[
https://issues.apache.org/jira/browse/DIRSTUDIO-263?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12713955#action_12713955
]
Stefan Seelmann commented on DIRSTUDIO-263:
-------------------------------------------
The next steps are finished:
- a certificate detail dialog
- a custom keystore for temporary and permanent trusted certificates
- a preference page manage these manually trusted certificates
For hostname validation I found some useful verifiers in the HttpComponents
project:
http://hc.apache.org/httpcomponents-client/httpclient/apidocs/org/apache/http/conn/ssl/package-summary.html
> Add certificate validation for ldaps and StartTLS
> -------------------------------------------------
>
> Key: DIRSTUDIO-263
> URL: https://issues.apache.org/jira/browse/DIRSTUDIO-263
> Project: Directory Studio
> Issue Type: Improvement
> Components: studio-connection
> Reporter: Stefan Seelmann
> Assignee: Stefan Seelmann
> Priority: Minor
> Fix For: 1.5.0
>
>
> We have encrypted connections using ldaps:// or the StartTLS extended
> operation, but the certificate isn't validated as we always use a
> DummySSLSocketFactory.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
