You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@knox.apache.org by lm...@apache.org on 2017/02/25 00:39:12 UTC
svn commit: r1784340 - in /knox: site/books/knox-0-11-0/user-guide.html
site/books/knox-0-12-0/user-guide.html trunk/books/0.11.0/config.md
trunk/books/0.12.0/config.md
Author: lmccay
Date: Sat Feb 25 00:39:12 2017
New Revision: 1784340
URL: http://svn.apache.org/viewvc?rev=1784340&view=rev
Log:
added docs for custom signing keystore, alias and passphrase
Modified:
knox/site/books/knox-0-11-0/user-guide.html
knox/site/books/knox-0-12-0/user-guide.html
knox/trunk/books/0.11.0/config.md
knox/trunk/books/0.12.0/config.md
Modified: knox/site/books/knox-0-11-0/user-guide.html
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/user-guide.html?rev=1784340&r1=1784339&r2=1784340&view=diff
==============================================================================
--- knox/site/books/knox-0-11-0/user-guide.html (original)
+++ knox/site/books/knox-0-11-0/user-guide.html Sat Feb 25 00:39:12 2017
@@ -568,6 +568,16 @@ https://{gateway-host}:{gateway-port}/{g
<td>false</td>
</tr>
<tr>
+ <td>gateway.signing.keystore.name</td>
+ <td>OPTIONAL Filename of keystore file that contains the signing keypair. NOTE: An alias needs to be created using “knoxcli.sh create-alias” for the alias name signing.key.passphrase in order to provide the passphrase to access the keystore.</td>
+ <td>null</td>
+ </tr>
+ <tr>
+ <td>gateway.signing.key.alias</td>
+ <td>OPTIONAL alias for the signing keypair within the keystore specified via gateway.signing.keystore.name.</td>
+ <td>null</td>
+ </tr>
+ <tr>
<td>gateway.gzip.compress.mime.types</td>
<td>Content types to be gzip compressed by Knox on the way out to browser.</td>
<td>text/html, text/plain, text/xml, text/css, application/javascript, text/javascript, application/x-javascript</td>
Modified: knox/site/books/knox-0-12-0/user-guide.html
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/user-guide.html?rev=1784340&r1=1784339&r2=1784340&view=diff
==============================================================================
--- knox/site/books/knox-0-12-0/user-guide.html (original)
+++ knox/site/books/knox-0-12-0/user-guide.html Sat Feb 25 00:39:12 2017
@@ -573,6 +573,16 @@ https://{gateway-host}:{gateway-port}/{g
<td>text/html, text/plain, text/xml, text/css, application/javascript, text/javascript, application/x-javascript</td>
</tr>
<tr>
+ <td>gateway.signing.keystore.name</td>
+ <td>OPTIONAL Filename of keystore file that contains the signing keypair. NOTE: An alias needs to be created using “knoxcli.sh create-alias” for the alias name signing.key.passphrase in order to provide the passphrase to access the keystore.</td>
+ <td>null</td>
+ </tr>
+ <tr>
+ <td>gateway.signing.key.alias</td>
+ <td>OPTIONAL alias for the signing keypair within the keystore specified via gateway.signing.keystore.name.</td>
+ <td>null</td>
+ </tr>
+ <tr>
<td>ssl.enabled</td>
<td>Indicates whether SSL is enabled for the Gateway</td>
<td>true</td>
Modified: knox/trunk/books/0.11.0/config.md
URL: http://svn.apache.org/viewvc/knox/trunk/books/0.11.0/config.md?rev=1784340&r1=1784339&r2=1784340&view=diff
==============================================================================
--- knox/trunk/books/0.11.0/config.md (original)
+++ knox/trunk/books/0.11.0/config.md Sat Feb 25 00:39:12 2017
@@ -135,6 +135,8 @@ gateway.httpserver.requestHeaderBuffer|T
gateway.httpserver.responseBuffer|The size of the HTTP server response buffer. The default is 32K.|32768
gateway.httpserver.responseHeaderBuffer|The size of the HTTP server response header buffer. The default is 8K.|8192
gateway.websocket.feature.enabled|Enable/Disable websocket feature.|false
+gateway.signing.keystore.name|OPTIONAL Filename of keystore file that contains the signing keypair. NOTE: An alias needs to be created using "knoxcli.sh create-alias" for the alias name signing.key.passphrase in order to provide the passphrase to access the keystore.|null
+gateway.signing.key.alias|OPTIONAL alias for the signing keypair within the keystore specified via gateway.signing.keystore.name.|null
gateway.gzip.compress.mime.types|Content types to be gzip compressed by Knox on the way out to browser.|text/html, text/plain, text/xml, text/css, application/javascript, text/javascript, application/x-javascript
ssl.enabled|Indicates whether SSL is enabled for the Gateway|true
ssl.include.ciphers|A comma separated list of ciphers to accept for SSL. See the [JSSE Provider docs](http://docs.oracle.com/javase/8/docs/technotes/guides/security/SunProviders.html#SunJSSEProvider) for possible ciphers. These can also contain regular expressions as shown in the [Jetty documentation](http://www.eclipse.org/jetty/documentation/current/configuring-ssl.html).|all|
Modified: knox/trunk/books/0.12.0/config.md
URL: http://svn.apache.org/viewvc/knox/trunk/books/0.12.0/config.md?rev=1784340&r1=1784339&r2=1784340&view=diff
==============================================================================
--- knox/trunk/books/0.12.0/config.md (original)
+++ knox/trunk/books/0.12.0/config.md Sat Feb 25 00:39:12 2017
@@ -136,6 +136,8 @@ gateway.httpserver.responseBuffer|The si
gateway.httpserver.responseHeaderBuffer|The size of the HTTP server response header buffer. The default is 8K.|8192
gateway.websocket.feature.enabled|Enable/Disable websocket feature.|false
gateway.gzip.compress.mime.types|Content types to be gzip compressed by Knox on the way out to browser.|text/html, text/plain, text/xml, text/css, application/javascript, text/javascript, application/x-javascript
+gateway.signing.keystore.name|OPTIONAL Filename of keystore file that contains the signing keypair. NOTE: An alias needs to be created using "knoxcli.sh create-alias" for the alias name signing.key.passphrase in order to provide the passphrase to access the keystore.|null
+gateway.signing.key.alias|OPTIONAL alias for the signing keypair within the keystore specified via gateway.signing.keystore.name.|null
ssl.enabled|Indicates whether SSL is enabled for the Gateway|true
ssl.include.ciphers|A comma separated list of ciphers to accept for SSL. See the [JSSE Provider docs](http://docs.oracle.com/javase/8/docs/technotes/guides/security/SunProviders.html#SunJSSEProvider) for possible ciphers. These can also contain regular expressions as shown in the [Jetty documentation](http://www.eclipse.org/jetty/documentation/current/configuring-ssl.html).|all|
ssl.exclude.ciphers|A comma separated list of ciphers to reject for SSL. See the [JSSE Provider docs](http://docs.oracle.com/javase/8/docs/technotes/guides/security/SunProviders.html#SunJSSEProvider) for possible ciphers. These can also contain regular expressions as shown in the [Jetty documentation](http://www.eclipse.org/jetty/documentation/current/configuring-ssl.html).|none|