Overview
Artifact ID: | afde5da3ec11930c0e47d4fb70162c366b29e8ea |
---|---|
Ticket: | 0d1971c5aee58c973ef4b7e3fafffc1c2e29515d
SSL client certificates |
User & Date: | ben 2011-06-02 07:27:13 |
Changes
- comment changed to:
It would be useful to support client certificates for https connections. Making sure that unauthorised requests never invoke the fossil cgi handler gives an extra level of assurance to those who have paranoid tendencies. I implemented a very simple approach in the ben-security branch (--ssl-identity option to clone, which stores the path to PEM encoded cert and key in the ssl-identity setting), before noticing the jan-clientcert branch which provides a much more comprehensive certificate management feature (certs sub-command, certs table in repo db, client side cert passphrases, plus enhancements to the server certificate checking). What should I do to get support for client certificates into a state suitable for incorporating into the release version?
- private_contact changed to: "50da7412b8b802b1c9f7ddc204270d069d3c2e2b"
- severity changed to: "Important"
- status changed to: "Open"
- title changed to: "SSL client certificates"
- type changed to: "Feature_Request"