kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 28 Pull Requests 4 Projects 2 Activity

Verify the TLS server's certificate

Browse Source 
Do not proceed if a certificate is invalid
This commit is contained in:
Greg Karékinian 2020-02-14 13:56:52 +01:00
parent dc1226073c
commit 55eb95ae73
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
site-cookbooks/kosmos-ejabberd/templates/ejabberd.yml.erb
View File

@ -25,6 +25,7 @@ host_config:
ldap_rootdn: "cn=xmpp,ou=<%= host[:name] %>,<%= @ldap_base %>" ldap_rootdn: "cn=xmpp,ou=<%= host[:name] %>,<%= @ldap_base %>"
ldap_password: "<%= host[:ldap_password] %>" ldap_password: "<%= host[:ldap_password] %>"
ldap_encrypt: <%= @ldap_encryption_type %> ldap_encrypt: <%= @ldap_encryption_type %>
ldap_tls_verify: hard # when TLS is enabled, don't proceed if a cert is invalid
ldap_base: "ou=<%= host[:name] %>,<%= @ldap_base %>" ldap_base: "ou=<%= host[:name] %>,<%= @ldap_base %>"
ldap_filter: "(nsRole=cn=xmpp_role,ou=<%= host[:name] %>,<%= @ldap_base %>)" ldap_filter: "(nsRole=cn=xmpp_role,ou=<%= host[:name] %>,<%= @ldap_base %>)"
<% end -%> <% end -%>