54908 – Bugzilla should have option to use SSL or TLS for LDAP Authentication

Bug 54908 - Bugzilla should have option to use SSL or TLS for LDAP Authentication

Summary: Bugzilla should have option to use SSL or TLS for LDAP Authentication

Status:	RESOLVED UPSTREAM

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Development (show other bugs)
Hardware:	x86 Linux

Importance:	High enhancement (vote)
Assignee:	Gentoo Web Application Packages Maintainers

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2004-06-23 10:37 UTC by Jeffrey Crawford
Modified:	2004-07-16 07:43 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Jeffrey Crawford 2004-06-23 10:37:39 UTC

This may need to be forwarded to Bugzilla. I would like to see an option when setting up Bugzilla for LDAP authentication, including the ability to select a cacert file that allows you to use SSL or TLS connections so that login information is not sent clear text from the Bugzilla server to the LDAP server. This is especially useful when using LDAP for centralized passwords and they should stay secure. At the moment I am forced to update the file:
o /Bugzilla/Auth/LDAP.pm

and add the line:
o $LDAPconn->start_tls(cafile => '/ca/cert/path/file');

To enable TLS.

Comment 1 Nahor 2004-07-12 14:16:52 UTC

And yes, this is an upstream feature request.

See Bugzilla's bugs:
 - 216902 (http://bugzilla.mozilla.org/show_bug.cgi?id=216902) 
 - 250916 (http://bugzilla.mozilla.org/show_bug.cgi?id=250916)

Comment 2 rob holland (RETIRED) gentoo-dev

2004-07-16 07:43:06 UTC

Its upstream so no point tracking it here.