trafficserver-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bc...@apache.org
Subject [trafficserver] branch 8.0.x updated: Updates the default ssl_server_name.config to YAML
Date Tue, 26 Jun 2018 22:49:15 GMT
This is an automated email from the ASF dual-hosted git repository.

bcall pushed a commit to branch 8.0.x
in repository https://gitbox.apache.org/repos/asf/trafficserver.git


The following commit(s) were added to refs/heads/8.0.x by this push:
     new e96e369  Updates the default ssl_server_name.config to YAML
e96e369 is described below

commit e96e3695fd2fecfb53749e405ef4b08d7b6ddfa4
Author: Randall Meyer <randallmeyer@yahoo.com>
AuthorDate: Tue Jun 26 08:47:18 2018 -0700

    Updates the default ssl_server_name.config to YAML
    
    (cherry picked from commit 9dc1ba832460700aec5e8f84621bff7bfaa5544c)
---
 configs/ssl_server_name.yaml.default | 62 +++++++++++++++---------------------
 1 file changed, 26 insertions(+), 36 deletions(-)

diff --git a/configs/ssl_server_name.yaml.default b/configs/ssl_server_name.yaml.default
index 7fbf79b..ed2c956 100644
--- a/configs/ssl_server_name.yaml.default
+++ b/configs/ssl_server_name.yaml.default
@@ -1,36 +1,26 @@
---[[
-ssl_server_name.config.default
-This configuration file
-    - sets the SSL actions to be performed based on the servername provided during SSL handhshake
phase (SNI extension)
-    - sets the SSL properties required to make SSL connection with the next hop or origin
server.
-
-Lua based Configuration file
- Format : 
- Actions available:
-   disable_h2 - removes H2 from the protocol list advertised by ATS; parameter required =
None
-   verify_client - sets the verification flag for verifying the client certificate; parameters
= Integer [0-2]
-   verify_origin_server - sets the verification flag for verifying the server certificate;
parameters = Integer [0-2]
-   client_cert - sets the client certificate to present to the server specified in dest_host;
parameters = certificate file .
-                     The location of the certificate file is relative to proxy.config.ssl.server.cert.path
directory.
-   tunnel_route  - sets the e2e tunnel route
- Example:
-
-
-params for client verification
-        'NONE', 'MODERATE', 'STRICT'
-
-server_config = {
-                {
-                    fqdn='one.com',
-                    disable_h2 = <true|false>,
-                    verify_origin_server = <'NONE'|'MODERATE'|'STRICT'>,
-                    client_cert = "somepem.pem",
-                    verify_client = <'NONE'|'MODERATE'|'STRICT'>
-                },
-                {
-                    fqdn='two.com',
-                    tunnel_route = 'two.com'
-                }
-};
-
---]]
\ No newline at end of file
+# ssl_server_name.config.default
+#
+# This configuration file
+#     - sets the SSL actions to be performed based on the servername provided during SSL
handhshake phase (SNI extension)
+#     - sets the SSL properties required to make SSL connection with the next hop or origin
server.
+#
+# YAML-based Configuration file
+#  Format :
+#  Actions available:
+#    disable_h2 - removes H2 from the protocol list advertised by ATS; parameter required
= None, parameters = true or false
+#    verify_client - sets the verification flag for verifying the client certificate; parameters
= one of 'NONE', 'MODERATE' or 'STRICT'
+#    verify_origin_server - sets the verification flag for verifying the server certificate;
parameters = one of 'NONE', 'MODERATE' or 'STRICT'
+#    client_cert - sets the client certificate to present to the server specified in dest_host;
parameters = certificate file .
+#                      The location of the certificate file is relative to proxy.config.ssl.server.cert.path
directory.
+#    tunnel_route  - sets the e2e tunnel route
+#
+#  Example:
+#
+# - fqdn: one.com
+#   disable_h2: true
+#   verify_origin_server: STRICT
+#   client_cert: somepem.pem
+#   verify_client: MODERATE
+# - fqdn: two.com
+#   tunnel_route: two.com
+#


Mime
View raw message