Client would like to be able to set the SSL connector in tomcat to clientAuth=true , to allow client-authenticated SSL as per: http://en.wikipedia.org/wiki/Transport_Layer_Security#Client-authenticated_TLS_handshake
While you can configure the artifactory tomcat to do this in server.xml
by putting in an SSL connector like so:
scheme="https" secure="true" SSLEnabled="true"
artifactory-to-artifactory communications such as remote repositories and replication do not work. Under normal circumstances one can set JVM parameters to provide the keystore to the HTTP client for example:
However, tomcat does not appear to allow these particular JVM parameters to be passed through. (Although it does allow pass-through of trust-store parameters.)
We should allow configuration of keys from the artifactory keystore to support this in push/pull replication and remote repositories.
|disable the menu item in OSS||Resolved|