Skip to content

Commit

Permalink
Add configs related to cert revocation validation
Browse files Browse the repository at this point in the history
  • Loading branch information
@Akila94
Akila94 committed Feb 26, 2024
1 parent 82f93ff commit 92caf96
Show file tree
Hide file tree
Showing 2 changed files with 13 additions and 0 deletions.
5 changes: 5 additions & 0 deletions modules/distribution/product/src/main/resources/conf/default.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -101,6 +101,11 @@
"transport.passthru_https.listener.trust_store.password": "$ref{truststore.password}",
"transport.passthru_https.listener.ssl_profile.file_path": "repository/resources/security/listenerprofiles.xml",
"transport.passthru_https.listener.ssl_profile_interval": "600000",
"transport.passthru_https.listener.cert_revocation_validation.enable": false,
"transport.passthru_https.listener.cert_revocation_validation.cache_size": "50",
"transport.passthru_https.listener.cert_revocation_validation.cache_delay": "15",
"transport.passthru_https.listener.cert_revocation_validation.allow_full_cert_chain_validation": true,
"transport.passthru_https.listener.cert_revocation_validation.allow_cert_expiry_validation": false,
"transport.passthru_http.sender.enable": true,
"transport.passthru_http.sender.parameters.non-blocking": true,
"transport.passthru_https.sender.enable": true,
Expand Down
8 changes: 8 additions & 0 deletions ...distribution/product/src/main/resources/conf/templates/repository/conf/axis2/axis2.xml.j2
View file
Original file line number Diff line number Diff line change
Expand Up @@ -269,6 +269,14 @@
<filePath>repository/resources/security/listenerprofiles.xml</filePath>
<fileReadInterval>{{transport.passthru_https.listener.ssl_profile_interval}}</fileReadInterval>
</parameter>
{% if transport.passthru_https.listener.cert_revocation_validation.enable %}
<parameter name="CertificateRevocationVerifier" enable="{{transport.passthru_https.listener.cert_revocation_validation.enable}}">
<CacheSize>{{transport.passthru_https.listener.cert_revocation_validation.cache_size}}</CacheSize>
<CacheDelay>{{transport.passthru_https.listener.cert_revocation_validation.cache_delay}}</CacheDelay>
<FullChainValidation>{{transport.passthru_https.listener.cert_revocation_validation.allow_full_cert_chain_validation}}</FullChainValidation>
<ExpiryValidation>{{transport.passthru_https.listener.cert_revocation_validation.allow_cert_expiry_validation}}</ExpiryValidation>
</parameter>
{% endif %}
</transportReceiver>
{% endif %}

Expand Down

0 comments on commit 92caf96

Please sign in to comment.