Uploaded image for project: 'Couchbase Mobile'
  1. Couchbase Mobile
  2. CM-921

Support pinning of non-leaf certificates

    XMLWordPrintable

Details

    Description

      CBL expects pinned cert to be leaf cert and pinning of any other cert is disallowed. This may not be suitable in all cases. Since the leaf cert is likely to expire much sooner than the intermediary or root cert, it is desirable to support pinning of any cert in the cert chain.

      Android's network security configuration also supports this model

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. CBL-2863 Support matching pinned cert with any server certs in the chain

          • Major - Major loss of function.
          • Closed
          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

              priya.rajagopal Priya Rajagopal
              priya.rajagopal Priya Rajagopal
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes

                  PagerDuty