DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=43755>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=43755 Summary: Add a SSLOptions to don't fill SSL_CLIENT_VERIFY Product: Apache httpd-2 Version: 2.2.6 Platform: All OS/Version: All Status: NEW Severity: enhancement Priority: P2 Component: mod_ssl AssignedTo: [email protected] ReportedBy: [EMAIL PROTECTED] For a verify specific purpose (explained later), I need to define SSL_CLIENT_VERIFY to SUCCESS by another module than mod_ssl even if there is no X509 client certificate authentication. To achieve my whish, I wrote a small patch which add the NoClientVerifyEnvVars options to SSLOptions, if this option is enabled, mod_ssl skip this variable. The patch can be found here: http://kaoru.asyd.net/~asyd/ssl.patch This patch can probably be useful for others usage, that's why I submit it.. Context: I actually work on a mod_perl module which use an extended CAS (Central Authentication Services) - a SSO solution - to authenticate users, and provide a fake SSL X509 client authentication from a certificate provided in the CAS answer. To be sure that this module can work with out modify applications, I want to set SSL_CLIENT_VERIFY to SUCCESS, but I'm not able to overwrite the variable, that's why I wrote this patch. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
