Re: Support for cert auth in JDBC

Hi folks,

It is not over... It is not in the CVS repository yet :D

What would be the next step?
My guess is that we need to update the testware for it. That sounds like
a tricky proposition that would mess up a bunch of things here and
there... Any ideas on how to do it best?

Marc-André Laverdière
Software Security Scientist
Innovation Labs, Tata Consultancy Services
Hyderabad, India

On Thursday 19 May 2011 11:44 AM, Marc-André Laverdière wrote:
> Hi guys,
>
> Here are some improvements based on the comments I saw so far.
> I'm also adding a small cheapo tester. Definitely not JUnit-ready :)
>
> Marc-André Laverdière
> Software Security Scientist
> Innovation Labs, Tata Consultancy Services
> Hyderabad, India
>
> On Thursday 19 May 2011 11:16 AM, Craig Ringer wrote:
>> On 05/18/2011 11:32 PM, Kris Jurka wrote:
>>>
>>>
>>> On Wed, 18 May 2011, Craig Ringer wrote:
>>>
>>>> Alas the SSLSocketFactory interface doesn't offer any really nice
>>>> options like a way to pass a Properties instance to the ctor,
>>>
>>> That'd be an easy thing to fix, just add another case to
>>> org.postgresql.ssl.MakeSSL#convert to pass through the provided
>>> Properties object. I've thought about that in the past, but with no real
>>> use case, I wasn't in a big rush to do so.
>>
>> OK, good to know.
>>
>> It wasn't a big issue for me in the end, as I landed up fetching my
>> configuration using the String argument form as a key to an
>> application-specific configuration provider. It's much easier to pass a
>> String argument through various layers one often has over the JDBC
>> driver, like an ORM or the like.
>>
>> --
>> Craig Ringer
>>
>>
>>