From 80bab78526a161b3389358a55652650bb35f567d Mon Sep 17 00:00:00 2001 From: Niall Sheridan Date: Fri, 10 Aug 2018 00:07:30 +0100 Subject: Mention `require_reason` in config & README --- README.md | 1 + example-server.conf | 1 + 2 files changed, 2 insertions(+) diff --git a/README.md b/README.md index 625e133..bcf0845 100644 --- a/README.md +++ b/README.md @@ -110,6 +110,7 @@ Exception to this: the `http_logfile` option **ONLY** writes to local files. - `cookie_secret`: string. Authentication key for the session cookie. This can be a secret stored in a [vault](https://www.vaultproject.io/) using the form `/vault/path/key` e.g. `/vault/secret/cashier/cookie_secret`. - `csrf_secret`: string. Authentication key for CSRF protection. This can be a secret stored in a [vault](https://www.vaultproject.io/) using the form `/vault/path/key` e.g. `/vault/secret/cashier/csrf_secret`. - `http_logfile`: string. Path to the HTTP request log. Logs are written in the [Common Log Format](https://en.wikipedia.org/wiki/Common_Log_Format). The only valid destination for logs is a local file path. +- `require_reason`: bool. Require the client to provide a reason when requesting a certificate. Defaults to `false`. - `database`: See below. ### database diff --git a/example-server.conf b/example-server.conf index fe8be00..477ae15 100644 --- a/example-server.conf +++ b/example-server.conf @@ -9,6 +9,7 @@ server { cookie_secret = "supersecret" # Authentication key for the client cookie csrf_secret = "supersecret" # Authentication key for the CSRF token http_logfile = "http.log" # Logfile for HTTP requests + require_reason = false # Optional. Request a reason for the certificate from the client database { type = "mysql" dbname = "cashier_production" -- cgit v1.2.3