From a5783a4ea89a1a7e7469bcb75b9276d81d7b3aee Mon Sep 17 00:00:00 2001
From: Patrick O'Doherty <p@trickod.com>
Date: Sat, 28 May 2016 21:22:38 +0100
Subject: Add validate_tls_certificate option to client config

To allow for easier development on localhost where one cannot get a
root-CA signed TLS certificate, add a new validate_tls_certificate
option to the configuration file which optionally allows for certificate
chain checking to be disabled.
---
 cmd/cashier/config.go | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

(limited to 'cmd/cashier/config.go')

diff --git a/cmd/cashier/config.go b/cmd/cashier/config.go
index b6e583a..1196cbd 100644
--- a/cmd/cashier/config.go
+++ b/cmd/cashier/config.go
@@ -5,10 +5,11 @@ import (
 )
 
 type config struct {
-	CA       string `mapstructure:"ca"`
-	Keytype  string `mapstructure:"key_type"`
-	Keysize  int    `mapstructure:"key_size"`
-	Validity string `mapstructure:"validity"`
+	CA                     string `mapstructure:"ca"`
+	Keytype                string `mapstructure:"key_type"`
+	Keysize                int    `mapstructure:"key_size"`
+	Validity               string `mapstructure:"validity"`
+	ValidateTLSCertificate bool   `mapstructure:"validate_tls_certificate"`
 }
 
 func setDefaults() {
@@ -16,6 +17,7 @@ func setDefaults() {
 	viper.SetDefault("key_type", "rsa")
 	viper.SetDefault("key_size", 2048)
 	viper.SetDefault("validity", "24h")
+	viper.SetDefault("validateTLSCertificate", true)
 }
 
 func readConfig(path string) (*config, error) {
-- 
cgit v1.2.3