> On 03.05.2026, at 17:26, Zoran Vasiljevic <[email protected]> wrote: > Hi! > > Is this going to break V5.0 HTTPS behavior?
Hi Zoran, no, this does not change the default HTTPS behavior of NaviServer 5.0. There are three separate aspects: a) Core default (unchanged) If nothing is configured, NaviServer behaves as before: no client certificates are requested or required. b) Configurable modes When mTLS is configured, we now distinguish between: none (default): do not request client certificates request: ask for a certificate, but accept connections without one require: enforce a valid client certificate c) Sample configuration The distributed nsd-config.tcl uses request, which means clients may send a certificate, but existing clients without certificates continue to work unchanged. Only when explicitly setting clientcertmode require would connections without a valid client certificate fail. So existing deployments are not affected unless they opt into stricter settings. best regards -gustaf
_______________________________________________ naviserver-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/naviserver-devel
