based on an env. variable, client authentication can be disabled
Change-Id: Ie7790c1ec6c253c0b91358d56fd32cf588a01183
Issue-ID: AAI-2132
Signed-off-by: Serban Popescu <serban.popescu@amdocs.com>
props.put("schema.service.ssl.key-store-password", Password.deobfuscate(keyStorePassword));
props.put("schema.service.ssl.trust-store-password", Password.deobfuscate(keyStorePassword));
+ String requireClientAuth = System.getenv("REQUIRE_CLIENT_AUTH");
+ props.put("server.ssl.client-auth",
+ Boolean.FALSE.toString().equalsIgnoreCase(requireClientAuth) ? "want" : "need");
+
new SpikeApplication().configure(new SpringApplicationBuilder(SpikeApplication.class).properties(props))
.run(args);
}
server.ssl.key-store=${CONFIG_HOME}/auth/tomcat_keystore
server.ssl.enabled=true
-server.ssl.client-auth=need
server.ssl.enabled-protocols=TLSv1.1,TLSv1.2
schema.ingest.file=${CONFIG_HOME}/schema-ingest.properties