GRPC transport encryption #273
Conversation
| applicationContext.registerBean( | ||
| JWTAuthGRPCTransportConfigurer.class, | ||
| () -> new JWTAuthGRPCTransportConfigurer(verifier) | ||
| () -> new JWTAuthGRPCTransportConfigurer(authProperties) |
There was a problem hiding this comment.
seems to be handled in #274, probably shouldn't be changed in this PR to avoid conflicts
...uth/src/main/java/com/github/bsideup/liiklus/transport/grpc/config/GRPCTLSConfiguration.java
Outdated
Show resolved
Hide resolved
|
this one is draft, yeah |
|
So I've tried to get keys and certs using this manual: Also didn't try yet but it should be actually exactly the same... With absolute paths for now, just to not spend time on relative path issues. is the only response I've got |
| .forAddress("localhost", port) | ||
| .directExecutor() | ||
| .sslContext(GrpcSslContexts.forClient() | ||
| .trustManager(ResourceUtils.getFile("/Users/lanwen/code/github.com/bsideup/liiklus/pki/issued/server.crt")) |
There was a problem hiding this comment.
sorry, didn't get? That's either ca, or server cert to trust
There was a problem hiding this comment.
the path to the file is hardcoded and obviously won't work on others' machines :)
There was a problem hiding this comment.
ah, sure, thats a very dirty draft, I didn't mean to leave it as is. I just wansn't able to achieve anything with certs.
...grpc-transport-auth/src/test/java/com/github/bsideup/liiklus/transport/grpc/GRPCTLSTest.java
Outdated
Show resolved
Hide resolved
|
could try to automate cert creation for the test, so that it would be easier for you to test same way as I did |
|
@bsideup I updated certs and paths following https://github.com/grpc/grpc-java/tree/master/testing/src/main/resources/certs so you could try to launch |
|
That's awesome! So what was wrong with the certs - how did you generate them finally? |
|
@lanwen FTR: |
related to #188