based on an env. variable, client authentication can be disabled
Change-Id: Ifa3e5d109d0609e0836ddaea2c1183799252ddd3
Issue-ID: AAI-2132
Signed-off-by: Serban Popescu <serban.popescu@amdocs.com>
HashMap<String, Object> props = new HashMap<>();
String decryptedValue = keyStorePassword.startsWith(OBFS_PATTERN)? Password.deobfuscate(keyStorePassword) : keyStorePassword;
props.put("server.ssl.key-store-password", decryptedValue);
+
+ String requireClientAuth = System.getenv("REQUIRE_CLIENT_AUTH");
+ props.put("server.ssl.client-auth",
+ Boolean.FALSE.toString().equalsIgnoreCase(requireClientAuth) ? "want" : "need");
+
new BabelApplication().configure(new SpringApplicationBuilder(BabelApplication.class).properties(props))
.run(args);
}
server.port=9516
server.ssl.key-store=${CONFIG_HOME}/auth/tomcat_keystore
-server.ssl.client-auth=need
server.contextPath=/services/babel-service