Support PyOpenSSL

XMLWordPrintableJSON

    • Type: New Feature
    • Resolution: Fixed
    • Priority: Major - P3
    • 3.11
    • Affects Version/s: None
    • Component/s: None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      Add optional support for using PyOpenSSL for TLS support, along with service_identity for hostname checking. This gives us two benefits:

      • Users of Python 2.7 versions older than 2.7.9 can use PyOpenSSL to get SNI support, allowing them to use the MongoDB Atlas Free Tier.
      • PyOpenSSL allows us to verify stapled OCSP responses for certificate revocation checking. OCSP stapling support is a new feature in MongoDB 4.4 and required by Let's Encrypt.

              Assignee:
              Bernie Hackett
              Reporter:
              Bernie Hackett
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: