Allow disabling of SNI checks

XMLWordPrintable

    • Type: Task
    • Resolution: Fixed
    • Priority: L3 - Default
    • 3.10.6, 3.11.0
    • Affects Version/s: None
    • Component/s: backend
    • None
    • Not defined

      In some environments, it might be appropriate to disable SNI checks. We should allow this per configuration field

      Testing Notes:

      • SNI checks can be disabled in config
      • SNI checks can be disabled per ENV var (CAMUNDA_OPTIMIZE_CONTAINER_ENABLE_SNI_CHECK)
      • To verify, run Optimize in HTTPS and a localhost certificate, but with SNI checking enabled. This should present an SNI verification error in the browser as localhost is prohibited. cigdem.ilhan - you tested this for the Spring Boot migration already, so please reproduce those steps

      Notes:

      • This should be backported to maintenance/3.10

            Assignee:
            Unassigned
            Reporter:
            Joshua Windels
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: