Skip to content

Support custom CA Certificate for LDAPS #25

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Support custom CA Certificate for LDAPS #25

wants to merge 1 commit into from

Conversation

mludvig
Copy link

@mludvig mludvig commented Oct 11, 2017

Our organisation has its own Certification Authority that issues all the internal certificates, including the LDAPS certificate. This patch adds support for setting a custom CA chain path through a new proxy header X-Ldap-CACertFile.

@geor-g geor-g mentioned this pull request Oct 25, 2017
Closed
@vl-homutov
Copy link
Contributor

I would rather not. There are a lot of TLS-related (and not) options, and adding special header for each seems like a never-ending story. Probably we need a separate configuration file for daemon with rarely used options and a way to select it from nginx. The suggested option refers local file and this does not allow to run auth daemon in a stateless container, that gets all required configuration in headers. If you are adding certificates to host with auth daemon, you may as well configure it to run with corresponding command-line options. Will this work for you?

@vl-homutov
Copy link
Contributor

feedback timeout.

@vl-homutov vl-homutov closed this Aug 20, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mludvig @vl-homutov