Configure SSL Certificate revocation using OCSP

Table of Contents

Overview
Issue Metadata
Requirements
- Affected UI
- Affected Resources
Test Plan
Community Documentation

Overview

Provide undertow’s client certificate revocation capability when undertow is used as a load balancer using OCSP. (CRL capability is provided in the earlier release as part of Elytron SSL Consolidation effort that this JIRA is cloned from)

Issue Metadata

Testing By

[x] Engineering [ ] QE

Affected Projects or Components

WildFly
HAL

Requirements

Add support for the new complex attribute ocsp in /subsystem=elytron/trust-manager=*.

Affected UI

Configuration / Subsystems / Elytron / Other Settings / SSL / Trust Manager

Affected Resources

/subsystem=elytron/trust-manager=*

Test Plan

Add tests to the test suite to test the newly added attribute.

Community Documentation

See the official HAL website at https://hal.github.io