Re: PHP openssl_x509_parse extensions=subjectAltName

Since there is no fixed, I was tasked to get this to work.. Here is the workaround I created and the code has been in the production for a year. I found it works well. Also, when Microsoft utilize subjectAltName as UserPrincipalName value to integrate smart card authentication with Active

SV: PHP openssl_x509_parse extensions=subjectAltName

@openssl.org Emne: Re: PHP openssl_x509_parse extensions=subjectAltName On Sun, May 13, 2012 at 4:31 PM, Thomas Anderson zeln...@gmail.com wrote: On Sun, May 13, 2012 at 2:00 PM, Jeffrey Walton noloa...@gmail.com wrote: On Sun, May 13, 2012 at 1:55 PM, Thomas Anderson zeln...@gmail.com wrote: openssl

Re: PHP openssl_x509_parse extensions=subjectAltName

...@evry.com T +47 75 12 81 61 M +47 909 15 267 -Opprinnelig melding- Fra: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] På vegne av Thomas Anderson Sendt: 8. mai 2012 14:49 Til: openssl-users@openssl.org Emne: Re: PHP openssl_x509_parse extensions

Re: PHP openssl_x509_parse extensions=subjectAltName

On Sun, May 13, 2012 at 1:55 PM, Thomas Anderson zeln...@gmail.com wrote: openssl probably just doesn't recognize that OID.  Here's what phpseclib (the latest SVN) shows for that particular extension:    [8] = Array        (            [extnId] = id-ce-subjectAltName            [critical] =

Re: PHP openssl_x509_parse extensions=subjectAltName

On Sun, May 13, 2012 at 2:00 PM, Jeffrey Walton noloa...@gmail.com wrote: On Sun, May 13, 2012 at 1:55 PM, Thomas Anderson zeln...@gmail.com wrote: openssl probably just doesn't recognize that OID.  Here's what phpseclib (the latest SVN) shows for that particular extension:    [8] = Array    

Re: PHP openssl_x509_parse extensions=subjectAltName

On Sun, May 13, 2012 at 4:31 PM, Thomas Anderson zeln...@gmail.com wrote: On Sun, May 13, 2012 at 2:00 PM, Jeffrey Walton noloa...@gmail.com wrote: On Sun, May 13, 2012 at 1:55 PM, Thomas Anderson zeln...@gmail.com wrote: openssl probably just doesn't recognize that OID.  Here's what phpseclib

Re: PHP openssl_x509_parse extensions=subjectAltName

Yes, it can probably be parsed by any ASN.1 parser. But the OID is private - only the organization knows how to interpret it (or what to do with it). private/public in this context refers to governance/ownership not to visibility. if the organisation documents the any interested party can

PHP openssl_x509_parse extensions=subjectAltName

[?php] $x509 = openssl_x509_parse($_SERVER['SSL_CLIENT_CERT']); $subjectAltName = $x509['extensions']['subjectAltName']; [/?php] When parsing a x509 certificate and ['extensions']['subjectAltName'] contains a newline or space as shown below: othername: Princpal name=t...@test.com The value in

Re: PHP openssl_x509_parse extensions=subjectAltName

Can you post the certificate in question? I'm a bit curious as to how phpseclib's File_X509 would parse it. eg. [?php] include('File/X509.php'); $x509 = new File_X509(); print_r$x509-loadX509($_SERVER['SSL_CLIENT_CERT'])); [/?php] On Tue, May 8, 2012 at 7:01 AM, Johansen Daniel

Re: PHP openssl_x509_parse extensions=subjectAltName

@openssl.org Emne: Re: PHP openssl_x509_parse extensions=subjectAltName Can you post the certificate in question? I'm a bit curious as to how phpseclib's File_X509 would parse it. eg. [?php] include('File/X509.php'); $x509 = new File_X509(); print_r$x509-loadX509($_SERVER['SSL_CLIENT_CERT