Bug 1119510
Summary: | RFE: Document Auth using EXTERNAL with certificates | ||
---|---|---|---|
Product: | [JBoss] JBoss Data Grid 6 | Reporter: | gsheldon |
Component: | Documentation | Assignee: | gsheldon |
Status: | CLOSED CURRENTRELEASE | QA Contact: | |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 6.3.0 | CC: | jdg-bugs, mhusnain, vjuranek |
Target Milestone: | Post GA | ||
Target Release: | 6.3.0 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-09-15 00:01:43 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
gsheldon
2014-07-14 23:52:24 UTC
Setting this to POST to indicate that we can't work on this yet. Gemma, please check with Vojta about when this is expected to be tested. Setting NEEDINFO Vojtech. Vojta will this feature be ready for the next release? Thanks, Gemma. Hi Gemma, this feature was actually already in JDG 6.3.0, but as it wasn't tested, it wasn't documented/supported. Should be tested/supported in JDG 6.3.1. Hi Gemma, text IMHO looks good and is sufficient. However, EXTERNAL auth wasn't tested yet, so I would give "verified" after testing it (maybe I'll discover something to be added during testing). Hi Gemma, I finally implemented the test, sorry for the delay. There's one wrong name of the parameter, in table 8.4 and in <keystore path="..." relative-to="..." keystore-password="..." alias="..." key-password="..." /> the parameter for keystore password is not "key-password", but correct name is "keystore-password". Otherwise looks good to me. I noticed that similar config is also in chapter "Procedure 8.3. Secure Hot Rod Using SSL/TLS". Maybe you can refer there table 8.4 for the meaning of the parameters. When reading it, I also noticed that code sample for Hot Rod connector is not accurate: <security ssl="true" security-realm="ApplicationRealm" require-ssl-client-auth="false" /> should be <encryption ssl="true" security-realm="ApplicationRealm" require-ssl-client-auth="false" /> I.e. name of the element is not "security" but "encryption". I hasn't found any other issue. Hi Misha, I'm sorry, I somehow missed that keystore-password is already present and thought there's a typo in key-password. The code sniplet in Chapter 8.7.6.4 is correct as it is, please don't remove anything and ignore the first part of my previous comment. Sorry for that Thanks, Vojta. Setting this for final review then. This content is now available on https://access.redhat.com/documentation/en-US/Red_Hat_JBoss_Data_Grid/ |