Skip to content
Success

Changes

Summary

  1. [GovWayCore] (commit: c798b2b) (details)
Commit c798b2b126b4d60edadbf7774fe16eb36c0c80f1 by Andrea Poli
[GovWayCore]
Quando si valida il certificato di firma utilizzato in un header WSSecurity, se questo certificato è stato emesso da una CA intermedia,
la validazione, inclusa l'esamina delle CRL, viene effettuata su tutti i certificati, compresi quelli intermedi,
anche se viene fornito un solo file CRL relativo al certificato finale.
Di conseguenza, durante la validazione di un certificato intermedio, potrebbe comparire l'errore:
        'No CRLs found for issuer "cn=RootCA,ou=TEST,o=Example,c=IT"'
Questo errore si verifica perché non è stata trovata una CRL emessa per il certificato intermedio dalla CA issuer (nell'esempio, quella di root).
Per risolvere il problema, è necessario fornire un file CRL per ogni certificato, inclusi quelli intermedi.
Per evitare questa complessa configurazione e prevenire il fallimento della validazione, se viene fornito un solo file CRL,
la configurazione di default adesso assume che esso sia relativo al certificato finale e non viene utilizzato per validare i certificati intermedi.
(commit: c798b2b)
The file was removedthird-party-licenses/jetty/jetty-io-10.0.16/LICENSE
The file was modifiedcore/ant/openspcoop2-ear.xml (diff)
The file was removedthird-party-licenses/wss4j/wss4j-ws-security-common-2.4.1-gov4j-1/LICENSE
The file was modifiedcore/src/org/openspcoop2/security/keystore/MerlinProvider.java (diff)
The file was removedthird-party-licenses/jetty/jetty-http-10.0.16/LICENSE
The file was modifiedChangeLog (diff)
The file was removedthird-party-licenses/jetty/jetty-util-10.0.16/LICENSE
The file was removedthird-party-licenses/jetty/jetty-security-10.0.16/LICENSE
The file was modifiedtools/web_interfaces/control_station/ant/openspcoop2-govwayConsole-war.xml (diff)
The file was addedthird-party-licenses/jetty/jetty-security-10.0.24/LICENSE
The file was modifiedmvn/dependencies/jetty/pom.xml (diff)
The file was removedthird-party-licenses/wss4j/wss4j-ws-security-dom-2.4.1-gov4j-1/LICENSE
The file was modifiedcore/src/org/openspcoop2/security/message/constants/SecurityConstants.java (diff)
The file was modifiedlib/openspcoop2.userlibraries (diff)
The file was addedthird-party-licenses/wss4j/wss4j-ws-security-common-2.4.1-gov4j-2/LICENSE
The file was modifiedcore/src/org/openspcoop2/security/keystore/KeystoreConstants.java (diff)
The file was addedthird-party-licenses/jetty/jetty-io-10.0.24/LICENSE
The file was addedthird-party-licenses/jetty/jetty-server-10.0.24/LICENSE
The file was modifiedtools/utils/src/org/openspcoop2/utils/certificate/CRLCertstore.java (diff)
The file was modifiedtools/command_line_interfaces/config_loader/build.xml (diff)
The file was modifiedmvn/dependencies/wss4j/pom.xml (diff)
The file was addedthird-party-licenses/jetty/jetty-http-10.0.24/LICENSE
The file was addedthird-party-licenses/jetty/jetty-util-10.0.24/LICENSE
The file was addedthird-party-licenses/wss4j/wss4j-ws-security-dom-2.4.1-gov4j-2/LICENSE
The file was modifiedcore/src/org/openspcoop2/security/message/wss4j/MessageSecurityReceiver_wss4j.java (diff)
The file was removedthird-party-licenses/jetty/jetty-server-10.0.16/LICENSE