SSL Keystore - Githubissues

CIDARLAB / clotho3

Clotho is a framework for engineering synthetic biological systems and managing the data used to create them. You can author data schemas, run functions and algorithms, and tie Clotho into existing applications.

BSD 3-Clause "New" or "Revised" License

3 stars 0 forks source link

SSL Keystore #502

Open jkozol opened 7 years ago

jkozol commented 7 years ago

We have a temporary ssl keystore working in ClothoModule.java. This needs to be changed.

djtran commented 7 years ago

We did this because without importing a key to our java keystore, we would be running clotho with no SSL certificates, thereby failing the SSL handshake and making our rest endpoint unreachable and untestable.

We adapted the provideKeyStore() function from ClothoTestModule.java and used it in ClothoModule.java in order to generate a certificate on the fly so that we can perform tests on the REST API.

djtran commented 7 years ago

Layering a better temporary fix on top of this one, I have edited ClothoWebServer.java to stop forcing all connections and requests to HTTPS. I commented out the confidential constraint and replaced it with a relaxed constraint. This can be undone at a later point.