Denys> Martin Pool <email address hidden> writes:
>> Does this do authentication at all, or do you plan to add it?
Denys> I wanted to use python's built-in SSL support.
Denys> Verification of certificates is only supported
Denys> starting with python 2.6.
That's the plan for the http client anyway.
Denys> Thus certificate-based authentication is very easy to
Denys> add, but can only be activated for recent python
Denys> distros. If there is interest, I can add support for,
Denys> it of course.
Preliminary work on the test infrastructure is in
bzrlib/tests/ssl_certs, bzrlib/tests/https_server.py and all.
It would be nice to reuse/stay compatible with that.
It's already possible to create the key and cert files and
version the results instead of embedding opaque versions like you
did in creds.py.
Denys> I am also interested in supporting client
Denys> authentication and authorization, but that's a more
Denys> complex proposition and should be attempted in a
Denys> separate branch.
>>>>> "Denys" == Denys Duchier <email address hidden> writes:
Denys> Martin Pool <email address hidden> writes:
>> Does this do authentication at all, or do you plan to add it?
Denys> I wanted to use python's built-in SSL support.
Denys> Verification of certificates is only supported
Denys> starting with python 2.6.
That's the plan for the http client anyway.
Denys> Thus certificate-based authentication is very easy to
Denys> add, but can only be activated for recent python
Denys> distros. If there is interest, I can add support for,
Denys> it of course.
Preliminary work on the test infrastructure is in tests/ssl_ certs, bzrlib/ tests/https_ server. py and all.
bzrlib/
It would be nice to reuse/stay compatible with that.
It's already possible to create the key and cert files and
version the results instead of embedding opaque versions like you
did in creds.py.
Denys> I am also interested in supporting client
Denys> authentication and authorization, but that's a more
Denys> complex proposition and should be attempted in a
Denys> separate branch.
Indeed.