The top-level superproject for zLUX. zLUX includes the Zowe Desktop framework in addition to several built-in apps and an example server implementation.
Eclipse Public License 2.0
39
stars
42
forks
source link
App-server (and zss?) don't support certificate mode "non-strict" #875
app-server uses nodejs verification of certificates which has two modes: total verification or no verification
zowe has a mode that's in the middle, where it verifies everything except the hostname match, called 'non-strict' mode.
Node doesnt seem to be able to do that but does have events that can be handled with custom code, so within https://nodejs.org/api/tls.html it could be possible to have this partial-verification. It would put the burden of verification on us though, versus just letting nodejs handle it.
1000TurquoisePogs
commented
1 year ago
app-server uses nodejs verification of certificates which has two modes: total verification or no verification zowe has a mode that's in the middle, where it verifies everything except the hostname match, called 'non-strict' mode. Node doesnt seem to be able to do that but does have events that can be handled with custom code, so within https://nodejs.org/api/tls.html it could be possible to have this partial-verification. It would put the burden of verification on us though, versus just letting nodejs handle it.