[
https://issues.apache.org/jira/browse/THRIFT-106?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12918684#action_12918684
]
James E. King, III commented on THRIFT-106:
-------------------------------------------
The patch for Endpoints in THRIFT-66 is being ported to Java. This will
provide SSL with self-signed certificate authentication. In fact each service
channel can be declared as accessible to unauthenticated or authenticated
clients. I know this doesn't help you immediately, but I am working on getting
this moved over for discussion and adoption by the devs.
> TSSLServerSocket
> ----------------
>
> Key: THRIFT-106
> URL: https://issues.apache.org/jira/browse/THRIFT-106
> Project: Thrift
> Issue Type: New Feature
> Components: Java - Library
> Environment: n/a
> Reporter: rico sec
> Priority: Trivial
> Attachments: ssl.patch
>
> Original Estimate: 6h
> Remaining Estimate: 6h
>
> SSL Connection w/ autogenerated self signed x509 certs seems to be the state
> of the art for rpc layers.
> if thrift had one ...that would be very good.
> http://java.sun.com/javase/6/docs/technotes/guides/security/jsse/JSSERefGuide.html
> if someone does this pls ping/email me, I will do some testing and write a
> simple key mgmt utility.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
