diff options
author | DmPanov <37106163+DmPanov@users.noreply.github.com> | 2018-06-13 22:30:57 +0300 |
---|---|---|
committer | Carl Mastrangelo <notcarl@google.com> | 2018-06-13 12:30:57 -0700 |
commit | 49d7e5fd0bbebdc10e89f0036b7c1741a02ecc8e (patch) | |
tree | b3a130356041cb49448240803064b95bec931597 /SECURITY.md | |
parent | 9f023819386f39a635e0999a3894715fd8436031 (diff) | |
download | grpc-grpc-java-49d7e5fd0bbebdc10e89f0036b7c1741a02ecc8e.tar.gz |
examples: replace client certificate in trust store in 'Hello world example with TLS with mutual auth'
... with proper CA certificate to fix SSLV3_ALERT_HANDSHAKE_FAILURE in two host with different IPs setup, switch to required client auth to fail on incorrect configuration
Diffstat (limited to 'SECURITY.md')
-rw-r--r-- | SECURITY.md | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/SECURITY.md b/SECURITY.md index 4a171bbac..3e858ced3 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -289,8 +289,8 @@ NettyChannelBuilder or OkHttpChannelBuilder, respectively. ```java Server server = NettyServerBuilder.forPort(8443) .sslContext(GrpcSslContexts.forServer(certChainFile, privateKeyFile) - .trustManager(clientCertChainFile) - .clientAuth(ClientAuth.OPTIONAL) + .trustManager(clientCAsFile) + .clientAuth(ClientAuth.REQUIRE) .build()); ``` |