Skip to content

Changes for JAVA-3420 #622

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 0 commits into from
Closed

Changes for JAVA-3420 #622

wants to merge 0 commits into from

Conversation

niccottrell
Copy link
Contributor

@jyemin jyemin requested a review from stIncMale January 5, 2021 12:23
stIncMale
stIncMale reviewed Jan 5, 2021
View reviewed changes
docs/reference/content/driver/tutorials/ssl.md Outdated
@@ -155,10 +155,12 @@ MongoClientOptions.builder()
.build();
```

## JVM System Properties for TLS/SSL
## Certificates
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This section is relevant only in situations when users want to use the JVM default truststore and keystore, instead of using separate ones when communicating with a MongoDB server (separate truststore/keystore can be specified via javax.net.ssl.SSLContext.init(KeyManager[] km, TrustManager[] tm, SecureRandom random)). I believe it would be useful to reflect this info in the section title and the section content. For example:

Configuring the default truststore and keystore (as an alternative to "Certificates")

One may either configure separate truststores and keystores via javax.net.ssl.SSLContext.init(KeyManager[] km, TrustManager[] tm, SecureRandom random), or use the JVM default ones.

Default truststore (as an alternative to "Certificate authority")

...content suggested in this PR

Default keystore (as an alternative to "Client certificates")

...content suggested in this PR

docs/reference/content/driver/tutorials/ssl.md Outdated
Comment on lines 206 to 207
For more information on configuring a Java application for TLS/SSL, please
refer to the [`JSSE Reference Guide`](http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/JSS
ERefGuide.html).
refer to the [`JSSE Reference Guide`](http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/JSSERefGuide.html).
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We can be more concrete and point to a specific relevant section of the guide: JSSE Reference Guide - Customizing the Default Keystores and Truststores, Store Types, and Store Passwords.

@stIncMale stIncMale closed this Jan 18, 2021
@stIncMale
Copy link
Member

@niccottrell, I apologize for breaking this MR while trying to add a new commit to it. The new MR is here #637. It includes the changes you made, my proposed changes from above (with minor modifications), and other improvements.

@stIncMale stIncMale mentioned this pull request Jan 18, 2021
Merged
@niccottrell
Copy link
Contributor Author

niccottrell commented Feb 24, 2021 via email

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@stIncMale stIncMale stIncMale left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@niccottrell @stIncMale