From 1222fa1407143a33312cdb8532212cd715062afe Mon Sep 17 00:00:00 2001
From: coulbeck <coulbeck@localhost>
Date: Wed, 05 Sep 2007 19:44:39 +0000
Subject: [PATCH] Enable replication session authentication. - Adds a thread to synchronize the server instance certificates from the admin data branch to the local trust store backend. - Replaces the blind trust managers in the replication session with trust managers that use the local trust store.

---
 opends/src/server/org/opends/server/replication/protocol/ReplSessionSecurity.java |    5 +++++
 1 files changed, 5 insertions(+), 0 deletions(-)

diff --git a/opends/src/server/org/opends/server/replication/protocol/ReplSessionSecurity.java b/opends/src/server/org/opends/server/replication/protocol/ReplSessionSecurity.java
index f77f3a7..7cf2e29 100644
--- a/opends/src/server/org/opends/server/replication/protocol/ReplSessionSecurity.java
+++ b/opends/src/server/org/opends/server/replication/protocol/ReplSessionSecurity.java
@@ -272,6 +272,11 @@
       // Force TLS negotiation now.
       secureSocket.startHandshake();
 
+//      SSLSession sslSession = secureSocket.getSession();
+//      System.out.println("Peer      = " + sslSession.getPeerHost() + ":" +
+//           sslSession.getPeerPort());
+//      System.out.println("Principal = " + sslSession.getPeerPrincipal());
+
       return new TLSSocketSession(socket, secureSocket);
     }
     else

--
Gitblit v1.10.0