Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Medium
Fix Version/s: London Release
Affects Version/s: None
Component/s: dcae-services
Labels:
- dcae-restconf

Epic Link:
DCAE London Release Compliance

RESTConf - Make certificate dependencies configurable

If the following cert/trust are not available, the application fails to startup (readiness fails).

  collector.rcc.keystore.passwordfile: /opt/app/dcae-certificate/jks.pass
  collector.rcc.keystore.alias: dynamically generated
  collector.rcc.truststore.file.location: /opt/app/dcae-certificate/trust.jks
  collector.rcc.truststore.passwordfile: /opt/app/dcae-certificate/trust.pass

Need to support non-TLS mode as configuration option.

Either collector.header.authflag(set to 0/false) or new app-config (such enable_tls: false) to be added to support non-TLS as configuration.

Note: Default application configuration must be TLS. Unless explicitly overridden in config to non-TLS, missing/null certificates exception must be thrown (as current behavior). When enable_tls is set to false, then application does not check for certificates and supports non-TLS mode.

duplicates

DCAEGEN2-3336 Restconf-collector cannot be set to HTTP

Closed

relates to

DCAEGEN2-3336 Restconf-collector cannot be set to HTTP

Closed

DCAEGEN2-3037 ServiceMesh Compatibility - AAF cert dependency removal

Closed

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...

(2 mentioned in)

Assignee:: vv770d

Reporter:: vv770d

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 05/Mar/22 12:02 AM

Updated:: 16/May/23 2:54 PM

Resolved:: 20/Apr/23 4:20 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates