From 437f4288cd35705ba0b8b0651fde4ca2c7f441dc Mon Sep 17 00:00:00 2001 From: Luigi Rizzo Date: Thu, 7 Dec 2006 16:42:29 +0000 Subject: - Generalize the function ssl_setup() so that the certificate info are passed as an argument. - Update the code in main/http.c to use the new interface (the diff is large but mostly mechanical, due to the name change of several variables); - And since now it is trivial, implement "AMI over TLS", and document the possible options in manager.conf - And since the test client (openssl s_client -connect host:port ) does not generate \r\n as a line terminator, make get_input() also accept just a \n as a line terminator (Mac users: do you also need the \r-only version ?) The option parsing in manager.conf is not very efficient, and needs to be cleaned up and made similar to what we have in http.conf git-svn-id: https://origsvn.digium.com/svn/asterisk/trunk@48351 65c4cc65-6c06-0410-ace0-fbb531ad65f3 --- configs/manager.conf.sample | 12 ++++++++++++ 1 file changed, 12 insertions(+) (limited to 'configs/manager.conf.sample') diff --git a/configs/manager.conf.sample b/configs/manager.conf.sample index ee1b063da..660ab843e 100644 --- a/configs/manager.conf.sample +++ b/configs/manager.conf.sample @@ -26,6 +26,18 @@ enabled = no port = 5038 ;httptimeout = 60 bindaddr = 0.0.0.0 + +; Parameters that control AMI over TLS. ("enabled" must be set too). +; You can open a connection to this socket with e.g. +; +; openssl s_client -connect my_host:5039 +; +; sslenable=no ; set to YES to enable it +; sslbindport=5039 ; the port to bind to +; sslbindaddr=0.0.0.0 ; address to bind to, default to bindaddr +; sslcert=/tmp/asterisk.pem ; path to the certificate. + + ;displayconnects = yes ; ; Add a Unix epoch timestamp to events (not action responses) -- cgit v1.2.3