view mod_auth_ccert.wiki @ 455:5f111a4e13fb

mod_s2s_auth_dane.wiki: drep mention of luajit, not required anymore
author Kim Alvefur <zash@zash.se>
date Mon, 19 May 2014 11:28:47 +0200
parents 528721aaea46
children
line wrap: on
line source

#summary Client Certificate authentication module
#labels Stage-Alpha,Type-Auth

= Introduction =

This module implements PKI-style client certificate authentication.
You will therefore need your own Certificate Authority.
How to set that up is beyond the current scope of this document.

= Configuration =

{{{

authentication = "ccert"
certificate_match = "xmppaddr" -- or "email"

c2s_ssl = {
	capath = "/path/to/dir/with/your/ca"
}

}}}

`capath` should be pointed to a directory with your own CA certificate.  You will need to run `c_rehash` in it.

= Compatibility =

||trunk||Works||
||0.9 and earlier||Doesn't work||
||0.10 and later||Works||