[Bugs] [Bug 1209432] Using TLS Identities for Authorization is mandatory, not optional
bugzilla at redhat.com
bugzilla at redhat.com
Tue Apr 7 13:34:25 UTC 2015
https://bugzilla.redhat.com/show_bug.cgi?id=1209432
Jeff Darcy <jdarcy at redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Flags|needinfo?(jdarcy at redhat.com |
|) |
--- Comment #3 from Jeff Darcy <jdarcy at redhat.com> ---
This does affect 3.6 AFAICT. The patch that introduced SSL/TLS authorization
is:
rpc/auth: allow SSL identity to be used for authorization
Thu Apr 17 23:21:05 2014 +0000
caa8a4ea50734378e7e19f70b39a837c58e9d229 (master/release-3.6)
The patch that adds a default "auth.ssl-allow=*" is:
transport: fix default behavior for SSL authorization
Tue Jan 6 10:03:49 2015 -0500
548547b2e41c8e2cf79b929405cf18aecbdedebc (master only)
It should be sufficient to backport 548547b2e41c8e2cf79b929405cf18aecbdedebc.
--
You are receiving this mail because:
You are on the CC list for the bug.
You are the assignee for the bug.
More information about the Bugs
mailing list