zydronium/internetee-epp_proxy
1
0
Fork 0
mirror of https://github.com/internetee/epp_proxy.git synced 2025-08-18 05:23:48 +02:00
Code Issues Projects Releases Packages Wiki Activity

Add certificate revocation file handling

Browse source
This commit is contained in:
Maciej Szlosarczyk 2019-05-29 09:49:20 +03:00
parent 7a4d5c8ae6
commit ffc5ddaa3c
No known key found for this signature in database
GPG key ID: 41D62D42D3B0D765
2 changed files with 16 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

18
apps/epp_proxy/src/epp_tls_acceptor.erl
View file

@ -9,19 +9,25 @@
-define(CaCertFile,
case application:get_env(epp_proxy, cacertfile_path) of
undefined -> undefined;
{ok, Value} -> Value
{ok, CaCertFile} -> CaCertFile
end).
-define(CertFile,
case application:get_env(epp_proxy, certfile_path) of
undefined -> undefined;
{ok, Value} -> Value
{ok, CertFile} -> CertFile
end).
-define(KeyFile,
case application:get_env(epp_proxy, keyfile_path) of
undefined -> undefined;
{ok, Value} -> Value
{ok, KeyFile} -> KeyFile
end).
-define(CrlFile,
case application:get_env(epp_proxy, crlfile_path) of
undefined -> undefined;
{ok, CrlFile} -> CrlFile
end).
%% gen_server callbacks
-export([init/1, handle_cast/2, handle_call/3, start_link/1]).
@ -40,7 +46,11 @@ init(Port) ->
{depth, 1},
{cacertfile, ?CaCertFile},
{certfile, ?CertFile},
{keyfile, ?KeyFile}],
{keyfile, ?KeyFile},
{crl_check, peer},
{crl_cache, {ssl_crl_cache, {internal, [{http, 5000}]}}}],
ssl_crl_cache:insert({file, ?CrlFile}),
{ok, ListenSocket} = ssl:listen(Port, Options),
gen_server:cast(self(), accept),