-
Notifications
You must be signed in to change notification settings - Fork 485
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SimpleDirContextAuthenticationStrategy and DefaultSpringSecurityContextSource should accept SSLSocketFactory #546
Comments
This would be very helpful. |
Hi, @marschall. I can see how this would be nice, but I'm not sure the underlying Java API supports it since ultimately the Is there a way that |
Yes, that's a problem. There is discussion about this in #547. For a possible solution see https://github.com/marschall/ssl-socket-factory-factory-bean. |
@marschall, sorry, I'm still not quite seeing how the factory bean helps in this situation. It may help in others, but in the cases listed in this ticket, the Java API asks for a class name. Having a factory construct the object still doesn't help since Java doesn't allow for specifying socket factory instances. Does it sound like I'm missing something? If so, maybe it would help if you shared a code snippet of how |
Jotting down a quick note to myself to test the following: contextSource.setBaseEnvironmentProperties(Map.of("java.naming.ldap.factory.socket", CustomSslSocketFactory.class.getName())) The possible drawback is the setting would apply to the anonymous and authenticated environments, which may not be desired. Alternatively, It sort of begs the question of whether all |
In order to support custom truststores more SSL configuration
SimpleDirContextAuthenticationStrategy
andDefaultSpringSecurityContextSource
should accept aSSLSocketFactory
.This is a follow up for #494
The text was updated successfully, but these errors were encountered: