Comments (5)
michaelklishin
commented on June 1, 2024
Most users probably would expect the same thing: that the trust manager provided in the config would be used. Please submit a PR.
It has been explained multiple times why changing the default trust manager implementation in the Java client is not an easy decision. We wish we could switch to something else without consequences. Unfortunately even after years of improving RabbitMQ TLS guide we see over and over again that a lot of developers have very little clue as to what all those certificates are and what the heck is certificate chain verification. Guess who they take their questions and complaints to and how much they are willing to pay for that time.
from rabbitmq-jms-client.
welsh
commented on June 1, 2024
PR submitted and I do understand why the decision was made the way it was, and I approve of the warning to be there if you are indeed using the TrustEverythingTrustManager however it just makes sense that it shouldn't appear if you aren't actually using it.
It's mainly for when support looks at the logging output of the application, it will prompt questions about why am I not doing it securely when in fact I am.
from rabbitmq-jms-client.
michaelklishin
commented on June 1, 2024
@welsh I understand how that's very annoying and can attract a lot of scrutiny in some environments. @acogoluegnes is away for a few days but I'll try to QA your PR shortly.
from rabbitmq-jms-client.
acogoluegnes
commented on June 1, 2024
Ironically this reverses a previous fix made obsolete by the change in the Java client @welsh mentioned.
from rabbitmq-jms-client.
acogoluegnes
commented on June 1, 2024
Fixed in #75.
from rabbitmq-jms-client.
Related Issues (20)
- Implement JMS 2.0 body extraction methods
- Add JMS 2.0 new methods to create a session (JMS_SPEC-45)
- Add new createDurableConsumer JMS 2.0 methods (JMS_SPEC-51)
- Make JMSXDeliveryCount mandatory
- Add flag to enable subscription name validation
- Activate subscription name validation
- Deprecate ConfirmListener in favor of JMS 2.0 asynchronous send
- Support JMS 2.0 asynchronous send HOT 1
- Remove ConfirmListener
- Add support for shared topic subscriptions HOT 1
- Implement JMS 2.0 simplified API
- Bump dependencies
- Bump dependencies
- Support delivery delay
- Support for Queue Selectors
- Request new parameter `nackOnRollback` in `RMQConnectionFactory#createConnectionFactory` HOT 2
- NPE if a received message is marked as "Redelivered" but no header is given HOT 2
- Expose setSaslConfig() on RMQConnectionFactory for supporting Mutual TLS HOT 3
- Bump dependencies
- Bump dependencies
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from rabbitmq-jms-client.