Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MGRAPPS-10: Secure mgr-applications HTTP end-points with SSL #76

Merged
merged 2 commits into from
May 20, 2024
Merged

MGRAPPS-10: Secure mgr-applications HTTP end-points with SSL #76

merged 2 commits into from
May 20, 2024

Conversation

OleksiiKuzminov
Copy link
Collaborator

@OleksiiKuzminov OleksiiKuzminov commented May 20, 2024
edited
Loading

Purpose

Secure mgr-tenants HTTP end-points with SSL using FIPS-140-2 compliant crypto modules
MGRAPPS-10

Approach

  • Add BouncyCastle libs
  • Configure application to work with SSL enabled on top of BC libs

TODOS and Open Questions

  • Check logging

Learning

Pre-Merge Checklist:

Before merging this PR, please go through the following list and take appropriate actions.

  • Does this PR meet or exceed the expected quality standards?
    • Code coverage on new code is 80% or greater
    • Duplications on new code is 3% or less
    • There are no major code smells or security issues
  • Does this introduce breaking changes?
    • Were any API paths or methods changed, added, or removed?
    • Were there any schema changes?
    • Did any of the interface versions change?
    • Were permissions changed, added, or removed?
    • Are there new interface dependencies?
    • There are no breaking changes in this PR.

If there are breaking changes, please STOP and consider the following:

  • What other modules will these changes impact?
  • Do Rally stories exist to update the impacted modules?
    • If not, please create them
    • Do they contain the appropriate level of detail? Which endpoints/schemas changed, etc.
    • Do they have all the appropriate links to blocked/related issues?
  • Are the Rally stories under active development?
    • If not, contact the project's PO and make sure they're aware of the urgency.
  • Do PRs exist for these changes?
    • If so, have they been approved?

Ideally, all the PRs involved in breaking changes would be merged on the same day to avoid breaking the folio-testing
environment. Communication is paramount if that is to be achieved, especially as the number of inter-module and
inter-team dependencies increase.

While it's helpful for reviewers to help identify potential problems, ensuring that it's safe to merge is ultimately the
responsibility of the PR assignee.

@OleksiiKuzminov OleksiiKuzminov self-assigned this May 20, 2024
@OleksiiKuzminov OleksiiKuzminov requested a review from a team as a code owner May 20, 2024 12:17
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

@OleksiiKuzminov OleksiiKuzminov merged commit 9cc44c6 into master May 20, 2024
4 checks passed
@OleksiiKuzminov OleksiiKuzminov deleted the MGRAPPS-10_TLS branch May 20, 2024 14:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dmtkachenko dmtkachenko dmtkachenko approved these changes

Assignees

@OleksiiKuzminov OleksiiKuzminov

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@OleksiiKuzminov @dmtkachenko