Home Help Center

Glacier2 category filters with SSL

iivdamiivdam Member Emko van DamOrganization: personalProject: Alert service
Hi

I have a problem with the Glacier2.Filter.Category.AcceptUser property in combination with SSL authentication.
It seems (with Glacier2.Filter.Category.AcceptUser set to 1) the distinguished name is not added to the list of accepted categories.
(Securing a Glacier2 Router - Ice 3.4 - ZeroC)

Probably a bug?
In Glacier2 SessionRouterI.cpp (SSLCreateSession::createFilterManager) the FilterManager object is created with allowAddUser set to false.

Ice version 3.4.2

Best regards,

Comments

  • benoitbenoit Rennes, FranceAdministrators, ZeroC Staff Benoit FoucherOrganization: ZeroC, Inc.Project: Ice ZeroC Staff
    Hi,

    This property was designed to only work for sessions created with the Glacier2 username/password authentication scheme. I suppose it could also work with SSL authenticated sessions where the user would be in this case the DN of the client certificate. We'll consider adding this to our TODO list!

    Cheers,
    Benoit.
Sign In or Register to comment.