diff options
| author | Valery Piashchynski <[email protected]> | 2022-05-19 11:01:50 +0200 |
|---|---|---|
| committer | Valery Piashchynski <[email protected]> | 2022-05-19 11:01:50 +0200 |
| commit | d62ca6f70ce8eeef9f6f2eefd72ca185ee6930b7 (patch) | |
| tree | 9ecca36e24bee4ed440fc788e0a8c626bc4e75e1 | |
| parent | 3d5ed51a3c3c63f262dad9301d2eaf53364e1368 (diff) | |
update .rr.yaml and schema
Signed-off-by: Valery Piashchynski <[email protected]>
| -rw-r--r-- | .rr.yaml | 7 | ||||
| -rw-r--r-- | schemas/config/2.0.schema.json | 12 |
2 files changed, 18 insertions, 1 deletions
@@ -800,9 +800,14 @@ http: # Path to the root certificate authority file. # - # This option is optional. + # This option is optional (required for the mTLS). root_ca: /ssl/root.crt + # Client auth type (mTLS) + # + # This option is optional. Default value: no_client_certs. Possible values: request_client_cert, require_any_client_cert, verify_client_cert_if_given, require_and_verify_client_cert, no_client_certs + client_auth_type: no_client_certs + # FastCGI frontend support. fcgi: # FastCGI connection DSN. Supported TCP and Unix sockets. An empty value disables this. diff --git a/schemas/config/2.0.schema.json b/schemas/config/2.0.schema.json index 7c08c392..63f94ab3 100644 --- a/schemas/config/2.0.schema.json +++ b/schemas/config/2.0.schema.json @@ -692,6 +692,18 @@ "examples": [ "/ssl/root.crt" ] + }, + "client_auth_type": { + "description": "Client auth type", + "type": "string", + "default": "no_client_certs", + "enum": [ + "request_client_cert", + "require_any_client_cert", + "verify_client_cert_if_given", + "no_client_certs", + "require_and_verify_client_cert" + ] } }, "required": [ |