D11520: kldap: add support for TLS CA certificate handling
Tobias Junghans
noreply at phabricator.kde.org
Tue Mar 20 17:43:26 GMT 2018
junghans created this revision.
junghans added a reviewer: mlaurent.
Restricted Application added a project: KDE PIM.
Restricted Application added a subscriber: KDE PIM.
junghans requested review of this revision.
REVISION SUMMARY
This implements basic support for setting the TLS certificate request option (LDAP_OPT_X_TLS_REQUIRE_CERT) as well as a dedicated certificate
file for checking server certificate (LDAP_OPT_X_TLS_CACERTFILE).
TEST PLAN
TLS connection to LDAP server with self-signed certificate
- scenario a) none of the new options set -> connection fails due to missing certificate to check against
- scenario b) use LdapServer::TLSReqCertNever which makes the connection succeed
- scenario c) use LdapServer::TLSReqCertHard and set tlsCACertFile which makes the connection succeed
REPOSITORY
R178 PIM: KLDAP
REVISION DETAIL
https://phabricator.kde.org/D11520
AFFECTED FILES
src/ldapconnection.cpp
src/ldapserver.cpp
src/ldapserver.h
To: junghans, mlaurent
Cc: #kde_pim, dvasin, winterz, vkrause, mlaurent, knauss, dvratil
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.kde.org/pipermail/kde-pim/attachments/20180320/735b7d35/attachment.html>
More information about the kde-pim
mailing list