Uploaded image for project: 'Couchbase .NET client library'
  1. Couchbase .NET client library
  2. NCBC-1692

Allow server revocation to be enabled when using X509 cert auth

    XMLWordPrintable

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 2.6.0-beta
    • 2.6.0
    • library
    • None
    • 1

    Description

      Note: only applies to .NET 4.6 and greater and .NET Core. For .NET 4.5.2 it can only be set on the ServicePointManager which would apply to every ServicePoint in the process, potentially with side effects. 

      Attachments

        Issue Links

          For Gerrit Dashboard: NCBC-1692
          # Subject Branch Project Status CR V

          Activity

            jmorris Jeff Morris added a comment - - edited

            This should be done after NCBC-1620 is merged since it requires that the SslConnection class have access to the ClientConfiguration which is done as part of NCBC-1692 

            jmorris Jeff Morris added a comment - - edited This should be done after NCBC-1620  is merged since it requires that the SslConnection class have access to the ClientConfiguration which is done as part of NCBC-1692  
            jmorris Jeff Morris added a comment - - edited

            This actually needs one more thing: support for net45 which only allows server revocation to be enabled by using the ServicePointManager. Since the ServicePointManager is global to an app domain, and will effect everything, we'll need to call GetServicePoint(uri) to get the specific ServicePoint for a given uri and then enable it there. Not fun.

            Another option is to only allow it for .net standard and release note that it doesn't apply to .net45?

            jmorris Jeff Morris added a comment - - edited This actually needs one more thing: support for net45 which only allows server revocation to be enabled by using the ServicePointManager. Since the ServicePointManager is global to an app domain, and will effect everything, we'll need to call GetServicePoint(uri) to get the specific ServicePoint for a given uri and then enable it there. Not fun. Another option is to only allow it for .net standard and release note that it doesn't apply to .net45?

            People

              jmorris Jeff Morris
              jmorris Jeff Morris
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes

                  PagerDuty