Cyberduck Mountain Duck CLI

Opened 7 years ago

Closed 4 years ago

Last modified 4 years ago

#5883 closed enhancement (fixed)

TLS mutual (two-way) certificate authentication

Reported by: Frederik Orellana Owned by: yla
Priority: normal Milestone: 4.5
Component: webdav Version: 4.0.2
Severity: normal Keywords: ssl client certificate, https
Cc: Architecture:
Platform:

Description

This would be a useful feature for the grid community that use certificates to authenticate with HTTPS/WebDav servers (Apache with mod_ssl+mod_dav).

Change History (16)

comment:1 Changed 7 years ago by dkocher

  • Summary changed from support for client certificates to TLS client certificate authentication

I did some initial work on this in r6886.

Last edited 7 years ago by dkocher (previous) (diff)

comment:2 follow-up: Changed 7 years ago by Arne Schmitz De

Did anything happen to support TLS client certs? Would be really awesome to use this for both FTP+SSL and HTTPS/WebDav.

comment:3 in reply to: ↑ 2 Changed 7 years ago by dkocher

Replying to Arne Schmitz De:

Did anything happen to support TLS client certs? Would be really awesome to use this for both FTP+SSL and HTTPS/WebDav.

There are still many quirks to figure out in the client certificate selection.

comment:4 Changed 7 years ago by dkocher

  • Milestone set to 4.2
  • Status changed from new to assigned

comment:5 Changed 7 years ago by dkocher

  • Milestone changed from 4.2 to 4.3

Milestone 4.2 deleted

comment:6 Changed 5 years ago by dkocher

  • Owner changed from dkocher to yla
  • Status changed from assigned to new

comment:7 Changed 4 years ago by dkocher

More work in r14651.

comment:8 Changed 4 years ago by dkocher

Client certificate prompt on Windows in r14654.

comment:9 Changed 4 years ago by dkocher

Make use of MSCAPI native keystore implementation for Windows in r14674.

comment:10 Changed 4 years ago by dkocher

Make keystore lookup platform dependent in r14660.

comment:11 Changed 4 years ago by dkocher

Fix alias lookup in r14676.

comment:12 Changed 4 years ago by dkocher

  • Resolution set to fixed
  • Status changed from new to closed

Added client handshake failure test in r14658.

comment:13 Changed 4 years ago by dkocher

Localization in r14687.

comment:14 Changed 4 years ago by dkocher

Fix to display only certificates matching the distinguished name from the Keychain in r14688.

comment:15 Changed 4 years ago by dkocher

  • Summary changed from TLS client certificate authentication to TLS mutual (two-way) certificate authentication

comment:16 Changed 4 years ago by dkocher

Please update to the latest snapshot build available to test this feature.

Note: See TracTickets for help on using tickets.
swiss made software