Issue #19898 has been updated by Dustin Mitchell.
nginx appears *not* to support such an environment variable, per http://nginx.org/en/docs/http/ngx_http_ssl_module.html ---------------------------------------- Feature #19898: Use SSL_CLIENT_S_DN_CN from mod_ssl https://projects.puppetlabs.com/issues/19898#change-87587 * Author: Dustin Mitchell * Status: Accepted * Priority: Low * Assignee: Dustin Mitchell * Category: * Target version: * Affected Puppet version: * Keywords: * Branch: ---------------------------------------- Puppet currently recommends passing SSL_CLIENT_S_DN for ssl_client_header, and then parsing the CN out of that DN. But mod_ssl can give us the data we need (the CN) without the requirement to parse it. See http://httpd.apache.org/docs/2.2/mod/mod_ssl.html This is a simple code change, but would would require some attention from users to make sure the new variable is configured and available. This is related to, but more invasive than, the fix I'm proposing for #15561, so I'm branching the idea into this ticket. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-bugs?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
