From b3d356dcfa20bee655e4e95531f82268c68c32d1 Mon Sep 17 00:00:00 2001
From: Øyvind Grønnesby <oyving@verizonmedia.com>
Date: Mon, 12 Aug 2019 16:36:14 +0200
Subject: Add the CA certificates to configuration and read it from application
 package

---
 .../src/main/resources/configdefinitions/jdisc.http.connector.def  | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'jdisc_http_service/src')

diff --git a/jdisc_http_service/src/main/resources/configdefinitions/jdisc.http.connector.def b/jdisc_http_service/src/main/resources/configdefinitions/jdisc.http.connector.def
index c6c6fad345b..9b6fb5401e2 100644
--- a/jdisc_http_service/src/main/resources/configdefinitions/jdisc.http.connector.def
+++ b/jdisc_http_service/src/main/resources/configdefinitions/jdisc.http.connector.def
@@ -69,7 +69,14 @@ ssl.certificateFile                 string   default=""
 ssl.certificate                     string   default=""
 
 # with trusted CA certificates in PEM format. Used to verify clients
+#  - this is the name of a file on the local container file system
+#  - only one of caCertificateFile and caCertificate
 ssl.caCertificateFile               string default=""
 
+# with trusted CA certificates in PEM format. Used to verify clients
+#  - this is the actual certificates instead of a pointer to the file
+#  - only one of caCertificateFile and caCertificate
+ssl.caCertificate                   string default=""
+
 # Client authentication mode. See SSLEngine.getNeedClientAuth()/getWantClientAuth() for details.
 ssl.clientAuth                      enum { DISABLED, WANT_AUTH, NEED_AUTH }  default=DISABLED
-- 
cgit v1.2.3