Uploaded image for project: 'Drivers'
  1. Drivers
  2. DRIVERS-214

Default to verifying certificates against default CA certificates

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Closed
    • Minor - P4
    • Resolution: Done
    • None
    • None

    Description

      If the server is using a certificate signed by a CA with well-distributed certs, it ought to be possible to verify the certificate without providing an explicit list of trusted certificates.

      Most languages either distribute their own canonical set of trusted certificates (as in Node.js) or know how to pull them off the OS (as in Python). Drivers should use them if available and no CA certificates have been explicitly passed in as configuration.

      Attachments

        Issue Links

          depends on

          New Feature - A new feature of the product, which has yet to be developed. RUST-154 Default to verifying certificates against default CA certificates

          • Minor - P4 - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. PYTHON-872 When ssl=True and ssl_cert_reqs not provided, default to ssl.CERT_REQUIRED.

          • Major - P3 - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. PYTHON-874 Use certifi or wincertstore to load CA certificates on older pythons

          • Major - P3 - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. RUBY-886 Verify server certificates by default when ssl=true.

          • Major - P3 - Major loss of function.
          • Closed
          is related to

          Bug - A problem which impairs or prevents the functions of the product. PHPC-223 Use explicit SSL options rather then stream context

          • Major - P3 - Major loss of function.
          • Closed

          New Feature - A new feature of the product, which has yet to be developed. CDRIVER-1182 Load Windows trusted CA by default when no CA configured

          • Major - P3 - Major loss of function.
          • Closed
          related to

          Task - A task that needs to be done. DRIVERS-302 Test connections to Mango

          • Major - P3 - Major loss of function.
          • Closed

          Activity

            People

              barrie Barrie Segal
              jared Jared D. Cottrell
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: