[
https://issues.apache.org/jira/browse/AIRFLOW-3164?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16700923#comment-16700923
]
Maciej BryĆski commented on AIRFLOW-3164:
-----------------------------------------
I know that LDAP without TLS transmits ever users password in plain text over
the network where it could be sniffed.
But I can have this transfer in my private intranet.
If you want to have this secure - OK. But leave the option.
About FAB
If we move to FAB then I can use LDAP without TLS ?
Because FAB has option if I want to use TLS for LDAP connection.
https://github.com/dpgaspar/Flask-AppBuilder/blob/master/flask_appbuilder/security/manager.py#L190
So this is another point for leaving a choise to user.
PS. I'm pretty sure that currently new UI have plenty of bugs and I don't want
to be a guinea pig testing it.
> verify certificate of LDAP server
> ---------------------------------
>
> Key: AIRFLOW-3164
> URL: https://issues.apache.org/jira/browse/AIRFLOW-3164
> Project: Apache Airflow
> Issue Type: Bug
> Reporter: Bolke de Bruin
> Priority: Blocker
> Fix For: 1.10.1
>
>
> Currently we dont verify the certificate of the Ldap server this can lead to
> security incidents.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
