1786
|
1 |
#summary Client Certificate authentication module |
|
2 |
#labels Stage-Alpha,Type-Auth |
|
3 |
|
|
4 |
= Introduction = |
|
5 |
|
|
6 |
This module implements PKI-style client certificate authentication. |
|
7 |
You will therefore need your own Certificate Authority. |
|
8 |
How to set that up is beyond the current scope of this document. |
|
9 |
|
|
10 |
= Configuration = |
|
11 |
|
|
12 |
{{{ |
|
13 |
|
|
14 |
authentication = "ccert" |
|
15 |
certificate_match = "xmppaddr" -- or "email" |
|
16 |
|
|
17 |
c2s_ssl = { |
|
18 |
capath = "/path/to/dir/with/your/ca" |
|
19 |
} |
|
20 |
|
|
21 |
}}} |
|
22 |
|
|
23 |
`capath` should be pointed to a directory with your own CA certificate. You will need to run `c_rehash` in it. |
|
24 |
|
|
25 |
= Compatibility = |
|
26 |
|
|
27 |
||trunk||Works|| |
|
28 |
||0.9 and earlier||Doesn't work|| |
|
29 |
||0.10 and later||Works|| |