Uploaded image for project: 'OpenNMS'
  1. OpenNMS
  2. NMS-3622

Allow HttpCollector and PageSequenceMonitor to accept all SSL certificates

    XMLWordPrintable

    Details

    • Type: Enhancement
    • Status: Closed (View Workflow)
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 1.6.9
    • Fix Version/s: 1.9.91
    • Component/s: Data Collection - HTTP
    • Security Level: Default (Default Security Scheme)
    • Labels:
      None
    • Environment:
      Operating System: All
      Platform: PC
    • Bugzilla Id:
      3579

      Description

      The HttpCollector and PageSequenceMonitor can both do HTTPS requests, but currently neither can accept SSL certificates that are not verifiable within the web of trust defined by the JVM's trust store. The schemas for configuring both these classes should include an attribute (false by default) to enable them to act naively with respect to SSL certificate verification.

      One way to do this, if the Commons HTTPClient doesn't have a built-in way, might involve using the RelaxedX509TrustManager class that the HttpsMonitor and NrpeMonitor currently both use.

        Attachments

          Activity

            People

            • Assignee:
              seth Seth Leger
              Reporter:
              jeffg Jeff Gehlbach
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: