f77d7d0220
This patch add 4 new types for SSL connection ACL configuration. Which are: L7RULE_TYPE_SSL_CONN_HAS_CERT L7RULE_TYPE_VERIFY_RESULT L7RULE_TYPE_DN_FIELD The first type can just accept the compare type "EQUAL_TO" and value "True" string. The second can just accept the int value string to check the certificate verify result, also just support "EQUAL_TO" compare type. The third can accept key, the distinguished name field and a match string, this one supports all kind compare types. Story: 2002165 Task: 20025 Co-Authored-By: Michael Johnson <johnsomor@gmail.com> Change-Id: I71b57d0f32d4839a770396645d2b9945d24f2853
7 lines
229 B
YAML
7 lines
229 B
YAML
---
|
|
features:
|
|
- |
|
|
Adds the ability to define L7 rules based on TLS client authentication
|
|
information. The new L7 rules are\: "L7RULE_TYPE_SSL_CONN_HAS_CERT",
|
|
"L7RULE_TYPE_VERIFY_RESULT", and "L7RULE_TYPE_DN_FIELD".
|