caddy/modules
Karol Będkowski b814c0af9c
tls/client auth: verify first certificates in client request (#3344)
When client certificate is enabled Caddy check only last certificate from
request. When this cert is not in list of trusted leaf certificates,
connection is rejected. According to RFC TLS1.x the sender's certificate
must come first in the list.  Each following certificate must directly
certify the one preceding it.

This patch fix this problem - first certificate is checked instead of last.
2020-05-06 10:07:13 -06:00
..
caddyhttp reverseproxy: Add tls_server_name option to Caddyfile (#3322) 2020-05-05 12:39:39 -06:00
caddypki pki: Embedded ACME server (#3198) 2020-05-05 12:35:32 -06:00
caddytls tls/client auth: verify first certificates in client request (#3344) 2020-05-06 10:07:13 -06:00
filestorage httpcaddyfile: Minor fixes to parsing storage options 2020-05-01 09:34:32 -06:00
logging core: Rename ParsedAddress -> NetworkAddress 2020-04-07 08:33:45 -06:00
standard pki: Embedded ACME server (#3198) 2020-05-05 12:35:32 -06:00