Mercurial > hg > nginx-site
comparison xml/en/docs/mail/ngx_mail_auth_http_module.xml @ 1856:7133004fa5b3
$ssl_client_verify extended with a failure reason.
author | Yaroslav Zhuravlev <yar@nginx.com> |
---|---|
date | Thu, 08 Dec 2016 19:08:30 +0300 |
parents | 06322891b4e3 |
children | fef4ab2d990c |
comparison
equal
deleted
inserted
replaced
1855:2ef67c4d2226 | 1856:7133004fa5b3 |
---|---|
8 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd"> | 8 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd"> |
9 | 9 |
10 <module name="Module ngx_mail_auth_http_module" | 10 <module name="Module ngx_mail_auth_http_module" |
11 link="/en/docs/mail/ngx_mail_auth_http_module.html" | 11 link="/en/docs/mail/ngx_mail_auth_http_module.html" |
12 lang="en" | 12 lang="en" |
13 rev="6"> | 13 rev="7"> |
14 | 14 |
15 <section id="directives" name="Directives"> | 15 <section id="directives" name="Directives"> |
16 | 16 |
17 <directive name="auth_http"> | 17 <directive name="auth_http"> |
18 <syntax><value>URL</value></syntax> | 18 <syntax><value>URL</value></syntax> |
206 For the SSL/TLS client connection (1.7.11), | 206 For the SSL/TLS client connection (1.7.11), |
207 the <header>Auth-SSL</header> header is added, and | 207 the <header>Auth-SSL</header> header is added, and |
208 <header>Auth-SSL-Verify</header> will contain | 208 <header>Auth-SSL-Verify</header> will contain |
209 the result of client certificate verification, if | 209 the result of client certificate verification, if |
210 <link doc="ngx_mail_ssl_module.xml" id="ssl_verify_client">enabled</link>: | 210 <link doc="ngx_mail_ssl_module.xml" id="ssl_verify_client">enabled</link>: |
211 “<literal>SUCCESS</literal>”, “<literal>FAILED</literal>”, and | 211 “<literal>SUCCESS</literal>”, “<literal>FAILED:</literal><value>reason</value>” |
212 “<literal>NONE</literal>” if a certificate was not present. | 212 (1.11.7), and “<literal>NONE</literal>” if a certificate was not present. |
213 <note> | |
214 Prior to version 1.11.7, the “<literal>FAILED</literal>” result | |
215 did not contain the <value>reason</value> string. | |
216 </note> | |
213 When the client certificate was present, | 217 When the client certificate was present, |
214 its details are passed in the following request headers: | 218 its details are passed in the following request headers: |
215 <header>Auth-SSL-Subject</header>, <header>Auth-SSL-Issuer</header>, | 219 <header>Auth-SSL-Subject</header>, <header>Auth-SSL-Issuer</header>, |
216 <header>Auth-SSL-Serial</header>, and <header>Auth-SSL-Fingerprint</header>. | 220 <header>Auth-SSL-Serial</header>, and <header>Auth-SSL-Fingerprint</header>. |
217 If <link id="auth_http_pass_client_cert"/> is enabled, | 221 If <link id="auth_http_pass_client_cert"/> is enabled, |