Luis Pater
77ba15f71b
- Introduced `-home-jwt` flag and `HOME_JWT` environment variable to provide JWT for mTLS certificate generation. - Added new APIs to handle certificate requests, validate JWT claims, and manage local certificate files. - Updated Home TLS configuration to support client certificates, keys, and dynamic server name resolution.
23 lines
1022 B
Go
23 lines
1022 B
Go
package config
|
|
|
|
// HomeConfig configures the optional "home" control plane integration over Redis protocol.
|
|
type HomeConfig struct {
|
|
Enabled bool `yaml:"enabled" json:"enabled"`
|
|
Host string `yaml:"host" json:"-"`
|
|
Port int `yaml:"port" json:"-"`
|
|
Password string `yaml:"password" json:"-"`
|
|
DisableClusterDiscovery bool `yaml:"disable-cluster-discovery" json:"-"`
|
|
TLS HomeTLSConfig `yaml:"tls" json:"-"`
|
|
}
|
|
|
|
// HomeTLSConfig configures client-side TLS for the home Redis connection.
|
|
type HomeTLSConfig struct {
|
|
Enable bool `yaml:"enable" json:"-"`
|
|
ServerName string `yaml:"server-name" json:"-"`
|
|
InsecureSkipVerify bool `yaml:"insecure-skip-verify" json:"-"`
|
|
CACert string `yaml:"ca-cert" json:"-"`
|
|
ClientCert string `yaml:"-" json:"-"`
|
|
ClientKey string `yaml:"-" json:"-"`
|
|
UseTargetServerName bool `yaml:"-" json:"-"`
|
|
}
|