From 85288fd0b31027e7948180e0e057242e13f15da4 Mon Sep 17 00:00:00 2001
From: Romain DEP <rom1dep@gmail.com>
Date: Sat, 21 Jul 2018 20:27:49 +0200
Subject: add 'verify_certificate' as possible configuration token for policy
 files  This lets the user configure a per-domain certificate validation
 policy

---
 src/network/tls_policy.cpp | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'src/network/tls_policy.cpp')

diff --git a/src/network/tls_policy.cpp b/src/network/tls_policy.cpp
index b88eb88..8aa8b72 100644
--- a/src/network/tls_policy.cpp
+++ b/src/network/tls_policy.cpp
@@ -37,6 +37,8 @@ void BiboumiTLSPolicy::load(std::istream& is)
       // Workaround for options that are not overridden in Botan::TLS::Text_Policy
       if (pair.first == "require_cert_revocation_info")
         this->req_cert_revocation_info = !(pair.second == "0" || utils::tolower(pair.second) == "false");
+      else if (pair.first == "verify_certificate")
+        this->verify_certificate = !(pair.second == "0" || utils::tolower(pair.second) == "false");
       else
         this->set(pair.first, pair.second);
     }
@@ -47,4 +49,9 @@ bool BiboumiTLSPolicy::require_cert_revocation_info() const
   return this->req_cert_revocation_info;
 }
 
+bool BiboumiTLSPolicy::verify_certificate_info() const
+{
+  return this->verify_certificate;
+}
+
 #endif
-- 
cgit v1.2.3