Uploaded image for project: 'CDAP'
  1. CDAP
  2. CDAP-8126

SSL between UI and router broken on 4.0.0

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 4.0.0
    • Fix Version/s: 4.0.1
    • Component/s: CDAP
    • Labels:
    • Release Notes:
      Fixed an issue with the flag used by the Node proxy to enable SSL between the CDAP UI and CDAP Router.
    • Rank:
      1|hzzsof:

      Description

      In 4.0.0. UI is still looking at ssl.enabled to see if it should use "https://". config-tool is not able to see ssl.enabled even when it is set hence UI is never using https://,

      [leonid@host ui]$ bin/cdap config-tool --cdap | grep ssl
      SLF4J: Failed to load class "org.slf4j.impl.StaticLoggerBinder".
      SLF4J: Defaulting to no-operation (NOP) logger implementation
      SLF4J: See http://www.slf4j.org/codes.html#StaticLoggerBinder for further details.
      "app.ssl.bind.port": "30443",
      "router.ssl.server.port": "10443",
      "dashboard.ssl.disable.cert.check": "false",
      "ssl.external.enabled": "true",
      "dashboard.ssl.bind.port": "9443",
      "dashboard.ssl.server.address": "host",
      "ssl.internal.enabled": "false",
      "router.ssl.bind.port": "10443",
      "security.auth.server.ssl.bind.port": "10010",
      [leonid@host ui]$ bin/cdap config-tool --security | grep ssl
      SLF4J: Failed to load class "org.slf4j.impl.StaticLoggerBinder".
      SLF4J: Defaulting to no-operation (NOP) logger implementation
      SLF4J: See http://www.slf4j.org/codes.html#StaticLoggerBinder for further details.
      "router.ssl.keystore.path": "/etc/cdap/conf/keystore.jks",
      "dashboard.ssl.key": "/etc/cdap/conf/server.key",
      "router.ssl.keystore.type": "JKS",
      "dashboard.ssl.cert": "/etc/cdap/conf/server.crt",
      "router.ssl.keystore.password": "password",
      "router.ssl.keystore.keypassword": "password"
      [leonid@host ui]$

      Needs to fixed ASAP.

        Attachments

          Activity

            People

            • Assignee:
              ajai Ajai Narayan
              Reporter:
              leonid Leonid Fedotov
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: