TrustManager does not verify certificate or hostname #2
Comments
|
Hey Will, I am assuming you are referring to the SSL object here That only is used if the validateCerts param is false in the exhibitor client. So afaik, sprays default SSL stuff kicks in if validateCerts is true, and the SSL object is used if not. If you saw this and this approach is broken, please PR 👍 |
|
Spray's default SSLEngine support doesn't enable hostname verification -- see https://github.com/spray/spray/blob/master/spray-io/src/main/scala/spray/io/SslTlsSupport.scala and http://tersesystems.com/2014/03/23/fixing-hostname-verification/ |
|
Aha, great then PR please! On Sun, Sep 28, 2014 at 5:50 PM, Will Sargent [email protected]
|
|
After release with akka-http it will work correctly using https://github.com/typesafehub/ssl-config/blob/master/ssl-config-core/src/main/scala/com/typesafe/sslconfig/ssl/DefaultHostnameVerifier.scala |
…ka_ver_2.6 to master * commit 'ff64ff739e905268034a71f7f3c9e2de48070f18': CAP-1050 update akka version to 2.6.x
I reviewed the code and noticed you have a TrustManager that does not validate the remote certificate -- let me know if you'd like me to submit a PR to configure it.
The text was updated successfully, but these errors were encountered: