Remove CLI ca-file requirement for sandbox connections.

eclipse-hono / hono

Eclipse Hono™ Project

https://eclipse.dev/hono

Eclipse Public License 2.0

453 stars 137 forks source link

Remove CLI ca-file requirement for sandbox connections. #3592

Closed calohmn closed 11 months ago

calohmn commented 12 months ago

Follow-up of #3570: The CLI --ca-file parameter shouldn't be required when connecting to the sandbox.

sophokles73 commented 12 months ago

GraalVM 21 copies the JDK's cacerts into the executable at build time. Thus, if the root CAs expire or get revoked etc, it will still be necessary to specify the trusted certs store on the command line. Anyway, for the JRE based version, this will most likely work as expected and for the native executable the --ca-file parameter can still be used. @calohmn Maybe you could add some corresponding wording to the documentation?

calohmn commented 11 months ago

@sophokles73 I've added a corresponding note in the "Getting Started" guide.