source: mod_gnutls/test/tests/21_TLS_reverse_proxy_wrong_cert/apache.conf @ ed82a6a

Last change on this file since ed82a6a was ed82a6a, checked in by Thomas Klute <thomas2.klute@…>, 6 years ago

Two more test cases for TLS reverse proxy and test locking fix

New test cases:

20: TLS reverse proxy with TLS client authentication between proxy and back end

server, otherwise the same as test case 19.

21: TLS reverse proxy scenario with the back end server presenting an imposter

certificate. The proxy must abort the connection and send an error message to
the client.

Bugfix: Each proxy test case used a lock file in its own test directory to protect
the back end server instance. Obviously, locking is only useful if the lock file
is shared between all potentially conflicting instances, thus it is moved to the
main test suite directory.

  • Property mode set to 100644
File size: 600 bytes
1Include ${PWD}/../../base_apache.conf
3GnuTLSCache dbm cache/gnutls_cache
5LoadModule proxy_module /usr/lib/apache2/modules/
6LoadModule proxy_http_module /usr/lib/apache2/modules/
8<VirtualHost ${TEST_IP}:${TEST_PORT}>
9 ServerName ${TEST_HOST}
10 GnuTLSEnable On
11 GnuTLSCertificateFile server/x509.pem
12 GnuTLSKeyFile server/secret.key
13 GnuTLSPriorities NORMAL
15 SSLProxyEngine On
16 GnuTLSProxyCAFile ${PWD}/../../authority/x509.pem
17 ProxyPass /proxy/ https://${BACKEND_HOST}:${BACKEND_PORT}/
18 ProxyPassReverse /proxy/ https://${BACKEND_HOST}:${BACKEND_PORT}/
Note: See TracBrowser for help on using the repository browser.