[
https://issues.apache.org/jira/browse/AIRFLOW-3164?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16701011#comment-16701011
]
Bolke de Bruin commented on AIRFLOW-3164:
-----------------------------------------
I agree that the backwards compatibility could have been handled better. We
probably targeted 2.0 around the times this happened, but instead went for
1.10.1.
However, we have given you the option. If you want to be insecure. Go ahead
copy the auth and disable the check. It's not a big change. If big companies
can find the time to maintain an insecure LDAP setup they can also delegate
some time to add this to their setup (oh and my big company is a good client of
yours if i'm correct ;) ).
> verify certificate of LDAP server
> ---------------------------------
>
> Key: AIRFLOW-3164
> URL: https://issues.apache.org/jira/browse/AIRFLOW-3164
> Project: Apache Airflow
> Issue Type: Bug
> Reporter: Bolke de Bruin
> Priority: Blocker
> Fix For: 1.10.1
>
>
> Currently we dont verify the certificate of the Ldap server this can lead to
> security incidents.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
