HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

Add a new idea Subscribe
Status Under Consideration
Workspace Domino
Categories Administration
Created by Guest
Created on Feb 21, 2024

RELATED IDEAS

Make NotesHTTPRequest class use certstore/certmgr

According to this KB:

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0069539

the NotesHTTPRequest class uses the cacert.pem as local keystore. Since certstore is a great new feature to maintain trusted CAs, please let NotesHTTPRequest use it.

  • Attach files
  • Guest
    Reply
    |     Apr 20, 2024

    I agree, it would make a lot of sense to unify all certificate consumers.
    The foundation has been layed in 12.0.2.
    There is an API, which can be used to get trusted roots from Domino Directory and also cerstore.nsf including certificate catagories.
    You can see this functionality used already in ICAP/CScan and the OIDC configuration.
    Also the Certificate URL Health Check uses this new API.

    To ensure existing configurations continue to work, this should be a new option wich defaults to cacerts.pem.

    In addition I would like to see more functionality in the NotesHTTPRequest as well.

    For example requesting binary data e.g. file downloads returned in a NotesStream.


Copyright © 2023 HCL Technologies Limited