You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@airflow.apache.org by "Paul Greenberg (JIRA)" <ji...@apache.org> on 2019/07/18 04:06:00 UTC

[jira] [Created] (AIRFLOW-4988) LDAP disable_cert_validation

Paul Greenberg created AIRFLOW-4988:
---------------------------------------

             Summary: LDAP disable_cert_validation
                 Key: AIRFLOW-4988
                 URL: https://issues.apache.org/jira/browse/AIRFLOW-4988
             Project: Apache Airflow
          Issue Type: Improvement
          Components: security
    Affects Versions: 1.10.3
            Reporter: Paul Greenberg


You might get the following error, because your cat cert is being validated properly.

```
LDAPSocketOpenError: ('unable to open socket', [(LDAPSocketOpenError('socket ssl wrapping error: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:618)',),
```

I think it makes sense to add non-default parameter "disable_cert_validation=False" so that instead of `tls_configuration = Tls(validate=ssl.CERT_REQUIRED)` the code would do `tls_configuration = Tls(validate=ssl.CERT_NONE)`



--
This message was sent by Atlassian JIRA
(v7.6.14#76016)