hub: remove global SSLVerifyClient option
Stop recommending that clients set "SSLVerifyClient require" globally on the hub httpd server. In the latest versions of the koji CLI, we perform many RPCs anonymously in order to improve performance, and this is incompatible with hubs that enforce "SSLVerifyClient require" globally.
This commit is contained in:
Ken Dreyer
Tomas Kopecek
parent
2c711e722e
commit
0c8501e6ea
1 changed files with 0 additions and 8 deletions
|
|
@ -48,14 +48,6 @@ Alias /kojifiles "/mnt/koji/"
|
|||
# SSLOptions +StdEnvVars
|
||||
# </Location>
|
||||
|
||||
# If you need to support koji < 1.4.0 clients using SSL authentication, then use the following instead:
|
||||
# <Location /kojihub>
|
||||
# SSLOptions +StdEnvVars
|
||||
# </Location>
|
||||
# In this case, you will need to enable these options globally (in ssl.conf):
|
||||
# SSLVerifyClient require
|
||||
# SSLVerifyDepth 10
|
||||
|
||||
# uncomment this to enable authentication via GSSAPI
|
||||
# <Location /kojihub/ssllogin>
|
||||
# AuthType GSSAPI
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue