[rabbitmq-discuss] ssl certificate to client lookup

• Previous message: [rabbitmq-discuss] ssl certificate to client lookup
• Next message: [rabbitmq-discuss] ssl certificate to client lookup
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 09/12/10 07:53, jiri at krutil.com wrote:
> Simon,
>
>> Also, bug23467 (not yet QAed) allows your clients to use the SASL
>> EXTERNAL mechanism to log in using a client certificate, which may be
>> interesting to you.
>
> This sounds very promising for us. Can you explain how will that work?

In short: the SASL mechanisms used by the server and clients will become 
configurable and plugin-based. We'll be offering an EXTERNAL plugin that 
uses a verified client certificate for login.

> Will the client identity be extracted from the client certificate's
> subject?

Yes, ATM it's just the common name from the subject.

> Will the client still need to specify username and password for
> login?

No.

Cheers, Simon

-- 
Simon MacMullen
Staff Engineer, RabbitMQ
SpringSource, a division of VMware

• Previous message: [rabbitmq-discuss] ssl certificate to client lookup
• Next message: [rabbitmq-discuss] ssl certificate to client lookup
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]