You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2004/05/25 12:38:34 UTC

DO NOT REPLY [Bug 29201] New: - NID_userId should be used to obtain UID from client certificate

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=29201>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=29201

NID_userId should be used to obtain UID from client certificate

           Summary: NID_userId should be used to obtain UID from client
                    certificate
           Product: Apache httpd-2.0
           Version: 2.0-HEAD
          Platform: Other
        OS/Version: All
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: mod_ssl
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: sasha@oktetlabs.ru


It will be good if Apache will use userId field from certificate to set
SSL_*_DN_UID variable. For example, it may be done with following simple patch:

--- build-tree/apache2/modules/ssl/ssl_engine_vars.c>---2004-05-24
18:07:17.000000000 +0400
+++ build-tree/apache2/modules/ssl/ssl_engine_vars.c>---2004-05-24
18:08:08.000000000 +0400
@@ -365,6 +365,8 @@
 /* This has been removed in OpenSSL 0.9.8-dev. */
 #ifdef NID_uniqueIdentifier
     { "UID",   NID_uniqueIdentifier       },
+#elif defined(NID_userId)
+    { "UID",   NID_userId                 },
 #endif
     { "Email", NID_pkcs9_emailAddress     },
     { NULL,    0                          }

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org