RepoMirrors/haproxy
1
0
Fork 0
mirror of http://git.haproxy.org/git/haproxy.git/ synced 2025-01-19 04:00:46 +00:00
Code Issues Packages Projects Releases Wiki Activity
864089e0a6
haproxy/include
History
Remi Tricot-Le Breton 864089e0a6 MINOR: jwt: Insert public certificates into dedicated JWT tree 
A JWT signed with the RSXXX or ESXXX algorithm (RSA or ECDSA) requires a
public certificate to be verified and to ensure it is valid. Those
certificates must not be read on disk at runtime so we need a caching
mechanism into which those certificates will be loaded during init.
This is done through a dedicated ebtree that is filled during
configuration parsing. The path to the public certificates will need to
be explicitely mentioned in the configuration so that certificates can
be loaded as early as possible.
This tree is different from the ckch one because ckch entries are much
bigger than the public certificates used in JWT validation process.
2021-10-14 16:38:12 +02:00
..
haproxy MINOR: jwt: Insert public certificates into dedicated JWT tree 2021-10-14 16:38:12 +02:00
import REORG: ebtree: split structures into their own file ebtree-t.h 2021-10-07 01:41:14 +02:00