diff options
| author | Ken Giusti <kgiusti@apache.org> | 2013-03-22 21:45:42 +0000 |
|---|---|---|
| committer | Ken Giusti <kgiusti@apache.org> | 2013-03-22 21:45:42 +0000 |
| commit | 964edfa59bd065b1db97ea16932ef2553ee8ac04 (patch) | |
| tree | 492ce8b01f51179f72ca28586f475a9310043761 /python/qpid/messaging/endpoints.py | |
| parent | 5046d4fb0f784ccf3a141d99935fadfa2c4300f6 (diff) | |
| download | qpid-python-964edfa59bd065b1db97ea16932ef2553ee8ac04.tar.gz | |
NO-JIRA: add SSL test that verifies hostname in certificate
git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk/qpid@1460013 13f79535-47bb-0310-9956-ffa450edef68
Diffstat (limited to 'python/qpid/messaging/endpoints.py')
| -rw-r--r-- | python/qpid/messaging/endpoints.py | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/python/qpid/messaging/endpoints.py b/python/qpid/messaging/endpoints.py index 95ff5516d0..143daf616a 100644 --- a/python/qpid/messaging/endpoints.py +++ b/python/qpid/messaging/endpoints.py @@ -122,6 +122,10 @@ class Connection(Endpoint): @param ssl_certfile: file with client's public (eventually priv+pub) key (PEM format) @type ssl_trustfile: str @param ssl_trustfile: file trusted certificates to validate the server + @type ssl_skip_hostname_check: bool + @param ssl_skip_hostname_check: disable verification of hostname in + certificate. Use with caution - disabling hostname checking leaves you + vulnerable to Man-in-the-Middle attacks. @rtype: Connection @return: a disconnected Connection @@ -170,6 +174,7 @@ class Connection(Endpoint): self.ssl_keyfile = options.get("ssl_keyfile", None) self.ssl_certfile = options.get("ssl_certfile", None) self.ssl_trustfile = options.get("ssl_trustfile", None) + self.ssl_skip_hostname_check = options.get("ssl_skip_hostname_check", False) self.client_properties = options.get("client_properties", {}) self.options = options |