directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Stefan Seelmann (JIRA)" <j...@apache.org>
Subject [jira] Commented: (DIRSTUDIO-263) Add certificate validation for ldaps and StartTLS
Date Thu, 28 May 2009 12:10:46 GMT

    [ https://issues.apache.org/jira/browse/DIRSTUDIO-263?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12713955#action_12713955
] 

Stefan Seelmann commented on DIRSTUDIO-263:
-------------------------------------------

The next steps are finished:
- a certificate detail dialog
- a custom keystore for temporary and permanent trusted certificates
- a preference page manage these manually trusted certificates

For hostname validation I found some useful verifiers in the HttpComponents project: http://hc.apache.org/httpcomponents-client/httpclient/apidocs/org/apache/http/conn/ssl/package-summary.html


> Add certificate validation for ldaps and StartTLS
> -------------------------------------------------
>
>                 Key: DIRSTUDIO-263
>                 URL: https://issues.apache.org/jira/browse/DIRSTUDIO-263
>             Project: Directory Studio
>          Issue Type: Improvement
>          Components: studio-connection
>            Reporter: Stefan Seelmann
>            Assignee: Stefan Seelmann
>            Priority: Minor
>             Fix For: 1.5.0
>
>
> We have encrypted connections using ldaps:// or the StartTLS extended operation, but
the certificate isn't validated as we always use a DummySSLSocketFactory.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message