danielorf opened a new issue #10044: URL: https://github.com/apache/pulsar/issues/10044
**Is your enhancement request related to a problem? Please describe.** The Python [Client](https://pulsar.apache.org/api/python/2.7.0-SNAPSHOT/#pulsar.Client.__init__) parameter `tls_validate_hostname` only validates that the endpoint hostname matches the Common Name in the TLS cert supplied by the endpoint. **Describe the solution you'd like** The Python Client should also validate against [Subject Alternative Name](https://en.wikipedia.org/wiki/Subject_Alternative_Name) field in the TLS cert. This is a common practice to include multiple hostnames in a TLS cert to share across scalable systems without necessarily having to use a wildcard the hostname. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
