Skip to content

Reload SSL context on file change for LDAP #36937

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 28, 2018
Merged

Reload SSL context on file change for LDAP #36937

merged 1 commit into from
Dec 28, 2018

Conversation

@tvernum
Copy link
Contributor

@tvernum tvernum commented Dec 21, 2018
edited
Loading

In #30509 we changed the way SSL configuration is reloaded when the
content of a file changes. As a consequence of that implementation
change the LDAP realm ceased to pick up changes to CA files (or other
certificate material) if they changed.

This commit repairs the reloading behaviour for LDAP realms, and adds
a test for this functionality.

Resolves: #36923

@tvernum
Reload SSL context on file change for LDAP
a37bbf6 
In elastic#30509 we changed the way SSL configuration is reloaded when the
content of a file changes. As a consequence of that implementation
change the LDAP realm ceased to pick up changes to CA files (or other
certificate material) if they changed.

This commit repairs the reloading behaviour for LDAP realms, and adds
a test for this functionality.

Resolves: elastic#36923
@tvernum tvernum requested review from jaymode and jkakavas December 21, 2018 14:01
@elasticmachine
Copy link
Collaborator

elasticmachine commented Dec 21, 2018

Pinging @elastic/es-security

jaymode
jaymode approved these changes Dec 21, 2018
View reviewed changes
Copy link
Member

@jaymode jaymode left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

jkakavas
jkakavas approved these changes Dec 24, 2018
View reviewed changes
Copy link
Contributor

@jkakavas jkakavas left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks for resolving this

@tvernum tvernum merged commit 51c18c0 into elastic:master Dec 28, 2018
@jkakavas jkakavas mentioned this pull request Dec 28, 2018
Closed
tvernum added a commit that referenced this pull request Jan 4, 2019
@tvernum
Reload SSL context on file change for LDAP (#36937)
0234fa8 
In #30509 we changed the way SSL configuration is reloaded when the
content of a file changes. As a consequence of that implementation
change the LDAP realm ceased to pick up changes to CA files (or other
certificate material) if they changed.

This commit repairs the reloading behaviour for LDAP realms, and adds
a test for this functionality.

Resolves: #36923
tvernum added a commit that referenced this pull request Jan 4, 2019
@tvernum
Reload SSL context on file change for LDAP (#36937)
27a1725 
In #30509 we changed the way SSL configuration is reloaded when the
content of a file changes. As a consequence of that implementation
change the LDAP realm ceased to pick up changes to CA files (or other
certificate material) if they changed.

This commit repairs the reloading behaviour for LDAP realms, and adds
a test for this functionality.

Resolves: #36923
@jimczi jimczi added v7.0.0-beta1 and removed v7.0.0 labels Feb 7, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jaymode jaymode jaymode approved these changes

@jkakavas jkakavas jkakavas approved these changes

Assignees

No one assigned

Labels

>bug :Security/TLS SSL/TLS, Certificates v6.6.1 v6.7.0 v7.0.0-beta1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@tvernum @elasticmachine @jaymode @jkakavas @jimczi