Christoph Kappel c99e576e1b fix: offer all (also modern) supported tls versions (PROTOCOL_TLS_CLIENT [1]) to LDAP endpoints instead of only (deprecated) PROTOCOL_TLSv1 [2] ... Background: Currently, when connecting to a ldap backend, ssl.PROTOCOL_TLSv1 [2] is offered as only option to the backend. This leads to following issues: - LDAP Backends that do not support TLSv1.0 (because of security reasons [3]) cannot be used in ERPNext - erpnext can ONLY connect to LDAP Backends offering the insecure [3] TLSv1.0 protocol (see ldap_settings.py ln: 61, 63) With this change to ssl.PROTOCOL_TLS_CLIENT we allow erpnext customers to configure LDAP Backends that also support more modern/secure (TLSv1.2 and up) transport while still ensure backwards compatibility and allowing TLSv1.0, since ssl.PROTOCOL_TLS "Auto-negotiates the highest protocol version that both the client and server support" [1] [1]: https://docs.python.org/3/library/ssl.html#ssl.PROTOCOL_TLS_CLIENT [2]: https://docs.python.org/3/library/ssl.html#ssl.PROTOCOL_TLSv1 [3]: https://tools.ietf.org/id/draft-ietf-tls-oldversions-deprecate-02.html		2022-01-04 16:52:55 +01:00
..
doctype	fix: offer all (also modern) supported tls versions (PROTOCOL_TLS_CLIENT [1]) to LDAP endpoints instead of only (deprecated) PROTOCOL_TLSv1 [2]	2022-01-04 16:52:55 +01:00
frappe_providers	style: Black-ish + fixed typos + Optimized imports	2020-11-17 16:29:54 +05:30
workspace/integrations	fix: Removing unused code for worspace	2021-09-20 21:27:14 +05:30
__init__.py	Moved Backup Manager and Social Login keys to the new Integrations Module, prepared frappe for Mandrill Integration	2015-08-11 12:03:13 +05:30
oauth2.py	Merge branch 'version-13' into develop	2021-05-17 11:21:46 +05:30
oauth2_logins.py	chore: Update header: license.txt => LICENSE	2021-09-03 12:02:59 +05:30
offsite_backup_utils.py	chore: Update header: license.txt => LICENSE	2021-09-03 12:02:59 +05:30
utils.py	chore: Update header: license.txt => LICENSE	2021-09-03 12:02:59 +05:30