Mustard

TLS/SSL support

Asked by halfinhalfout on 2009-12-15

Would like to be able to check a box to enforce use of TLS/SSL for connections. To protect authentication info. Is that on the todo list?

Question information

Language:
English Edit question
Status:
Solved
For:
Mustard Edit question
Assignee:
No assignee Edit question
Solved by:
Michele Azzolari
Solved:
Last query:
Last reply:
Revision history for this message
Javier Jardón (jjardon) said : 		#1

https is supported, logout from mustard then insert https://identi.ca when creating user

Revision history for this message
Michele Azzolari (macno) said : 		#2

At the moment (v 0.1.7.3) https is supported only with trusted CA, not with self-signed certificate.

The easy way to support all https is to ignore SSL warnings (unknown CA, certificate expired etc etc), but I'd like to implement a "show and confirm" dialog box (a little more complex)

What about adding a "Use SSL if available" checkbox in create user form?

Revision history for this message
Best Michele Azzolari (macno) said : 		#3

0.1.7.4 added a "Force use of TLS/SSL" flag in account creation

Revision history for this message
Michele Azzolari (macno) said : 		#4

Added a flag to force use of secure connection

Revision history for this message
halfinhalfout (wilsondkw+mustard) said : 		#5

Thanks macno, that solved my question.