https://bz.apache.org/bugzilla/show_bug.cgi?id=70003
--- Comment #8 from Joe Orton <[email protected]> --- (In reply to simon.studer from comment #7) > That sounds like a clean solution, and I guess that ignoring specific TLS > validation errors is orthogonal to whether a client certificate is required. > So, this would mean the optional second parameter can be used for both > 'require' and 'optional'. > > SSLProxyVerify require self-signed,untrusted-cert,expired-cert > SSLProxyVerify optional self-signed,untrusted-cert,expired-cert > > I can try to implement this and update the pull request. Awesome, thanks. > Any inputs on the implementation details or naming? I had assumed it only makes sense to allow the third arg if "optional" is used, and it should not be permitted otherwise. Otherwise we'd have to redo and redefine the handling of "required" here. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
