Actions
Architecture #15513
closed
Make certificate verification in HTTP calls configurable
Fix check:
To do
Regression:
Description
Currently all HTTP calls (reporting, inventory, API, etc.) disable certificate validation.
We can make it configurable based on a system variable, to allow users having a certificate infrastructure in place to verify certificates.
This change needs to be done in both techniques and agent scripts.
The default behaviour needs to stay the current one for compatibility.
Updated by Alexis Mousset over 5 years ago
- Status changed from New to In progress
- Assignee set to Alexis Mousset
Updated by Alexis Mousset over 5 years ago
- Status changed from In progress to Pending technical review
- Assignee changed from Alexis Mousset to Nicolas CHARLES
- Pull Request set to https://github.com/Normation/rudder-techniques/pull/1498
Updated by Alexis Mousset over 5 years ago
- Has duplicate User story #11835: Make curl invocation's ignore certificate configurable added
Updated by Alexis Mousset over 5 years ago
- Has duplicate User story #9624: Add an option to check server certificate when sending inventory added
Updated by Alexis Mousset over 5 years ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder-techniques|c284b86f984b5f3f8ddfbec0535da1b8d8d4f288.
Updated by Vincent MEMBRÉ about 5 years ago
This bug has been fixed in Rudder 6.0.0~beta1 which was released today.
Updated by Vincent MEMBRÉ about 5 years ago
- Related to Architecture #15515: Document how to use an existing X509 PKI to secure Rudder node-server communication added
Updated by Vincent MEMBRÉ about 5 years ago
- Status changed from Pending release to Released
Actions