oss/Radicale
oss/Radicale
1
0
Fork 0
mirror of https://github.com/Kozea/Radicale.git synced 2025-09-15 20:36:55 +00:00
Code Wiki Activity

Add option for CA certificate for validating clients

Browse source 
This can be used to secure TCP traffic between Radicale and a reverse proxy
This commit is contained in:
Unrud 2017-06-02 12:41:03 +02:00
parent 6bb0e9d956
commit 3af5809d71
4 changed files with 21 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

6
radicale/__main__.py
View file

@ -169,11 +169,15 @@ def serve(configuration, logger):
server_class = ThreadedHTTPSServer
server_class.certificate = configuration.get("server", "certificate")
server_class.key = configuration.get("server", "key")
server_class.certificate_authority = configuration.get(
"server", "certificate_authority")
server_class.ciphers = configuration.get("server", "ciphers")
server_class.protocol = getattr(
ssl, configuration.get("server", "protocol"), ssl.PROTOCOL_SSLv23)
# Test if the SSL files can be read
for name in ("certificate", "key"):
for name in ["certificate", "key"] + (
["certificate_authority"]
if server_class.certificate_authority else []):
filename = getattr(server_class, name)
try:
open(filename, "r").close()