Bug report #14366

No SSL warnings when connecting to a postgres database using a self-signed certificate

Added by James Keener over 4 years ago. Updated over 4 years ago.

Status:Closed
Priority:Normal
Assignee:Jürgen Fischer
Category:Data Provider/PostGIS
Affected QGIS version:2.12.2 Regression?:No
Operating System:Ubuntu Easy fix?:No
Pull Request or Patch supplied:Yes Resolution:fixed/implemented
Crashes QGIS or corrupts data:No Copied to github as #:22349

Description

I was able to connect to a postgres database that uses a self-signed certificate and received no warning that the certificate could not be validated. While users should not be prevented from connecting to a certificate that cannot be validated, they should be warned.

Associated revisions

Revision ee4658e3
Added by Jürgen Fischer over 4 years ago

Merge pull request #2842 from jef-n/pg-new-sslmodes

postgres provider: add support for verify-ca and verify-full ssl modes (refs #14366)

History

#1 Updated by Jürgen Fischer over 4 years ago

  • Pull Request or Patch supplied changed from No to Yes

libpq has no option to warn about self-signed certificates. But it has the currently unsupported sslmode verify-ca and verify-full - which PR!#2842 adds support for.

#2 Updated by James Keener over 4 years ago

That's great, and exactly what I was hoping for! Thanks!

#3 Updated by Jürgen Fischer over 4 years ago

  • Resolution set to fixed/implemented
  • Status changed from Open to Closed

Also available in: Atom PDF