Details
-
Story
-
Status: Closed
-
Medium
-
Resolution: Done
-
None
-
Unset
-
Unset
-
Unset
Description
The fabric peer and orderer runtimes actually support mutual TLS via the use of the common grpcServer component, however there is currently now way to configure either of them to require/enforce mutual TLS.
While not strictly required for Fabric networks, mutual TLS adds an extra layer of protection for publicly exposed endpoints
Attachments
Issue Links
1.
|
Enable mutual TLS support for orderer nodes |
|
Closed | Gari Singh |
|
||||||||
2.
|
Add mutual TLS flag to comm.GRPCServer |
|
Closed | Gari Singh |
|
||||||||
3.
|
Configure peer to make mutual TLS connections |
|
Closed | Gari Singh |
|
||||||||
4.
|
Add mutual TLS config option for peer |
|
Closed | Gari Singh |
|
||||||||
5.
|
Support mutual TLS for connections to peer and orderer |
|
Closed | Gari Singh |
|
||||||||
6.
|
Support mutual TLS for connections to peer and orderer |
|
Closed | Gari Singh |
|
||||||||
7.
|
Generate TLS client certificates for users |
|
Closed | Gari Singh |
|
||||||||
8.
|
Add integration test for java SDK mutual TLS |
|
Closed | Rick Rine | |||||||||
9.
|
Add integration test for node SDK mutual TLS |
|
Closed | Gari Singh | |||||||||
10.
|
Support ability to specify a separate client x509 cert and key for mutual TLS |
|
Closed | Gari Singh | |||||||||
11.
|
Add mutual TLS support for peer binary when used as client CLI |
|
Closed | Gari Singh | |||||||||
12.
|
client TLS cert support for gossip |
|
Closed | Yacov Manevich | |||||||||
13.
|
Document TLS configuration for peers and orderers |
|
Closed | Gari Singh |
