Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

IDS-10052: Keystore Certificates Validation #191

Merged
merged 12 commits into from
Feb 1, 2024
Merged

IDS-10052: Keystore Certificates Validation #191

merged 12 commits into from
Feb 1, 2024

Conversation

voxparcxls
Copy link
Collaborator

@voxparcxls voxparcxls commented Nov 8, 2023
edited
Loading

Keystore and tomcat certificates Validation:

  • Checks for certificate chain, cert expiration
  • Gives keystore update warning within 90 days before cert expires
  • Gives WARNING for expired certificate:
checking that user provided valid .keystore file and certificate chain...
   [WARNING]
       The Certificate Chain in Keystore '/Users/haile/dev_cws/common-workflow-service/dist/console-only/cws/server/apache-tomcat-9.0.72/conf/.keystore' is expired. 
       Expiration date: Tue Jun 27 08:57:03 PDT 2023

@voxparcxls voxparcxls marked this pull request as ready for review November 8, 2023 22:59
@jamesfwood
Copy link
Collaborator

jamesfwood commented Dec 19, 2023
edited
Loading

Store pw file as ~/.cws/creds

And lock dir down, --r------

@voxparcxls
Copy link
Collaborator Author

voxparcxls commented Jan 18, 2024
edited
Loading

Update README
Set the ~/.cws to 700 - rwx

Set the file creds to 600 - rw

@voxparcxls
Copy link
Collaborator Author

voxparcxls commented Jan 24, 2024
edited
Loading

Remove default_ from var

CORRECT config: cws_keystore_storepass

@voxparcxls voxparcxls requested a review from kgrimes2 January 31, 2024 21:21
@jamesfwood jamesfwood merged commit a795c65 into develop Feb 1, 2024
4 checks passed
@jamesfwood jamesfwood deleted the IDS-10052-Keystore-Expire-Check branch February 1, 2024 20:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jamesfwood jamesfwood jamesfwood approved these changes

@zonagit zonagit Awaiting requested review from zonagit

@jl-0 jl-0 Awaiting requested review from jl-0

@kgrimes2 kgrimes2 Awaiting requested review from kgrimes2

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@voxparcxls @jamesfwood