| Net::SSLGlue::LWP(3pm) | User Contributed Perl Documentation | Net::SSLGlue::LWP(3pm) |
Net::SSLGlue::LWP - proper certificate checking for https in LWP
{
local %Net::SSLGlue::LWP::SSLopts = %Net::SSLGlue::LWP::SSLopts;
# switch off verification
$Net::SSLGlue::LWP::SSLopts{SSL_verify_mode} = 0;
# or: set different verification policy, because cert does
# not conform to RFC (wildcards in CN are not allowed for https,
# but some servers do it anyway)
$Net::SSLGlue::LWP::SSLopts{SSL_verifycn_scheme} = {
wildcards_in_cn => 'anywhere',
check_cn => 'always',
};
}
Net::SSLGlue::LWP modifies Net::HTTPS and LWP::Protocol::https so that Net::HTTPS is forced to use IO::Socket::SSL instead of Crypt::SSLeay, and that LWP::Protocol::https does proper certificate checking using the "http" SSL_verify_scheme from IO::Socket::SSL.
This module should only be used for older LWP version, see Supported LWP versions below.
Because LWP does not have a mechanism to forward arbitrary parameters for the construction of the underlying socket these parameters can be set globally when including the package, or with local settings of the %Net::SSLGlue::LWP::SSLopts variable.
All of the "SSL_*" parameter from IO::Socket::SSL can be used; the following parameters are especially useful:
This module should be used for older LWP version only. Starting with version 6.06 it is recommended to use LWP directly. If a recent version is found Net::SSLGlue::LWP will print out a warning and not monkey patch too much into LWP (only as much as necessary to still support %Net::SSLGlue::LWP::SSLopts).
IO::Socket::SSL, LWP, Net::HTTPS, LWP::Protocol::https
This module is copyright (c) 2008..2015, Steffen Ullrich. All Rights Reserved. This module is free software. It may be used, redistributed and/or modified under the same terms as Perl itself.
| 2022-12-06 | perl v5.36.0 |