This is an automated email from the ASF dual-hosted git repository. yjhjstz pushed a commit to branch main in repository https://gitbox.apache.org/repos/asf/cloudberry.git
commit 8b06767b2b75e50f5f862c69db47e45b4d7247d4 Author: HouLei <[email protected]> AuthorDate: Mon Oct 30 11:31:17 2023 +0800 Add help information for gpfdist(#16595) Add some help information for the gpfdist flag 'ssl_verify_peer'. --- gpMgmt/doc/gpfdist_help | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/gpMgmt/doc/gpfdist_help b/gpMgmt/doc/gpfdist_help index 5bf7d0f442..f6f8df7811 100755 --- a/gpMgmt/doc/gpfdist_help +++ b/gpMgmt/doc/gpfdist_help @@ -9,6 +9,7 @@ SYNOPSIS gpfdist [-d <directory>] [-p <http_port>] [-l <log_file>] [-t <timeout>] [-S] [-w <time>] [-v | -V] [-m <max_length>] [--ssl <certificate_path>] +[--ssl_verify_peer <on/off>] gpfdist [-? | --help] | --version @@ -139,6 +140,18 @@ OPTIONS The root directory (/) cannot be specified as certificate_path. +--ssl_verify_peer <on/off> + + This option is used to configure the SSL authentication files required in + the gpfdists protocol, as well as to control the behavior of gpfdist regarding + SSL identity authentication. The default value is 'on'. + + If the flag is 'on', gpfdist will be forced to check the identity of clients, + and CA certification file (root.crt) is necessary to be laid in the SSL + certification directory. If the flag is 'off', gpfdist will not check the + identity of clients, and it doesn't matter whether the CA certification file + exists on the gpfdist side. + -v (verbose) Verbose mode shows progress and status messages. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
