thevar1able/ClickHouse
1
0
Fork 0
mirror of https://github.com/ClickHouse/ClickHouse.git synced 2024-11-10 01:25:21 +00:00
Code Issues Packages Projects Releases Wiki Activity

Attempt to fix test_ssl_cert_authentication

Browse Source
This commit is contained in:
Alexey Milovidov 2023-06-25 09:28:15 +02:00
parent 71678f64b1
commit e9a9a019cf
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
tests/integration/test_ssl_cert_authentication/configs/ssl_config.xml
View File

@ -18,6 +18,10 @@
<privateKeyFile>/etc/clickhouse-server/config.d/server-key.pem</privateKeyFile>
<caConfig>/etc/clickhouse-server/config.d/ca-cert.pem</caConfig>
<verificationMode>relaxed</verificationMode>
<invalidCertificateHandler>
<!-- Server cannot ask about the certificate in the terminal. Reject instead. -->
<name>RejectCertificateHandler</name>
</invalidCertificateHandler>
</server>
<client> <!-- Used for connecting to https dictionary source and secured Zookeeper communication -->
@ -25,12 +29,9 @@
<cacheSessions>true</cacheSessions>
<disableProtocols>sslv2,sslv3</disableProtocols>
<preferServerCiphers>true</preferServerCiphers>
<!-- Use for self-signed: <verificationMode>none</verificationMode> -->
<invalidCertificateHandler>
<!-- Use for self-signed: <name>AcceptCertificateHandler</name> -->
<name>RejectCertificateHandler</name>
</invalidCertificateHandler>
</client>
</openSSL>
</clickhouse>