From 132d44fe0ab811cde1a1f2ce0f594f1d8ffdacbf Mon Sep 17 00:00:00 2001 From: Serban Popescu Date: Tue, 5 Feb 2019 14:09:00 -0500 Subject: [PATCH] Optionally disable client authentication based on an env. variable, client authentication can be disabled Change-Id: Ifa3e5d109d0609e0836ddaea2c1183799252ddd3 Issue-ID: AAI-2132 Signed-off-by: Serban Popescu --- src/main/java/org/onap/aai/babel/BabelApplication.java | 5 +++++ src/main/resources/application.properties | 1 - 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/src/main/java/org/onap/aai/babel/BabelApplication.java b/src/main/java/org/onap/aai/babel/BabelApplication.java index 9cf1078..0b0285b 100644 --- a/src/main/java/org/onap/aai/babel/BabelApplication.java +++ b/src/main/java/org/onap/aai/babel/BabelApplication.java @@ -46,6 +46,11 @@ public class BabelApplication extends SpringBootServletInitializer { HashMap props = new HashMap<>(); String decryptedValue = keyStorePassword.startsWith(OBFS_PATTERN)? Password.deobfuscate(keyStorePassword) : keyStorePassword; props.put("server.ssl.key-store-password", decryptedValue); + + String requireClientAuth = System.getenv("REQUIRE_CLIENT_AUTH"); + props.put("server.ssl.client-auth", + Boolean.FALSE.toString().equalsIgnoreCase(requireClientAuth) ? "want" : "need"); + new BabelApplication().configure(new SpringApplicationBuilder(BabelApplication.class).properties(props)) .run(args); } diff --git a/src/main/resources/application.properties b/src/main/resources/application.properties index c9982d6..1f5d420 100644 --- a/src/main/resources/application.properties +++ b/src/main/resources/application.properties @@ -1,6 +1,5 @@ server.port=9516 server.ssl.key-store=${CONFIG_HOME}/auth/tomcat_keystore -server.ssl.client-auth=need server.contextPath=/services/babel-service -- 2.16.6