You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
sslRootCaCertDN
According to the src code, this DN is loaded when the SSL connection is established to mobileid.swisscom.com , which is illogical and makes no sense. Please adjust the code so that we can remove this variable from the configuration completely.
SslKeystore
Rename to SslMidClientKeystore. This should make it clearer that this is only about the MobileID AP client certificate and not about server or SignResp certificates.
SslCertThumbprint
Rename to SslMidClientCertThumbprint. This should make it clearer that this is only about the MobileID AP client certificate and not about server or SignResp certificates.
SslRootCaCertFiles
Rename to SignRespCertFiles. This makes confusion with the server certificate (mobileid.swisscom.com) less likely.
DisableSignatureValidation
Rename to DisableSignRespValidation. This makes confusion with the server certificate (mobileid.swisscom.com) less likely.
DisableSignatureCertValidation
Rename to DisableSignRespCertValidation. This makes confusion with the server certificate (mobileid.swisscom.com) less likely.
Please rename some of the configuration parameters as described below. This should help to better understand the purpose of the variable.
Current configuration example:
sslRootCaCertDN
According to the src code, this DN is loaded when the SSL connection is established to
mobileid.swisscom.com
, which is illogical and makes no sense. Please adjust the code so that we can remove this variable from the configuration completely.SslKeystore
Rename to
SslMidClientKeystore
. This should make it clearer that this is only about the MobileID AP client certificate and not about server or SignResp certificates.SslCertThumbprint
Rename to
SslMidClientCertThumbprint
. This should make it clearer that this is only about the MobileID AP client certificate and not about server or SignResp certificates.SslRootCaCertFiles
Rename to
SignRespCertFiles
. This makes confusion with the server certificate (mobileid.swisscom.com) less likely.DisableSignatureValidation
Rename to
DisableSignRespValidation
. This makes confusion with the server certificate (mobileid.swisscom.com) less likely.DisableSignatureCertValidation
Rename to
DisableSignRespCertValidation
. This makes confusion with the server certificate (mobileid.swisscom.com) less likely.The new configuration should then look like this:
The text was updated successfully, but these errors were encountered: