summaryrefslogtreecommitdiffstats
path: root/security-utils/src/main/java/com/yahoo/security/tls
Commit message (Expand)AuthorAgeFilesLines
* Make TLS protocol version configurable in TLS config fileBjørn Christian Seime2021-02-245-10/+44
* Disable TLSV1.3Bjørn Christian Seime2021-02-241-1/+2
* Allow TLSv1.3Bjørn Christian Seime2021-02-181-1/+1
* Use singleton already present.Henning Baldersheim2021-01-281-4/+0
* Use a single, shared TlsContext instanceBjørn Christian Seime2021-01-142-18/+31
* Revert "Use a single reloader per tls config file, and not one per instance."Bjørn Christian Seime2021-01-142-162/+135
* Revert "Use reference counting to avoid relying on GC to drop threads."Bjørn Christian Seime2021-01-142-36/+8
* Support SAN URI based rules in authorization policiesBjørn Christian Seime2020-11-265-3/+55
* Encapsulate pattern implementation in RequiredPeerCredentialBjørn Christian Seime2020-11-253-7/+27
* Revert "Revert "Bjorncs/health check proxy https""Bjørn Christian Seime2020-10-151-0/+27
* Revert "Bjorncs/health check proxy https"Arnstein Ressem2020-10-151-27/+0
* Add trust manager that accepts any server certificateBjørn Christian Seime2020-10-141-0/+27
* Revert "Revert "Expose underlying certificate and private key from SiaIdentit...Bjørn Christian Seime2020-06-021-1/+9
* Revert "Expose underlying certificate and private key from SiaIdentityProvider "Harald Musum2020-05-281-9/+1
* Merge pull request #13257 from vespa-engine/bjorncs/service-identity-provider...Bjørn Christian Seime2020-05-281-1/+9
|\
| * Expose underlying certificate and private key from SiaIdentityProviderBjørn Christian Seime2020-05-181-1/+9
* | Ignore unknown fields in subclasses as wellBjørn Christian Seime2020-05-181-0/+3
|/
* Support construction of PeerPolicy with descriptionBjørn Christian Seime2020-05-133-2/+16
* Use reference counting to avoid relying on GC to drop threads.Henning Baldersheim2020-04-232-8/+36
* Use a single reloader per tls config file, and not one per instance.Henning Baldersheim2020-04-232-135/+162
* Override hostname verification in PeerAuthorizerTrustManagerBjørn Christian Seime2020-02-174-28/+56
* Use 'withTrustManager' in ConfigFileBasedTlsContextBjørn Christian Seime2020-02-171-5/+5
* Introduce 'disable-hostname-validation' to TLS json formatBjørn Christian Seime2020-02-133-2/+22
* Allow SSLContext implementation that supports TLSv1.3+Bjørn Christian Seime2020-01-311-1/+1
* Revert "Allow SSLContext implementation that supports TLSv1.3+"Valerij Fredriksen2019-12-091-1/+1
* Merge branch 'master' into bjorncs/sslcontext-versionBjørn Christian Seime2019-12-036-14/+14
|\
| * Use JDK8 as build target for security-utilsBjørn Christian Seime2019-12-026-14/+14
* | Allow SSLContext implementation that supports TLSv1.3+Bjørn Christian Seime2019-12-031-1/+1
|/
* Add constant for SSLContext versionBjørn Christian Seime2019-11-251-0/+1
* Add helper methods in TlsContext to determine allowed ciphers/protocolsBjørn Christian Seime2019-11-252-26/+49
* Remove more cipher suites not supported by Java 11 from set configured for us...Harald Musum2019-11-211-1/+10
* Remove cipher suite not supported by JavaHarald Musum2019-11-201-0/+1
* Order authorized peers in JSON to stabilize testsHåkon Hallingstad2019-10-071-19/+23
* Revert "Bjorncs/jdisc tls13"Bjørn Christian Seime2019-10-041-1/+1
* Enable TLSv1.3 for servers/clients based on TlsContextBjørn Christian Seime2019-10-031-1/+1
* Add additional constructor for custom peer authentication modeBjørn Christian Seime2019-09-131-3/+12
* Use current certificate manager to find certificate expiryBjørn Christian Seime2019-07-041-1/+6
* Merge pull request #9951 from vespa-engine/bjorncs/fix-for-race-conditionAndreas Eriksen2019-07-041-13/+26
|\
| * Make access to hashmap and current manager synchronizedBjørn Christian Seime2019-07-031-13/+26
* | Fix typo in class nameBjørn Christian Seime2019-07-042-4/+4
* | Make alias a constantBjørn Christian Seime2019-07-031-1/+3
* | Use withKeyManager instead of withKeyManagerFactoryBjørn Christian Seime2019-07-031-1/+1
* | Make peer authentication in TlsContext configurableBjørn Christian Seime2019-07-033-7/+33
* | Rename 'ReloadingTlsContext' -> 'ConfigFiledBasedTlsContext'Bjørn Christian Seime2019-07-032-5/+6
* | Remove ciphers from DefaultTlsContext public constructorsBjørn Christian Seime2019-07-032-7/+11
* | Change type of constants from list to setBjørn Christian Seime2019-07-033-8/+8
* | Move constants from DefaultTlsContext to TlsContextBjørn Christian Seime2019-07-032-13/+15
|/
* Add overloads taking envvar map as parameterBjørn Christian Seime2019-05-311-7/+28
* Allow 'null' as alias to getCertificateChain/getPrivateKeyBjørn Christian Seime2019-05-281-0/+2
* Remove TlsAwareHttpClientBuilderBjørn Christian Seime2019-04-084-310/+0