Add TLS between inway and outway (!69) · Merge requests · Common Ground / NLX / nlx

Geert-Johan Riemer requested to merge feature/tls-inway-outway into master Feb 09, 2018

Changed inway to use generated cert to provide HTTPS endpoint.
Changed outway to only allow inway endpoints with a cert signed by our CA.
Changed outway to use generated cert for client authentication to inway.
Changed inway to only allow clients that authenticate with a cert signed by our CA.
Added authenticated client's subject and issues to inway logs.
Added common/process package which currently sets up basic signal handling for developer friendly logging.
Fixed modd.conf for ash (in alpine containers).

The docker-compose file contains some light shell scripting to let inway and outway containers wait for their organizational certs to be ready. This way the components stay unaware of eachother.

This closes #34 (closed) and closes #35 (closed).

Also unintentionally closes #62 (closed), I required the signal handling to debug the signalling problem with modd and ash.

Add TLS between inway and outway

Merge request reports