Bug 44924 - allow 'CACERTDIR' in mod_ldap
Summary: allow 'CACERTDIR' in mod_ldap
Status: NEW
Alias: None
Product: Apache httpd-2
Classification: Unclassified
Component: mod_ldap (show other bugs)
Version: 2.5-HEAD
Hardware: PC Linux
: P2 enhancement (vote)
Target Milestone: ---
Assignee: Apache HTTPD Bugs Mailing List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2008-05-02 07:45 UTC by Eric Covener
Modified: 2008-05-02 07:45 UTC (History)
0 users


Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Eric Covener 2008-05-02 07:45:28 UTC 
openldap can take a directory full of CA certificates via LDAP_OPT_X_TLS_CACERTDIR, exposed in APR trunk/1.3.x as APR_LDAP_CA_TYPE_CACERTDIR_BASE64:

This is useful for LDAPTrustedGlobalCert on this platform because it seems to be the most direct way to configure more then 1 trusted authority, as multiple CACERT_BASE64 are not allowed.