· 6 years ago · Aug 29, 2019, 01:28 PM
1# SSL auth options
2:ssl:
3 # Path to a CA file in PEM format, mutually exclusive with :ssl_ca_path:
4 #:ssl_ca_file: '/path/to/ca_certificate.pem'
5
6 # Path to a direcotry with CA files, mutually exclusive with :ssl_ca_file:
7 # The directory should contain one certificate per file in PEM format, with a file name of the form hash.N
8 # The hash can be obtained via the -hash option of the openssl x509 command. See the OpenSSL documentation
9 # for more information.
10 #:ssl_ca_path: '/path/to/ca'
11
12 # Turn SSL verification on/off
13 :verify_ssl: false
14
15 # Path to a client certificate, DER- or PEM-encoded certificates are supported
16 #:ssl_client_cert: '/path/to/cert.crt'
17
18 # Path to a client key
19 #:ssl_client_key: '/path/to/cert.key'
20
21 # Enable standard authentication in addition to client certificate authentication.
22 # Switch to false if you want to rely on certificates only.
23 :ssl_with_basic_auth: false
24
25 # Local CA cert store path where hammer stores certificates fetched from the server.
26 # Certs from the local storage are used only when neither :ssl_ca_file: nor :ssl_ca_path: is cofigured.
27 #:local_ca_store_path: '~/.hammer/certs'
28
29 # Allows setting the SSL version to use when making API calls
30 #:ssl_version: 'TLSv1_2'