On Mar 9, 2008, at 3:24 PM, Jonas Borgström wrote:
> Dirk-Willem van Gulik wrote: >> >> Below is a small patch for those using x509 support - e.g. an apache >> config as below to allow >> access based on x509 certs. The reason for doing this is that >> otherwise the strings shown become >> very long and wieldy. > > I haven't used this myself but isn't this apache option: > > SSLUserName SSL_CLIENT_S_DN_CN > what you're looking for? > > http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslusername That option works lovely if you are willing to 'loose' the information. However in a lot of more enterprise (or very large systems) settings it is valuable to have the full information (e.g. the full DN) going into the SVN commit's, the log files and be able to XS control on. So in that case you'd want the filtering to be purely done 'visual' style. e.g. on the trac layer. Does that make sense ? Dw. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Trac Development" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/trac-dev?hl=en -~----------~----~----~----~------~----~------~--~---
