geos_one/CASA
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

The client now tells Curl to look for certificates in /etc/ssl/certs

Browse Source 
under linux.

Commented the line in client.conf that was allowing clients to connect
to ATSs whose certificates authenticity could not be verified. :-).
This commit is contained in:
Juan Carlos Luciani 2007-06-01 23:26:28 +00:00
parent 5e1711d870
commit 502559daa1
2 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
CASA-auth-token/client/library/client.conf
View File

@ -58,7 +58,7 @@
# process to impersonate an ATS and obtain information that # process to impersonate an ATS and obtain information that
# is confidential such as username and passwords. # is confidential such as username and passwords.
# #
AllowUntrustedCerts true #AllowUntrustedCerts true
# #
# UsersCannotAllowInvalidCerts setting. # UsersCannotAllowInvalidCerts setting.

6
CASA-auth-token/client/library/linux/rpc.c
View File

@ -208,6 +208,12 @@ OpenRpcSession(
setOptError = true; setOptError = true;
} }
if ((result = curl_easy_setopt(pSession->hCurl, CURLOPT_CAPATH, "/etc/ssl/certs")) != CURLE_OK)
{
DbgTrace(0, "-OpenRpcSession- Error setting CURLOPT_CAPATH, code = %d\n", result);
setOptError = true;
}
pSession->headers = curl_slist_append(pSession->headers, "Content-Type: text/html"); pSession->headers = curl_slist_append(pSession->headers, "Content-Type: text/html");
pSession->headers = curl_slist_append(pSession->headers, "Expect:"); pSession->headers = curl_slist_append(pSession->headers, "Expect:");
if ((result = curl_easy_setopt(pSession->hCurl, CURLOPT_HTTPHEADER, pSession->headers)) != CURLE_OK) if ((result = curl_easy_setopt(pSession->hCurl, CURLOPT_HTTPHEADER, pSession->headers)) != CURLE_OK)