[jira] [Commented] (QPID-7063) [Java Broker] SimpleLdap Authentication Provider should be able to override enabled cipher suites and TLS protocols from context variables for TLS connections to LDAP se
[ https://issues.apache.org/jira/browse/QPID-7063?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15212168#comment-15212168 ] ASF subversion and git services commented on QPID-7063: --- Commit 1736623 from oru...@apache.org in branch 'java/trunk' [ https://svn.apache.org/r1736623 ] QPID-7063: Fix potential cause for NullPointerException > [Java Broker] SimpleLdap Authentication Provider should be able to override > enabled cipher suites and TLS protocols from context variables for TLS > connections to LDAP servers > -- > > Key: QPID-7063 > URL: https://issues.apache.org/jira/browse/QPID-7063 > Project: Qpid > Issue Type: Improvement > Components: Java Broker >Affects Versions: qpid-java-6.0, qpid-java-6.1 >Reporter: Alex Rudyy >Assignee: Alex Rudyy > Fix For: qpid-java-6.1 > > Attachments: > 0001-QPID-7063-Java-Broker-Allow-TLS-protocols-cipher-sui.patch > > > At the moment, required TLS protocols and cipher suites can not be set in > SSLConetextFactory created in SampleLdap Authentication Provider for TLS > connections. As result, Qpid users cannot override TLS protocols and cipher > suites to use in TLS connections to LDAP servers which might cause a > selection of weaker cipher suites during TLS negotiation or even can prevent > establishing of TLS connections in JVM implementations not supporting > downgrade of TLS protocol -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org
[jira] [Commented] (QPID-7063) [Java Broker] SimpleLdap Authentication Provider should be able to override enabled cipher suites and TLS protocols from context variables for TLS connections to LDAP se
[ https://issues.apache.org/jira/browse/QPID-7063?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15209368#comment-15209368 ] Keith Wall commented on QPID-7063: -- Alex, can you review the commit please? > [Java Broker] SimpleLdap Authentication Provider should be able to override > enabled cipher suites and TLS protocols from context variables for TLS > connections to LDAP servers > -- > > Key: QPID-7063 > URL: https://issues.apache.org/jira/browse/QPID-7063 > Project: Qpid > Issue Type: Improvement > Components: Java Broker >Affects Versions: qpid-java-6.0, qpid-java-6.1 >Reporter: Alex Rudyy >Assignee: Alex Rudyy > Fix For: qpid-java-6.1 > > Attachments: > 0001-QPID-7063-Java-Broker-Allow-TLS-protocols-cipher-sui.patch > > > At the moment, required TLS protocols and cipher suites can not be set in > SSLConetextFactory created in SampleLdap Authentication Provider for TLS > connections. As result, Qpid users cannot override TLS protocols and cipher > suites to use in TLS connections to LDAP servers which might cause a > selection of weaker cipher suites during TLS negotiation or even can prevent > establishing of TLS connections in JVM implementations not supporting > downgrade of TLS protocol -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org
[jira] [Commented] (QPID-7063) [Java Broker] SimpleLdap Authentication Provider should be able to override enabled cipher suites and TLS protocols from context variables for TLS connections to LDAP se
[ https://issues.apache.org/jira/browse/QPID-7063?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15209363#comment-15209363 ] ASF subversion and git services commented on QPID-7063: --- Commit 1736387 from [~k-wall] in branch 'java/trunk' [ https://svn.apache.org/r1736387 ] QPID-7063; [Java Broker] Allow TLS protocols/cipher suites to be influenced for connections to a Directory (LDAP) > [Java Broker] SimpleLdap Authentication Provider should be able to override > enabled cipher suites and TLS protocols from context variables for TLS > connections to LDAP servers > -- > > Key: QPID-7063 > URL: https://issues.apache.org/jira/browse/QPID-7063 > Project: Qpid > Issue Type: Bug > Components: Java Broker >Affects Versions: qpid-java-6.0, qpid-java-6.1 >Reporter: Alex Rudyy > Attachments: > 0001-QPID-7063-Java-Broker-Allow-TLS-protocols-cipher-sui.patch > > > At the moment, required TLS protocols and cipher suites can not be set in > SSLConetextFactory created in SampleLdap Authentication Provider for TLS > connections. As result, Qpid users cannot override TLS protocols and cipher > suites to use in TLS connections to LDAP servers which might cause a > selection of weaker cipher suites during TLS negotiation or even can prevent > establishing of TLS connections in JVM implementations not supporting > downgrade of TLS protocol -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org