Actions
Bug #35359
closed
Make the Http Proxy store a CA certifcate
Difficulty:
Triaged:
Yes
Bugzilla link:
Description
When talking over an https proxy, 2 certificates have to be addressed
- CA Cert of the Proxy
- CA Cert of the destination URL (assuming its https).
Currently to HTTP Proxies require both these certificates to be in systems default trust store to connect to EC2/Other compute providers.
A better approach would be to store the CA Cert of the https proxy in the database instead of the trust store. When talking to EC2 we can narrow down the certificates in the chain to the one from proxy + certificates in the system trust store.
Updated by The Foreman Bot over 2 years ago
- Status changed from New to Ready For Testing
- Assignee set to Partha Aji
- Pull request https://github.com/theforeman/foreman/pull/9348 added
Updated by Partha Aji over 2 years ago
- Status changed from Ready For Testing to Closed
Applied in changeset foreman|ee9fe3a715dce72163b6bca05d356002908d517d.
Updated by The Foreman Bot over 2 years ago
- Pull request https://github.com/theforeman/foreman/pull/9355 added
Updated by Ewoud Kohl van Wijngaarden about 2 years ago
- Triaged changed from No to Yes
Actions