We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
we had a few customers asked for client certificate revocation support.
there are a few options for us to support it:
Make use of the Erlang's builtin crl check and cache functionality https://www.erlang.org/doc/man/ssl.html#type-crl_check https://www.erlang.org/doc/man/ssl.html#type-crl_cache_opts
Like 1, but implement the cache callbacks by ourselves.
Provide custom verify callback in SSL options, and implement ourown check and cache https://www.erlang.org/doc/man/ssl.html#type-custom_verify return {revoked, _} , in case the cert is revoked.
{revoked, _}
No matter how it is implemented, we should have a configuration and an HTTP API to interface the users.
The text was updated successfully, but these errors were encountered:
No branches or pull requests
we had a few customers asked for client certificate revocation support.
there are a few options for us to support it:
Make use of the Erlang's builtin crl check and cache functionality
https://www.erlang.org/doc/man/ssl.html#type-crl_check
https://www.erlang.org/doc/man/ssl.html#type-crl_cache_opts
Like 1, but implement the cache callbacks by ourselves.
Provide custom verify callback in SSL options, and implement ourown check and cache
https://www.erlang.org/doc/man/ssl.html#type-custom_verify
return
{revoked, _}, in case the cert is revoked.No matter how it is implemented, we should have a configuration and an HTTP API to interface the users.
The text was updated successfully, but these errors were encountered: