taigrr/nats.docs
1
0
Fork 0
mirror of https://github.com/taigrr/nats.docs synced 2025-01-18 04:03:23 -08:00
Code Issues Projects Releases Wiki Activity

Update ocsp.md

Browse Source
This commit is contained in:
Waldemar Quevedo 2021-06-22 10:00:42 -07:00 committed by GitHub
parent 9cd2de8795
commit 71af6c9b6b
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
nats-server/configuration/ocsp.md
View File

@ -19,7 +19,7 @@ tlsfeature = status_request
The NATS server will make a request to the OCSP responder to fetch a new staple which will then be presented to The NATS server will make a request to the OCSP responder to fetch a new staple which will then be presented to
any TLS connection that is accepted by the server during the TLS handshake. any TLS connection that is accepted by the server during the TLS handshake.
OCSP Stapling can be explicitly enabled or disabled in the NATS Server by setting the following flag in the NATS configuration file: OCSP Stapling can be explicitly enabled or disabled in the NATS Server by setting the following flag in the NATS configuration file at the top-level:
```hcl ```hcl
ocsp: false ocsp: false
@ -71,7 +71,10 @@ to allow the server to resume in case of restarts without having to make another
if the staple is still valid. if the staple is still valid.
```hcl ```hcl
ocsp: true
store_dir: "/path/to/store/dir" store_dir: "/path/to/store/dir"
tls { tls {
cert_file: "configs/certs/ocsp/server-status-request-url.pem" cert_file: "configs/certs/ocsp/server-status-request-url.pem"
key_file: "configs/certs/ocsp/server-status-request-url-key.pem" key_file: "configs/certs/ocsp/server-status-request-url-key.pem"