Mercurial > libervia-backend
view docker/backend-dev-e2e/certificates/README @ 3919:7b2c51bcc8f5
plugin XEP-0384: temporarily disable `<iq>` stanza encryption:
`<iq>` stanza encryption is implemented, but the `send` trigger doesn't catch all `iq`
stanza send (which are often sent directly with `xmlstream.send`), and some stanza
encryption may cause trouble (happened with disco on a bare jid).
It is temporarily disabled but should be reactivated before `0.9` release.
author | Goffi <goffi@goffi.org> |
---|---|
date | Thu, 06 Oct 2022 16:02:05 +0200 |
parents | 73e04040d577 |
children |
line wrap: on
line source
Those certificates are used to activate TLS for end-2-end testing (to be as close as possible as production environment), they are used in other containers needing TLS certificates (notably Prosody). To generate them, minica has been used. Minica can be found at https://github.com/jsha/minica. The following commands have been used: $ minica --domains "server1.test,*.server1.test,server2.test,server3.test,libervia-backend.test,libervia-web.test" $ chmod 0644 minica.pem server1.test/cert.pem && chmod 0640 server1.test/key.pem Note that certificates are valid for 2 years and 30 days, so they must be renewed after this delay.