Re: PHP openssl_x509_parse extensions=>subjectAltName

Since there is no fixed, I was tasked to get this to work.. Here is the workaround I created and the code has been in the production for a year. I found it works well. Also, when Microsoft utilize subjectAltName as UserPrincipalName value to integrate smart card authentication with Active Direct

SV: PHP openssl_x509_parse extensions=>subjectAltName

@openssl.org Emne: Re: PHP openssl_x509_parse extensions=>subjectAltName On Sun, May 13, 2012 at 4:31 PM, Thomas Anderson wrote: > On Sun, May 13, 2012 at 2:00 PM, Jeffrey Walton wrote: >> On Sun, May 13, 2012 at 1:55 PM, Thomas Anderson wrote: >>> openssl probably just doesn't r

Re: PHP openssl_x509_parse extensions=>subjectAltName

Yes, it can probably be parsed by any ASN.1 parser. But the OID is private - only the organization knows how to interpret it (or what to do with it). private/public in this context refers to governance/ownership not to "visibility". if the organisation documents the any interested party can int

Re: PHP openssl_x509_parse extensions=>subjectAltName

On Sun, May 13, 2012 at 4:31 PM, Thomas Anderson wrote: > On Sun, May 13, 2012 at 2:00 PM, Jeffrey Walton wrote: >> On Sun, May 13, 2012 at 1:55 PM, Thomas Anderson wrote: >>> openssl probably just doesn't recognize that OID.  Here's what >>> phpseclib (the latest SVN) shows for that particular

Re: PHP openssl_x509_parse extensions=>subjectAltName

On Sun, May 13, 2012 at 2:00 PM, Jeffrey Walton wrote: > On Sun, May 13, 2012 at 1:55 PM, Thomas Anderson wrote: >> openssl probably just doesn't recognize that OID.  Here's what >> phpseclib (the latest SVN) shows for that particular extension: >> >>    [8] => Array >>        ( >>            [ex

Re: PHP openssl_x509_parse extensions=>subjectAltName

On Sun, May 13, 2012 at 1:55 PM, Thomas Anderson wrote: > openssl probably just doesn't recognize that OID.  Here's what > phpseclib (the latest SVN) shows for that particular extension: > >    [8] => Array >        ( >            [extnId] => id-ce-subjectAltName >            [critical] => >      

Re: PHP openssl_x509_parse extensions=>subjectAltName

-- > Fra: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] > På vegne av Thomas Anderson > Sendt: 8. mai 2012 14:49 > Til: openssl-users@openssl.org > Emne: Re: PHP openssl_x509_parse extensions=>subjectAltName > > Can you post the certificate in ques

Re: PHP openssl_x509_parse extensions=>subjectAltName

@openssl.org Emne: Re: PHP openssl_x509_parse extensions=>subjectAltName Can you post the certificate in question? I'm a bit curious as to how phpseclib's File_X509 would parse it. eg. [?php] include('File/X509.php'); $x509 = new File_X509(); print_r$x509->loadX509

Re: PHP openssl_x509_parse extensions=>subjectAltName

Can you post the certificate in question? I'm a bit curious as to how phpseclib's File_X509 would parse it. eg. [?php] include('File/X509.php'); $x509 = new File_X509(); print_r$x509->loadX509($_SERVER['SSL_CLIENT_CERT'])); [/?php] On Tue, May 8, 2012 at 7:01 AM, Johansen Daniel wrote: > [?ph

PHP openssl_x509_parse extensions=>subjectAltName

[?php] $x509 = openssl_x509_parse($_SERVER['SSL_CLIENT_CERT']); $subjectAltName = $x509['extensions']['subjectAltName']; [/?php] When parsing a x509 certificate and ['extensions']['subjectAltName'] contains a newline or space as shown below: othername: Princpal name=t...@test.com The value in