pk/atst
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Enable client cert validation

Browse Source
This commit is contained in:
Devon Mackay 2018-08-08 14:06:57 -04:00
parent 5bd39e1a15
commit c00db63f40
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
deploy/kubernetes/atst-nginx-configmap.yml
View File

@ -55,9 +55,9 @@ data:
ssl_stapling_verify on; ssl_stapling_verify on;
resolver 8.8.8.8 8.8.4.4; resolver 8.8.8.8 8.8.4.4;
# Request and validate client certificate # Request and validate client certificate
#ssl_verify_client on; ssl_verify_client on;
#ssl_verify_depth 10; ssl_verify_depth 10;
#ssl_client_certificate /etc/nginx/ssl/ca/client-ca.pem; ssl_client_certificate /etc/nginx/ssl/client-ca-bundle.pem;
# Guard against HTTPS -> HTTP downgrade # Guard against HTTPS -> HTTP downgrade
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; always"; add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; always";
location / { location / {