diff options
author | Romain DEP <rom1dep@gmail.com> | 2018-07-21 20:27:49 +0200 |
---|---|---|
committer | louiz’ <louiz@louiz.org> | 2018-07-22 14:38:51 +0200 |
commit | 85288fd0b31027e7948180e0e057242e13f15da4 (patch) | |
tree | 3de9cd42529497b9289fa87f114da17aac6edafd /src/network/tls_policy.cpp | |
parent | 458ea53db3edc7318e88a2612baa793a1232cc75 (diff) | |
download | biboumi-85288fd0b31027e7948180e0e057242e13f15da4.tar.gz biboumi-85288fd0b31027e7948180e0e057242e13f15da4.tar.bz2 biboumi-85288fd0b31027e7948180e0e057242e13f15da4.tar.xz biboumi-85288fd0b31027e7948180e0e057242e13f15da4.zip |
add 'verify_certificate' as possible configuration token for policy files
This lets the user configure a per-domain certificate validation policy
Diffstat (limited to 'src/network/tls_policy.cpp')
-rw-r--r-- | src/network/tls_policy.cpp | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/src/network/tls_policy.cpp b/src/network/tls_policy.cpp index b88eb88..8aa8b72 100644 --- a/src/network/tls_policy.cpp +++ b/src/network/tls_policy.cpp @@ -37,6 +37,8 @@ void BiboumiTLSPolicy::load(std::istream& is) // Workaround for options that are not overridden in Botan::TLS::Text_Policy if (pair.first == "require_cert_revocation_info") this->req_cert_revocation_info = !(pair.second == "0" || utils::tolower(pair.second) == "false"); + else if (pair.first == "verify_certificate") + this->verify_certificate = !(pair.second == "0" || utils::tolower(pair.second) == "false"); else this->set(pair.first, pair.second); } @@ -47,4 +49,9 @@ bool BiboumiTLSPolicy::require_cert_revocation_info() const return this->req_cert_revocation_info; } +bool BiboumiTLSPolicy::verify_certificate_info() const +{ + return this->verify_certificate; +} + #endif |