Jens Deppe created GEODE-1294:
---------------------------------
Summary: Overriding cluster-ssl properties does not work for
http-service-ssl
Key: GEODE-1294
URL: https://issues.apache.org/jira/browse/GEODE-1294
Project: Geode
Issue Type: Bug
Components: security
Reporter: Jens Deppe
when {{cluster-ssl-require-authentication=true}} the following properties are
set:
{noformat}
cluster-ssl-require-authentication=true
gateway-ssl-require-authentication=true
http-service-ssl-require-authentication=true
jmx-manager-ssl-require-authentication=true
server-ssl-require-authentication=true
{noformat}
When that property is not set (i.e. just defaulted) and
{{cluster-ssl-enabled=true}} then only
{{http-service-ssl-require-authentication=false}} is set and all the other
{{require-authentication}} properties are {{true}}. With these settings, we
require mutual auth for all connections except Pulse and gfsh over http.
However, if I set the following which should really be mimicking the default
settings for {{cluster-ssl-enabled=true}}:
{noformat}
cluster-ssl-require-authentication=true
http-service-ssl-require-authentication=false
{noformat}
Then I am unable to access Pulse as it still appears to require mutual auth.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
