Skip to content

Commit f5b9316

Browse files
bmaidicsbmaidics
authored
Add certificate revocation related docs (aklivity#324)
1 parent 8b50f55 commit f5b9316

File tree

3 files changed

+45
-0
lines changed

3 files changed

+45
-0
lines changed

src/reference/config/vaults/aws-acm.md

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -16,7 +16,25 @@ Note: this requires AWS Nitro Enclaves for ACM to be enabled on the instance whe
1616
[Available in <ZillaPlus/>](https://www.aklivity.io/products/zilla-plus)
1717
{.zilla-plus-badge .hint-container .info}
1818

19+
The [revocation](#options-revocation) option is used to specify the certificate revocation method.
20+
1921
```yaml {2}
2022
server:
2123
type: aws-acm
24+
options:
25+
revocation: crl
2226
```
27+
28+
## Configuration (\* required)
29+
30+
### options
31+
32+
> `object`
33+
34+
The `aws-acm` specific options.
35+
36+
#### options.revocation
37+
38+
> `enum` [ `crl`, `none` ] | Default `none`
39+
40+
Certificate revocation method.

src/reference/config/vaults/aws-secrets.md

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,25 @@ This is typically combined with a [tls](../bindings/tls/README.md) binding `vaul
1313
[Available in <ZillaPlus/>](https://www.aklivity.io/products/zilla-plus)
1414
{.zilla-plus-badge .hint-container .info}
1515

16+
The [revocation](#options-revocation) option is used to specify the certificate revocation method.
17+
1618
```yaml {2}
1719
server:
1820
type: aws-secrets
21+
options:
22+
revocation: crl
1923
```
24+
25+
## Configuration (\* required)
26+
27+
### options
28+
29+
> `object`
30+
31+
The `aws-secret` specific options.
32+
33+
#### options.revocation
34+
35+
> `enum` [ `crl`, `none` ] | Default `none`
36+
37+
Certificate revocation method.

src/reference/config/vaults/filesystem.md

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -17,6 +17,8 @@ The [trust](#options-trust) option is used to verify identity of the remote peer
1717

1818
The [signers](#options-signers) option is used to challenge for mutual authentication in a TLS handshake.
1919

20+
The [revocation](#options-revocation) option is used to specify the certificate revocation method.
21+
2022
```yaml {2}
2123
server:
2224
type: filesystem
@@ -25,6 +27,7 @@ server:
2527
store: localhost.p12
2628
type: pkcs12
2729
password: ${{env.KEYS_PASSWORD}}
30+
revocation: crl
2831
```
2932
3033
## Configuration (\* required)
@@ -114,3 +117,9 @@ Keystore type.
114117
> `string`
115118

116119
Keystore password.
120+
121+
#### options.revocation
122+
123+
> `enum` [ `crl`, `none` ] | Default `none`
124+
125+
Certificate revocation method.

0 commit comments

Comments
 (0)