X509 login patches
Christos Triantafyllidis
ctria at grid.auth.gr
Tue Dec 15 13:26:01 UTC 2009
Hi Tuju,
no this patch doesn't cover this case. I guess this won't be that
difficult to be implemented if it is supported by pyOpenSSL the SSL
part is done there.
Unfortunately my country doesn't use any PKI card but i'm also
interested in using my eToken for this.
Regards,
Christos
On Dec 15, 2009, at 2:52 PM, Juha Tuomala wrote:
>
>
>
> On Mon, 14 Dec 2009, Christos Triantafyllidis wrote:
>> i'm using koji since a few week and i needed X509 authentication.
>
> This is interesting. Any idea, would client side pkcs11.so module
> sertificates work out of the box then? In my understading, the
> part how the certificate gets into http connection, is transparent
> to server.
>
> In many european countries, there are goverment PKI cards that kind
> of establishes potential, authenticatable userbase automatically.
>
> I use the id-card in browser quite a bit and especially the SSL
> client-cert works very well.
>
> That would be interesting to try koji with those id-card certificates.
>
>
> Tuju
>
> --
> Ajatteleva ihminen tarvitsee unta.
>
> --
> Fedora-buildsys-list mailing list
> Fedora-buildsys-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-buildsys-list
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3330 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-buildsys-list/attachments/20091215/b33eca9c/attachment.p7s>
More information about the Fedora-buildsys-list
mailing list