fix: https enhancement

2024-01-10 10:11:20 +08:00
parent 0028c40e67
commit 44ddbd7892
4 changed files with 32 additions and 22 deletions
--- a/config/etc/default/restconf.yaml
+++ b/config/etc/default/restconf.yaml
@@ -10,6 +10,8 @@ logger:

 # rest agent listen ipv4/v6 and port, support multiple routines
 # ip: 0.0.0.0 or ::0, support IPv4/v6
+# clientAuthType: 0:NoClientCert (default), 1:RequestClientCert, 2:RequireAnyClientCert, 
+#                 3:VerifyClientCertIfGiven, 4:RequireAndVerifyClientCerts
 rest:
  - ipv4: 0.0.0.0
    ipv6: 
@@ -18,6 +20,7 @@ rest:
    ipv6: 
    port: 3443
    schema: https
+    clientAuthType: 0
    caFile: /usr/local/omc/etc/certs/omc-ca.crt
    certFile: /usr/local/omc/etc/certs/omc-server.crt
    keyFile: /usr/local/omc/etc/certs/omc-server.key
@@ -30,6 +33,7 @@ webServer:
      schema: http
    - addr: :443
      schema: https
+      clientAuthType: 0
      caFile: /usr/local/omc/etc/certs/omc-ca.crt
      certFile: /usr/local/omc/etc/certs/omc-server.crt
      keyFile: /usr/local/omc/etc/certs/omc-server.key