[Patches] [ python-Patches-793553 ] urllib SSL authentication docs are wrong

SourceForge.net noreply at sourceforge.net
Sun Aug 31 12:27:28 EDT 2003 

Patches item #793553, was opened at 2003-08-23 02:15
Message generated for change (Comment added) made by loewis
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=305470&aid=793553&group_id=5470

Category: Documentation
Group: Python 2.3
Status: Open
Resolution: None
Priority: 5
Submitted By: John J Lee (jjlee)
Assigned to: Nobody/Anonymous (nobody)
Summary: urllib SSL authentication docs are wrong

Initial Comment:
urllib docs for URLOpener say: 
 
Additional keyword parameters, collected in x509, are 
used for authentication with the https: scheme. The 
keywords key_file and cert_file are supported; both are 
needed to actually retrieve a resource at an https: URL. 
 
 
They're not needed, and the certificate is never 
checked, because _ssl.c doesn't check it (which is 
documented in the socket.ssl docs). 
 
A doc patch is attached. 

----------------------------------------------------------------------

>Comment By: Martin v. Löwis (loewis)
Date: 2003-08-31 20:27

Message:
Logged In: YES 
user_id=21627

Sure, I agree the current documentation is wrong. It would
be good to test the feature before correcting the
documentation, though.

----------------------------------------------------------------------

Comment By: John J Lee (jjlee)
Date: 2003-08-31 20:09

Message:
Logged In: YES 
user_id=261020

<Googles for x509>  Ah.  That appears to be true.  In that 
case, do you agree that the following is still wrong (taken from 
urllib.URLOpener docs)? 
 
Additional keyword parameters, collected in x509, are used for 
authentication with the https: scheme. The keywords key_file 
and cert_file are supported; both are needed to actually 
retrieve a resource at an https: URL. 
 
 
You don't need either dict entry for opening most https: URLs.  
Also, it gives no clue that x509 is for client authentication, and 
that server authentication is not done. 

----------------------------------------------------------------------

Comment By: Martin v. Löwis (loewis)
Date: 2003-08-31 18:16

Message:
Logged In: YES 
user_id=21627

Isn't the purpose of these arguments client-side authentication?

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=305470&aid=793553&group_id=5470

More information about the Patches mailing list