Task #2626
Story #1189: Secure transport for all DataONE services
Secure CILogon postgresql communication
Status:
Closed
Priority:
Normal
Assignee:
Ben Leinfelder
Category:
d1_portal_servlet
Target version:
-
Start date:
2012-04-23
Due date:
% Done:
100%
Milestone:
CCI-1.0.0
Product Version:
*
Story Points:
Sprint:
Description
The certificates database is currently installed on a single CN and communicates over port 5432 in cleartext. This should either be exposed through a VPN only, or postgres-based encryption.
History
#1 Updated by Ben Leinfelder over 12 years ago
- Status changed from New to In Progress
Sent an email to Jeff Gaynor re: SSL for the JDBC connection. Doesn't look like there's a current option for that with the CILogon delegation store, but they've been so receptive to requests for enhancements we might find that option added.
#2 Updated by Ben Leinfelder over 12 years ago
- Status changed from In Progress to Closed
Deployed and tested portal with new CILogon 1.3.3 libraries on cn-dev-rr and we are in SSL business!
