Home Explore Help
Sign In
Kamailio
/
kamailio
mirror of https://github.com/kamailio/kamailio.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

tls: documented is_peer_verified()

- documented is_peer_verified()
- fixed the xmls, so that xmllint / make check does not return any
  errors
- regenerated the README
Andrei Pelinescu-Onciul 15 years ago
parent
915a005209
commit
f86da81983
5 changed files with 45 additions and 7 deletions
Split View Show Diff Stats
  1. 15 0
      modules/tls/README
  2. 24 4
      modules/tls/doc/functions.xml
  3. 1 1
      modules/tls/doc/history.xml
  4. 1 1
      modules/tls/doc/params.xml
  5. 4 1
      modules/tls/doc/tls.xml

+ 15 - 0
modules/tls/README
View File 

@@ -37,6 +37,9 @@ Andrei Pelinescu-Onciul
 
         1.8.17. config (string)
 
 
    1.9. Functions
 
+
 
+        1.9.1. is_peer_verified()
 
+
 
    1.10. History
 
 
 1.1. Overview
 
@@ -587,6 +590,18 @@ modparam("tls", "config", "/usr/local/etc/ser/tls.cfg")
 
    Revision History
 
    Revision $Revision$ $Date$
 
 
+1.9.1. is_peer_verified()
 
+
 
+   Returns true if the connection on which the message was received is TLS
 
+   , the peer presented an X509 certificate and the certificate chain
 
+   verified ok. It can be used only in a request route.
 
+
 
+   Example 20. is_peer_verified usage
 
+        if (proto==TLS && !is_peer_verified()){
 
+                sl_send_reply("400", "No certificate or verification failed");
 
+                drop;
 
+        }
 
+
 
 1.10. History
 
 
    Revision History

+ 24 - 4
modules/tls/doc/functions.xml
View File 

@@ -2,16 +2,36 @@
 
 <!DOCTYPE section PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
 
    "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
 
 
-<section id="textops.functions" xmlns:xi="http://www.w3.org/2001/XInclude">
 
-    <sectioninfo>
 
+<section id="textops.functions">
 
+	<sectioninfo>
 
 	<revhistory>
 
 	    <revision>
 
 		<revnumber>$Revision$</revnumber>
 
 		<date>$Date$</date>
 
 	    </revision>
 
 	</revhistory>
 
-    </sectioninfo>
 
+	</sectioninfo>
 
+
 
+	<title>Functions</title>
 
+
 
+	<section id="tls.is_peer_verfied">
 
+		<title><function>is_peer_verified()</function></title>
 
+		<para>
 
+			Returns true if the connection on which the message was received
 
+			is TLS , the peer presented an X509 certificate and the
 
+			certificate chain verified ok.
 
+			It can be used only in a request route.
 
+		</para>
 
+		<example>
 
+			<title><function>is_peer_verified</function> usage</title>
 
+			<programlisting>
 
+	if (proto==TLS &amp;&amp; !is_peer_verified()){
 
+		sl_send_reply("400", "No certificate or verification failed");
 
+		drop;
 
+	}
 
+			</programlisting>
 
+		</example>
 
+	</section>
 
 
-    <title>Functions</title>
 
 
 </section>

+ 1 - 1
modules/tls/doc/history.xml
View File 

@@ -2,7 +2,7 @@
 
 <!DOCTYPE section PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN" 
    "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
 
 
-<section id="tls.certs_howto" xmlns:xi="http://www.w3.org/2001/XInclude">
 
+<section id="tls.history">
 
     <sectioninfo>
 
 	<revhistory>
 
 	    <revision>

+ 1 - 1
modules/tls/doc/params.xml
View File 

@@ -2,7 +2,7 @@
 
 <!DOCTYPE section PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN" 
    "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
 
 
-<section id="tm.parameters" xmlns:xi="http://www.w3.org/2001/XInclude">
 
+<section id="tm.parameters">
 
     <sectioninfo>
 
 	<revhistory>
 
 	    <revision>

+ 4 - 1
modules/tls/doc/tls.xml
View File 

@@ -1,6 +1,9 @@
 
 <?xml version="1.0" encoding="UTF-8"?>
 
 <!DOCTYPE section PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
 
-   "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
 
+	"http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd"
 
+	[ <!ENTITY % local.common.attrib
 
+	 "xmlns:xi CDATA #FIXED 'http://www.w3.org/2001/XInclude'">]
 
+>
 
 
 <section id="tls" xmlns:xi="http://www.w3.org/2001/XInclude">
 
 	<sectioninfo>