mirror of
https://github.com/juanfont/headscale.git
synced 2024-12-02 03:33:05 +00:00
updating changelog and docs
This commit is contained in:
parent
daa75da277
commit
b5a59d4e7a
2 changed files with 8 additions and 9 deletions
|
@ -2,6 +2,8 @@
|
||||||
|
|
||||||
**TBD (TBD):**
|
**TBD (TBD):**
|
||||||
|
|
||||||
|
- Add support for configurable mTLS [docs](docs/tls.md#configuring-mutual-tls-authentication-mtls)
|
||||||
|
|
||||||
**0.13.0 (2022-02-18):**
|
**0.13.0 (2022-02-18):**
|
||||||
|
|
||||||
**Features**:
|
**Features**:
|
||||||
|
|
15
docs/tls.md
15
docs/tls.md
|
@ -32,16 +32,13 @@ tls_key_path: ""
|
||||||
|
|
||||||
### Configuring Mutual TLS Authentication (mTLS)
|
### Configuring Mutual TLS Authentication (mTLS)
|
||||||
|
|
||||||
mTLS is a method by which an HTTPS server authenticates clients, e.g. Tailscale,
|
mTLS is a method by which an HTTPS server authenticates clients, e.g. Tailscale, using TLS certificates. This can be configured by applying one of the following values to the `tls_client_auth_mode` setting in the configuration file.
|
||||||
using TLS certificates. The capability can be configured by applying one of
|
|
||||||
the following values to the `tls_client_auth_mode` setting in the configuration
|
|
||||||
file.
|
|
||||||
|
|
||||||
| Value | Behavior |
|
| Value | Behavior |
|
||||||
| ---------- | ---------------------------------------------------------- |
|
| ------------------- | -----------------------------------------------------------|
|
||||||
| `disabled` | Disable mTLS (default). |
|
| `disabled` | Disable mTLS. |
|
||||||
| `relaxed` | A client certificate is required, but it is not verified. |
|
| `relaxed` (default) | A client certificate is required, but it is not verified. |
|
||||||
| `enforced` | Requires clients to supply a certificate that is verified. |
|
| `enforced` | Requires clients to supply a certificate that is verified. |
|
||||||
|
|
||||||
```yaml
|
```yaml
|
||||||
tls_client_auth_mode: ""
|
tls_client_auth_mode: ""
|
||||||
|
|
Loading…
Reference in a new issue