Uploaded image for project: 'Hue (READ ONLY)'
  1. Hue (READ ONLY)
  2. HUE-3133

Provide client-certificate Authentication backend (PKI)

          Details

          • Type: New Feature
          • Status: Closed
          • Priority: Major
          • Resolution: Incomplete
          • Affects Version/s: 3.9.0
          • Fix Version/s: 3.10.0
          • Component/s: core.api
          • Labels:
            None

            Description

            This is critical for some of our customers.

            Request that it be possible to configure Hue to request client certificates when doing a TLS handshake (I believe this is possible with CherryPy) and for a Django backend to extract the CN from the certificate's Distinguished Name for use in the session (groups will still need to come from a different Authentication backend). Client-certificate would need to be signed by a root CA that's in Hue's truststore.

              Attachments

                Issue Links

                relates to

                Improvement - An improvement or enhancement to an existing feature or task. HUE-2582 [core] Upgrade CherryPy that adds TLS certificate chain support

                • Major - Major loss of function.
                • Resolved

                  Activity

                    People

                    • Assignee:
                      Unassigned
                      Reporter:
                      tristan Tristan Stevens
                    • Votes:
                      0 Vote for this issue
                      Watchers:
                      2 Start watching this issue

                      Dates

                      • Created:
                        Updated:
                        Resolved: