Uploaded image for project: 'OpenNMS'
  1. OpenNMS
  2. NMS-3622

Allow HttpCollector and PageSequenceMonitor to accept all SSL certificates

    XMLWordPrintable

    Details

    • Type: Enhancement
    • Status: Closed (View Workflow)
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 1.6.9
    • Fix Version/s: 1.9.91
    • Component/s: Data Collection - HTTP
    • Security Level: Default (Default Security Scheme)
    • Labels:
      None
    • Environment:
      Operating System: All
      Platform: PC
    • Bugzilla Id:
      3579

      Description

      The HttpCollector and PageSequenceMonitor can both do HTTPS requests, but currently neither can accept SSL certificates that are not verifiable within the web of trust defined by the JVM's trust store. The schemas for configuring both these classes should include an attribute (false by default) to enable them to act naively with respect to SSL certificate verification.

      One way to do this, if the Commons HTTPClient doesn't have a built-in way, might involve using the RelaxedX509TrustManager class that the HttpsMonitor and NrpeMonitor currently both use.

        Attachments

          Activity

            People

            Assignee:
            seth Seth Leger (Inactive)
            Reporter:
            jeffg Jeff Gehlbach
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: