Rietveld Code Review Tool
Help | Bug tracker | Discussion group | Source code | Sign in
(64365)

Unified Diff: Doc/library/http.client.rst

Issue 22417: PEP 476: verify HTTPS certificates by default
Patch Set: Created 4 years, 7 months ago
Use n/p to move between diff chunks; N/P to move between comments. Please Sign in to add in-line comments.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « no previous file | Doc/library/urllib.request.rst » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
--- a/Doc/library/http.client.rst Sun Nov 02 22:19:56 2014 +0200
+++ b/Doc/library/http.client.rst Mon Nov 03 09:50:32 2014 -0800
@@ -71,12 +71,6 @@
:func:`ssl.create_default_context` select the system's trusted CA
certificates for you.
- The recommended way to connect to HTTPS hosts on the Internet is as
- follows::
-
- context = ssl.create_default_context()
- h = client.HTTPSConnection('www.python.org', 443, context=context)
-
Please read :ref:`ssl-security` for more information on best practices.
.. note::
@@ -97,6 +91,12 @@
The *strict* parameter was removed. HTTP 0.9-style "Simple Responses" are
no longer supported.
+ .. versionchanged:: 3.4.3
+ This class now performs all the necessary certificate and hostname checks
+ by default. To revert to the previous, unverified, behavior
+ :func:`ssl._create_unverified_context` can be passed to the *context*
+ parameter.
+
.. class:: HTTPResponse(sock, debuglevel=0, method=None, url=None)
« no previous file with comments | « no previous file | Doc/library/urllib.request.rst » ('j') | no next file with comments »

RSS Feeds Recent Issues | This issue
This is Rietveld 894c83f36cb7+