You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@trafficserver.apache.org by pa...@apache.org on 2018/04/25 17:19:16 UTC

[trafficserver] branch master updated: Correct parameter for certificate verification

This is an automated email from the ASF dual-hosted git repository.

paziz pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/trafficserver.git


The following commit(s) were added to refs/heads/master by this push:
     new b327da4  Correct parameter for certificate verification
b327da4 is described below

commit b327da4991385aaaac413fad62d4f3648d950b57
Author: Persia Aziz <pe...@yahoo-inc.com>
AuthorDate: Wed Apr 25 11:02:13 2018 -0500

    Correct parameter for certificate verification
---
 doc/admin-guide/files/ssl_server_name.config.en.rst | 8 ++++----
 proxy/config/ssl_server_name.config.default         | 6 +++---
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/doc/admin-guide/files/ssl_server_name.config.en.rst b/doc/admin-guide/files/ssl_server_name.config.en.rst
index 2108875..281edf7 100644
--- a/doc/admin-guide/files/ssl_server_name.config.en.rst
+++ b/doc/admin-guide/files/ssl_server_name.config.en.rst
@@ -117,8 +117,8 @@ Require client certificate verification for ``example.com`` and any server name
 .. code-block:: lua
 
    server_config = {
-      { fqdn="example.com", verify_client=MODERATE },
-      { fqdn="*.yahoo.com", verify_client=STRICT }
+      { fqdn="example.com", verify_client='MODERATE' },
+      { fqdn="*.yahoo.com", verify_client='STRICT' }
    }
 
 Disable outbound server certificate verification for ``trusted.example.com`` and require a valid
@@ -129,8 +129,8 @@ client certificate.
    server_config = {
       {
          fqdn="trusted.example.com",
-         verify_origin_server=NONE,
-         verify_client=STRICT
+         verify_origin_server='NONE',
+         verify_client='STRICT'
       }
    }
 
diff --git a/proxy/config/ssl_server_name.config.default b/proxy/config/ssl_server_name.config.default
index 2db9bbf..7fbf79b 100644
--- a/proxy/config/ssl_server_name.config.default
+++ b/proxy/config/ssl_server_name.config.default
@@ -17,15 +17,15 @@ Lua based Configuration file
 
 
 params for client verification
-        NONE, MODERATE, STRICT
+        'NONE', 'MODERATE', 'STRICT'
 
 server_config = {
                 {
                     fqdn='one.com',
                     disable_h2 = <true|false>,
-                    verify_origin_server = <NONE|MODERATE|STRICT>,
+                    verify_origin_server = <'NONE'|'MODERATE'|'STRICT'>,
                     client_cert = "somepem.pem",
-                    verify_client = <NONE|MODERATE|STRICT>
+                    verify_client = <'NONE'|'MODERATE'|'STRICT'>
                 },
                 {
                     fqdn='two.com',

-- 
To stop receiving notification emails like this one, please contact
paziz@apache.org.