Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

secure the examples #78

Open
jmazzitelli opened this issue Jan 5, 2017 · 1 comment
Open

secure the examples #78

jmazzitelli opened this issue Jan 5, 2017 · 1 comment
Assignees
@mwringe

Comments

@jmazzitelli
Copy link
Contributor

Our Prometheus and Jolokia examples are both exposing unsecured (http) endpoints. We should have them be secured (https) since that is how people will normally want to run their metric endpoints.
@mwringe mwringe self-assigned this Jan 9, 2017
@mwringe
Copy link
Contributor

mwringe commented Jan 9, 2017

I am looking into getting the Agent to use a system generated certificate. This will allow the agent's certificate to be signed by a known CA (the OpenShift CA), which means things like client based authentication may work with Jolokia (may work, as I am still having problems even with the extraClientChecks set to false). if we can get this to work, then a default configuration for Jolokia client based authentication will function properly.

Beyond this, we would also need to make sure that we modify the connection to endpoints so that we don't automatically trust all SSL connections. If we are going to pass username/passwords we need to make sure the endpoint we are talking to has been properly configured for that endpoint.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@mwringe mwringe

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mwringe @jmazzitelli