Development #752
OCSP and CRL support
Début:
12 octobre 2011
Echéance:
% réalisé:
0%
Temps estimé:
Patch proposed:
Non
Planning:
Description
Include trust path discovery: only declare an entity ID and root AC.
- Check SSL cert at SAML2 metadata connexion
- MD signature
Révisions associées
[http_utils] prefer using pycurl instead of M2Crypto to retrieve HTTPs URLS as it supports server name indication
Thanks to Jean Christophe André for the feature request and the patch.
Fixes #1419
Historique
Mis à jour par Benjamin Dauvergne il y a plus de 7 ans
- Statut changé de Nouveau à Rejeté
- Patch proposed mis à Non
Supporting OCSR and CRL is not important anymore, we will wait for support in requests: https://github.com/kennethreitz/requests/issues/1786
Add a module to perform HTTP GET with proper certificate checks
Replace all usr of urllib.urlopen by this the new function get_url.
If M2Crypto is availlable, HTTPs URLs work, if not they do not.
Closes #70