SNI and client authentication
26 views
Skip to first unread message
Weiss, Thomas
Jun 26, 2017, 9:34:07 AM6/26/17
to ve...@googlegroups.com
Hi,
I’ve got a question about the sni support which was introduced with 3.4.2. First of all: sni works great. Now I want to implement a ssl enabled web service with client auth. But I’m missing the possibility to tie trusted CA's to server names. I’ve looked through the docs and the sources of vertx core and it seems to me that this feature is not (yet) implemented, or have I overseen something?
I’ve worked out a solution for this by implementing a TrustOptions.trustManagerMapper() function by analogy to KeyCertOptions.keyManagerMapper(). I would be happy to contribute it to vertx if you are interested.
Regards,
Theo
I’ve got a question about the sni support which was introduced with 3.4.2. First of all: sni works great. Now I want to implement a ssl enabled web service with client auth. But I’m missing the possibility to tie trusted CA's to server names. I’ve looked through the docs and the sources of vertx core and it seems to me that this feature is not (yet) implemented, or have I overseen something?
I’ve worked out a solution for this by implementing a TrustOptions.trustManagerMapper() function by analogy to KeyCertOptions.keyManagerMapper(). I would be happy to contribute it to vertx if you are interested.
Regards,
Theo
Julien Viet
Jun 26, 2017, 9:47:33 AM6/26/17
to ve...@googlegroups.com
Hi,
we implemented the most common use case with the keyManagerMapper.
that would be an interesting feature to have as well, so I would be glad you contribute it.
Julien
> --
> You received this message because you are subscribed to the Google Groups "vert.x" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to vertx+un...@googlegroups.com.
> Visit this group at https://groups.google.com/group/vertx.
> To view this discussion on the web, visit https://groups.google.com/d/msgid/vertx/AF09B92F-9E45-4921-908A-5C3CAE4A2E42%40atos.net.
> For more options, visit https://groups.google.com/d/optout.
we implemented the most common use case with the keyManagerMapper.
that would be an interesting feature to have as well, so I would be glad you contribute it.
Julien
> You received this message because you are subscribed to the Google Groups "vert.x" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to vertx+un...@googlegroups.com.
> Visit this group at https://groups.google.com/group/vertx.
> To view this discussion on the web, visit https://groups.google.com/d/msgid/vertx/AF09B92F-9E45-4921-908A-5C3CAE4A2E42%40atos.net.
> For more options, visit https://groups.google.com/d/optout.
Weiss, Thomas
Jun 26, 2017, 9:54:53 AM6/26/17
to ve...@googlegroups.com
Great.
I will prepare a PR to discuss the details.
> To view this discussion on the web, visit https://groups.google.com/d/msgid/vertx/B821C304-2631-4606-9DA3-16F11A8A72B7%40julienviet.com.
I will prepare a PR to discuss the details.
Reply all
Reply to author
Forward
0 new messages