From 99b7f8aa7b8ad4ce424977924c12402c7cc48bf0 Mon Sep 17 00:00:00 2001
From: danielhanrahan <daniel.hanrahan@est.tech>
Date: Mon, 14 Mar 2022 15:37:24 +0000
Subject: Make client cert authentication optional in policy-gui

Set client auth to optional as Apex Editor does not need certs.

Issue-ID: POLICY-3980
Signed-off-by: danielhanrahan <daniel.hanrahan@est.tech>
Change-Id: Iad03f80f5fb79e6f48a21699c45e9fbf7c746106
---
 gui-server/extra/bin-for-dev/start-gui-server-docker.sh           | 1 -
 packages/policy-gui-docker/src/main/docker/config/application.yml | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/gui-server/extra/bin-for-dev/start-gui-server-docker.sh b/gui-server/extra/bin-for-dev/start-gui-server-docker.sh
index 78748cd..1fe45f2 100755
--- a/gui-server/extra/bin-for-dev/start-gui-server-docker.sh
+++ b/gui-server/extra/bin-for-dev/start-gui-server-docker.sh
@@ -29,7 +29,6 @@ docker run \
   --add-host policy-clamp-be:host-gateway \
   --env "CLAMP_URL=https://policy-clamp-be:8443" \
   --env "CLAMP_DISABLE_SSL_VALIDATION=true" \
-  --env "SERVER_SSL_CLIENT_AUTH=want" \
   --env "KEYSTORE_PASSWD=changeit" \
   --env "TRUSTSTORE_PASSWD=changeit" \
   --volume "$KEYSTORE_PATH:/opt/app/policy/gui/etc/mounted/policy-keystore" \
diff --git a/packages/policy-gui-docker/src/main/docker/config/application.yml b/packages/policy-gui-docker/src/main/docker/config/application.yml
index 7b20d02..17729f7 100644
--- a/packages/policy-gui-docker/src/main/docker/config/application.yml
+++ b/packages/policy-gui-docker/src/main/docker/config/application.yml
@@ -2,7 +2,7 @@ server:
   port: 2443
   ssl:
     enabled: true
-    client-auth: need
+    client-auth: want
     key-store: file:${KEYSTORE}
     key-store-password: ${KEYSTORE_PASSWD}
     trust-store: file:${TRUSTSTORE}
-- 
cgit 1.2.3-korg