I have been testing Jolokia JVM agent with HTTPS and client authentication.
The HTTPS works fine, but I couldn't make SSL client authentication work.
I have used the following parameters :
protocol=https
keystore=keystore_server
keystorePassword=mypassword
useSslClientAuthentication=true
I don't know Java very well, but I tried to look into the code and I think there may be 2 problems :
1 - The HTTPS server uses the same keystore file as server key file and trust store file. Usually it key store and the trust store are separated. There is no parameter to specify the location of a separate truststore file.
2 - The useSslClientAuthentication does not seem to be read correctly. In the source file JolokiaServerConfig.java, the parameter value is read with Boolean.getBoolean(auth). Shouldn't it be Boolean.valueOf(auth) instead ? (because Boolean.getBoolean() reads the system property value).
Anyway I couldn't make SSL Client authentication work. Am I missing something ?
Thank you for your attention.
The text was updated successfully, but these errors were encountered:
nevenr
added a commit
to nevenr/jolokia
that referenced
this issue
Oct 21, 2014
http://jolokia.963608.n3.nabble.com/JVM-Agent-and-SSL-client-authentication-td4024117.html
JVM Agent and SSL client authentication
Jul 19, 2013; 11:31am — by Erik Erik
Hello,
I have been testing Jolokia JVM agent with HTTPS and client authentication.
The HTTPS works fine, but I couldn't make SSL client authentication work.
I have used the following parameters :
protocol=https
keystore=keystore_server
keystorePassword=mypassword
useSslClientAuthentication=true
I don't know Java very well, but I tried to look into the code and I think there may be 2 problems :
1 - The HTTPS server uses the same keystore file as server key file and trust store file. Usually it key store and the trust store are separated. There is no parameter to specify the location of a separate truststore file.
2 - The useSslClientAuthentication does not seem to be read correctly. In the source file JolokiaServerConfig.java, the parameter value is read with Boolean.getBoolean(auth). Shouldn't it be Boolean.valueOf(auth) instead ? (because Boolean.getBoolean() reads the system property value).
Anyway I couldn't make SSL Client authentication work. Am I missing something ?
Thank you for your attention.
The text was updated successfully, but these errors were encountered: