnels for those things, no point on loading certificates and stuff if your servers are well protected and there is a different transport for sensitive information. Regards, Guido. On 18/09/13 16:15, Christopher Meiklejohn wrote: On Wednesday, September 18, 2013 at 10:12 AM, Guido Medina wrote: Hi, Is it possible to have Riak control running at HTTP port on localhost? Assuming security is provided by SSH tunnels. If so what is needed to be done at app.config? I enabled Riak control but it is redirecting me to HTTPS. Yes, this is possible if you disable the authentication. It will only redirect to SSL when the authentication is set to 'user list' instead of 'none' to ensure you don't expose credentials over an unencrypted channel. - Chris ___ riak-users mailing list riak-users@lists.basho.com http://lists.basho.com/mailman/listinfo/riak-users_lists.basho.com
Re: Riak control on HTTP (not HTTPS)
On Wednesday, September 18, 2013 at 10:12 AM, Guido Medina wrote: > Hi, > > Is it possible to have Riak control running at HTTP port on localhost? > Assuming security is provided by SSH tunnels. > If so what is needed to be done at app.config? I enabled Riak control > but it is redirecting me to HTTPS. Yes, this is possible if you disable the authentication. It will only redirect to SSL when the authentication is set to 'user list' instead of 'none' to ensure you don't expose credentials over an unencrypted channel. - Chris -- Christopher Meiklejohn Software Engineer Basho Technologies, Inc. ___ riak-users mailing list riak-users@lists.basho.com http://lists.basho.com/mailman/listinfo/riak-users_lists.basho.com