Loading...

XML

Word

Printable

JSON

Type: New Feature
Resolution: Done
Priority: Minor - P4
Fix Version/s: None
Component/s: None
Labels:
- newdriver

If the server is using a certificate signed by a CA with well-distributed certs, it ought to be possible to verify the certificate without providing an explicit list of trusted certificates.

Most languages either distribute their own canonical set of trusted certificates (as in Node.js) or know how to pull them off the OS (as in Python). Drivers should use them if available and no CA certificates have been explicitly passed in as configuration.

depends on

RUST-154 Default to verifying certificates against default CA certificates

Closed

PYTHON-872 When ssl=True and ssl_cert_reqs not provided, default to ssl.CERT_REQUIRED.

Closed

PYTHON-874 Use certifi or wincertstore to load CA certificates on older pythons

Closed

RUBY-886 Verify server certificates by default when ssl=true.

Closed

is related to

PHPC-223 Use explicit SSL options rather then stream context

Closed

CDRIVER-1182 Load Windows trusted CA by default when no CA configured

Closed

related to

DRIVERS-302 Test connections to Mango

Closed

(1 is related to, 1 related to)

Assignee:: Barrie Segal

Reporter:: Jared D. Cottrell

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Created:: Mar 28 2015 04:57:31 AM UTC

Updated:: Jan 08 2024 03:30:45 PM UTC

Resolved:: Nov 15 2016 09:53:14 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates