9 Mar
2007
9 Mar
'07
1:20 p.m.
On 9.3.2007, at 11.40, Apostolis Papagiannakis wrote:
I think replacing NID_commonName with NID_pkcs9_emailAddress ( or NID_subject_key_identifier, or
NID_subject_alt_name) in login-common/ssl-proxy-openssl.c, line 527 would suffice. (X509_NAME_get_text_by_NID(X509_get_subject_name(x509),
NID_commonName, buf, sizeof(buf)) < 0).Maybe I should post a complete patch if Timo is interested.
Well, not for v1.0 and even then it would have to be optional so it
wouldn't break existing systems.. I guess if this is done it should
rather be a setting that specifies which field is used for the username.