mirrors/caddy-website
1
0
Fork 0
mirror of https://github.com/caddyserver/website.git synced 2025-04-24 14:06:17 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Updated for v2.8.0

Browse source
This commit is contained in:
Francis Lavoie 2024-04-22 05:06:54 -04:00
parent 1a82466537
commit eb033e57b5
No known key found for this signature in database
GPG key ID: 656DB341634BFCE1
19 changed files with 223 additions and 69 deletions
Download patch file Download diff file Expand all files Collapse all files

3
src/docs/markdown/caddyfile/directives/reverse_proxy.md
View file

@ -509,6 +509,7 @@ transport http {
tls
tls_client_auth <automate_name> | <cert_file> <key_file>
tls_insecure_skip_verify
tls_curves <curves...>
tls_timeout <duration>
tls_trusted_ca_certs <pem_files...>
tls_server_name <server_name>
@ -552,6 +553,8 @@ transport http {
- **tls_insecure_skip_verify** <span id="tls_insecure_skip_verify"/> turns off TLS handshake verification, making the connection insecure and vulnerable to man-in-the-middle attacks. _Do not use in production._
- **tls_curves** <span id="tls_curves"/> is a list of elliptic curves to support for the upstream connection. Caddy's defaults are modern and secure, so you should only need to configure this if you have specific requirements.
- **tls_timeout** <span id="tls_timeout"/> is the maximum [duration](/docs/conventions#durations) to wait for the TLS handshake to complete. Default: No timeout.
- **tls_trusted_ca_certs** <span id="tls_trusted_ca_certs"/> is a list of PEM files that specify CA public keys to trust when connecting to the backend.