[JAVA-1787] Support for multiple X.509 client certificates Created: 30/Apr/15 Updated: 07/Nov/17 Resolved: 07/Nov/17 |
|
| Status: | Closed |
| Project: | Java Driver |
| Component/s: | Authentication |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | Luke Prochazka | Assignee: | Unassigned |
| Resolution: | Won't Fix | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||
| Description |
|
Multi-tenant support for client SSL certificates. Currently can only support one cert per keystore. Consider using the keyFactory wrapper for this functionality: http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/JSSERefGuide.html#MultiDynamicKeystores. |
| Comments |
| Comment by Jeffrey Yemin [ 07/Nov/17 ] |
|
As noted this can be accomplished by configuring an SSLContext per MongoClient. Therefore, closing as Won't Fix. |
| Comment by Jeffrey Yemin [ 28/Oct/15 ] |
|
Note that via the com.mongodb.MongoClientOptions.Builder#socketFactory method, a user can configure an SSLSocketFactory any way they want, so in principle this is already possible (just not easy). |