extern/egroupware
1
0
Fork 1
mirror of https://github.com/EGroupware/egroupware.git synced 2024-12-28 01:29:05 +01:00
Code Issues Packages Projects Releases Wiki Activity

implement UDM_REST_INSECURE environment variable to UCS appliance with no valid cert yet

Browse Source
This commit is contained in:
Ralf Becker 2020-10-07 10:22:10 +02:00
parent 2dc457c007
commit b960a24c32
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
api/src/Accounts/Univention/Udm.php
View File

@ -19,6 +19,9 @@ use EGroupware\Api;
/** /**
* Univention UDM REST Api * Univention UDM REST Api
* *
* Environment variable UDM_REST_INSECURE=<not-empty> can be set to (temporary) disable certificate validation for UDM REST calls.
* Used by EGroupware UCS appliance, which does not yet have a final certificate during EGroupware installation.
*
* @todo Use just UDM instead of still calling ldap/parent * @todo Use just UDM instead of still calling ldap/parent
*/ */
class Udm class Udm
@ -109,7 +112,8 @@ class Udm
$curlOpts = [ $curlOpts = [
CURLOPT_URL => 'https://'.$this->host.($_path[0] !== '/' ? self::PREFIX : '').$_path, CURLOPT_URL => 'https://'.$this->host.($_path[0] !== '/' ? self::PREFIX : '').$_path,
CURLOPT_USERPWD => $this->user.':'.$this->config['ldap_root_pw'], CURLOPT_USERPWD => $this->user.':'.$this->config['ldap_root_pw'],
//CURLOPT_SSL_VERIFYHOST => 2, // 0: to disable certificate check CURLOPT_SSL_VERIFYHOST => empty($_SERVER['UDM_REST_INSECURE']) ? 2 : 0, // 0: to disable certificate check
CURLOPT_SSL_VERIFYPEER => empty($_SERVER['UDM_REST_INSECURE']),
CURLOPT_HTTPHEADER => [ CURLOPT_HTTPHEADER => [
'Accept: application/json', 'Accept: application/json',
], ],