Configuring allowed issuers for code trust
When the certificate chain for a certificate is being verified by
the Spotfire Server, a field in the Authority Information Access on the
certificate is used to get hold of the issuing certificate. You can configure a
list of URLs from which it is allowed to fetch certificates using the
security.code-trust.allowed-issuers
command.
Before you begin
Procedure
Server configuration example
The following is an example of a server configuration where three URLs have been added to the allowlist:
<configuration>
<security>
<code-trust>
<use-only-allowed-issuers>
<enabled>true</enabled>
</use-only-allowed-issuers>
<allowed-issuers>
<issuer>firstValue</issuer>
<issuer>secondValue</issuer>
<issuer>thirdValue</issuer>
</allowed-issuers>
</code-trust>
...
</security>
...
</configuration>