Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[4.4.0 Alpha] MTLS support for production and sandbox bug in distributed setup #3250

Open
SachiniSiriwardene opened this issue Oct 13, 2024 · 0 comments
Open

[4.4.0 Alpha] MTLS support for production and sandbox bug in distributed setup #3250

SachiniSiriwardene opened this issue Oct 13, 2024 · 0 comments
Labels
4.4.0-Alpha 4.4.0 Affected/APIM-4.4.0 Issues affecting APIM 4.4.0 Component/APIM Type/Bug

Comments

@SachiniSiriwardene
Copy link

Description

When tested in a distributed setup, even when the certificate is sent in the request as a header (becuase TLS terminates at load balancer), the following error is given:
{"code":"900901","message":"Invalid Credentials","description":"Invalid Credentials. Make sure you have provided the correct security credentials"}
Work as expected in a local setup.

Steps to Reproduce

  1. Create and publish an API and enable MTLS in transport level security.
  2. Add the configs as mentioned in [(https://apim.docs.wso2.com/en/4.4.0/design/api-security/api-authentication/secure-apis-using-mutual-ssl/#using-mtls-header-to-invoke-apis-secured-with-mutual-ssl)] to deployment.toml.
  3. Send a request with the public certificate in a header.
  4. Invalid credentials error is given but should result in a successful request.

Affected Component

APIM

Version

4.40 Alpha

Environment Details (with versions)

No response

Relevant Log Output

No response

Related Issues

No response

Suggested Labels

No response
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
4.4.0-Alpha 4.4.0 Affected/APIM-4.4.0 Issues affecting APIM 4.4.0 Component/APIM Type/Bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@SachiniSiriwardene @Avishka-Shamendra