-
Task
-
Resolution: Done
-
Medium
-
El Alto Release
-
None
Fill in the "Crypto certificate verification" coreinfrastructure question.
1) Go to https://bestpractices.coreinfrastructure.org
2) Click Projects
3) Search for your project
5) Click Login (at the top)
6) Click Edit (at the top)
7) Click the button that says [silver]
8) Scroll to the bottom, click [v] Security
9) Search for “crypto_certificate_verification”
10) Fill in your answers
11) Click one of the green buttons [Save (and continue)] or [Submit (and exit)]
For each remote call, answer these questions:
1) If your remote API calls support TLS/SSL, are you using TLS/SSL?
2) Do you have the proper certificate chains?
3) If you are using TLS/SSL, are you verifying the certificate chains?
4) Are all validations being done properly?
5) Does your onap.readthedocs.io page describe your use of remote APIs? (optional)
If yes to all questions (for all APIs):
1) Click (Met)
2) In the description, enter the date (e.g., [2019/06/24]), the URL for the readthedocs.io page (if available), and an indication why (Met) is appropriate
If there are no APIs that support TLS or SSL:
1) Click (N/A)
2) In the description, enter the date (e.g., [2019/06/24]) and an indication why N/A was appropriate
If any of the other answers are NO:
1) Click (Unmet)
2) In the description, enter the date (e.g., [2019/06/24]) and a description where something was not met.
3) File JIRA tickets for each issue that needs resolution.
If you have multiple remote APIs with a mixture of answers:
1) If any of the APIs would be (Unmet), then use (Unmet) for the overall answer.
2) If you have both (Met) and (N/A), then use (Met) for the overall answer.