gianm commented on a change in pull request #6076: Mutual TLS support URL: https://github.com/apache/incubator-druid/pull/6076#discussion_r210964758
########## File path: docs/content/operations/tls-support.md ########## @@ -31,6 +31,16 @@ values for the below mentioned configs among others provided by Java implementat |`druid.server.https.certAlias`|Alias of TLS/SSL certificate for the connector.|none|yes| |`druid.server.https.keyStorePassword`|The [Password Provider](../operations/password-provider.html) or String password for the Key Store.|none|yes| +The following table contains configuration options related to client certificate authentication. + +|Property|Description|Default|Required| +|--------|-----------|-------|--------| +|`druid.server.https.requireClientAuth`|If set to true, clients must identify themselves by providing a TLS certificate. If `requireClientAuth` is false, the rest of the options in this table are ignored.|false|no| +|`druid.server.https.trustStoreType`|The type of the trust store containing certificates used to validate client certificates.|`java.security.KeyStore.getDefaultType()`|no| Review comment: This won't be used for anything other than verifying client certificates? ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@druid.apache.org For additional commands, e-mail: commits-h...@druid.apache.org
