• Home
• com.ericsson.bss.cassandra.ecchronos
• application
• 6.0.4
• source code

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

bss.cassandra.ecchronos.application.6.0.4.source-code.security.yml Maven / Gradle / Ivy

#
# Copyright 2020 Telefonaktiebolaget LM Ericsson
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#

cql:
  credentials:
    enabled: false
    username: cassandra
    password: cassandra
  tls:
    enabled: false
    keystore: /path/to/keystore
    keystore_password: ecchronos
    truststore: /path/to/truststore
    truststore_password: ecchronos
    certificate:
    certificate_private_key:
    trust_certificate:
    protocol: TLSv1.2
    algorithm:
    store_type: JKS
    cipher_suites:
    require_endpoint_verification: false
    ##
    ## Certificate Revocation List (CRL) configuration for ecChronos CQL connections. CRL
    ## checking will be done in one of two modes; strict or non-strict. The CRL feature
    ## is optional. If the crl section is not specified, it will default to disabled.
    ##
    ## strict     - A valid and signed CRL must exist for the provided certificate for a
    ##              connection to be allowed. Therefore, a missing or empty CRL file
    ##              will result in rejection. If rejected, a number of attempts will be
    ##              made to refresh the CRL file (for any updates). If the last attempt
    ##              fails, ecChronos will gracefully shut down.
    ##
    ## non-strict - Is more loose in its CRL checking in that already opened connections
    ##              will be kept. CRL will only be carried out during new (re-)connections.
    ##              Also, there must be an explicit revocation present for a certificate
    ##              to be rejected. A missing or empty CRL will not result in rejected
    ##              connections.
    ##
    crl:
      ##
      ## Enable CRL for CQL connections. Defaults to false.
      ##
      enabled: false
      ##
      ## Path to the CRL file.
      ##
      path: /path/to/file.crl
      ##
      ## Mode of operation. Defaults to false ("non-strict").
      ##
      strict: false
      ##
      ## Number of attempts at CRL rejections. Defaults to 5.
      ##
      attempts: 5
      ##
      ## How often (in seconds) to rescan the CRL file for modifications. Defaults to 5 minutes (300 seconds).
      ##
      interval: 300


jmx:
  credentials:
    enabled: false
    username: cassandra
    password: cassandra
  tls:
    enabled: false
    keystore: /path/to/keystore
    keystore_password: ecchronos
    truststore: /path/to/truststore
    truststore_password: ecchronos
    protocol: TLSv1.2
    cipher_suites: