Author: lmccay Date: Sat Feb 25 00:39:12 2017 New Revision: 1784340 URL: http://svn.apache.org/viewvc?rev=1784340&view=rev Log: added docs for custom signing keystore, alias and passphrase
Modified: knox/site/books/knox-0-11-0/user-guide.html knox/site/books/knox-0-12-0/user-guide.html knox/trunk/books/0.11.0/config.md knox/trunk/books/0.12.0/config.md Modified: knox/site/books/knox-0-11-0/user-guide.html URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/user-guide.html?rev=1784340&r1=1784339&r2=1784340&view=diff ============================================================================== --- knox/site/books/knox-0-11-0/user-guide.html (original) +++ knox/site/books/knox-0-11-0/user-guide.html Sat Feb 25 00:39:12 2017 @@ -568,6 +568,16 @@ https://{gateway-host}:{gateway-port}/{g <td>false</td> </tr> <tr> + <td>gateway.signing.keystore.name</td> + <td>OPTIONAL Filename of keystore file that contains the signing keypair. NOTE: An alias needs to be created using “knoxcli.sh create-alias” for the alias name signing.key.passphrase in order to provide the passphrase to access the keystore.</td> + <td>null</td> + </tr> + <tr> + <td>gateway.signing.key.alias</td> + <td>OPTIONAL alias for the signing keypair within the keystore specified via gateway.signing.keystore.name.</td> + <td>null</td> + </tr> + <tr> <td>gateway.gzip.compress.mime.types</td> <td>Content types to be gzip compressed by Knox on the way out to browser.</td> <td>text/html, text/plain, text/xml, text/css, application/javascript, text/javascript, application/x-javascript</td> Modified: knox/site/books/knox-0-12-0/user-guide.html URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/user-guide.html?rev=1784340&r1=1784339&r2=1784340&view=diff ============================================================================== --- knox/site/books/knox-0-12-0/user-guide.html (original) +++ knox/site/books/knox-0-12-0/user-guide.html Sat Feb 25 00:39:12 2017 @@ -573,6 +573,16 @@ https://{gateway-host}:{gateway-port}/{g <td>text/html, text/plain, text/xml, text/css, application/javascript, text/javascript, application/x-javascript</td> </tr> <tr> + <td>gateway.signing.keystore.name</td> + <td>OPTIONAL Filename of keystore file that contains the signing keypair. NOTE: An alias needs to be created using “knoxcli.sh create-alias” for the alias name signing.key.passphrase in order to provide the passphrase to access the keystore.</td> + <td>null</td> + </tr> + <tr> + <td>gateway.signing.key.alias</td> + <td>OPTIONAL alias for the signing keypair within the keystore specified via gateway.signing.keystore.name.</td> + <td>null</td> + </tr> + <tr> <td>ssl.enabled</td> <td>Indicates whether SSL is enabled for the Gateway</td> <td>true</td> Modified: knox/trunk/books/0.11.0/config.md URL: http://svn.apache.org/viewvc/knox/trunk/books/0.11.0/config.md?rev=1784340&r1=1784339&r2=1784340&view=diff ============================================================================== --- knox/trunk/books/0.11.0/config.md (original) +++ knox/trunk/books/0.11.0/config.md Sat Feb 25 00:39:12 2017 @@ -135,6 +135,8 @@ gateway.httpserver.requestHeaderBuffer|T gateway.httpserver.responseBuffer|The size of the HTTP server response buffer. The default is 32K.|32768 gateway.httpserver.responseHeaderBuffer|The size of the HTTP server response header buffer. The default is 8K.|8192 gateway.websocket.feature.enabled|Enable/Disable websocket feature.|false +gateway.signing.keystore.name|OPTIONAL Filename of keystore file that contains the signing keypair. NOTE: An alias needs to be created using "knoxcli.sh create-alias" for the alias name signing.key.passphrase in order to provide the passphrase to access the keystore.|null +gateway.signing.key.alias|OPTIONAL alias for the signing keypair within the keystore specified via gateway.signing.keystore.name.|null gateway.gzip.compress.mime.types|Content types to be gzip compressed by Knox on the way out to browser.|text/html, text/plain, text/xml, text/css, application/javascript, text/javascript, application/x-javascript ssl.enabled|Indicates whether SSL is enabled for the Gateway|true ssl.include.ciphers|A comma separated list of ciphers to accept for SSL. See the [JSSE Provider docs](http://docs.oracle.com/javase/8/docs/technotes/guides/security/SunProviders.html#SunJSSEProvider) for possible ciphers. These can also contain regular expressions as shown in the [Jetty documentation](http://www.eclipse.org/jetty/documentation/current/configuring-ssl.html).|all| Modified: knox/trunk/books/0.12.0/config.md URL: http://svn.apache.org/viewvc/knox/trunk/books/0.12.0/config.md?rev=1784340&r1=1784339&r2=1784340&view=diff ============================================================================== --- knox/trunk/books/0.12.0/config.md (original) +++ knox/trunk/books/0.12.0/config.md Sat Feb 25 00:39:12 2017 @@ -136,6 +136,8 @@ gateway.httpserver.responseBuffer|The si gateway.httpserver.responseHeaderBuffer|The size of the HTTP server response header buffer. The default is 8K.|8192 gateway.websocket.feature.enabled|Enable/Disable websocket feature.|false gateway.gzip.compress.mime.types|Content types to be gzip compressed by Knox on the way out to browser.|text/html, text/plain, text/xml, text/css, application/javascript, text/javascript, application/x-javascript +gateway.signing.keystore.name|OPTIONAL Filename of keystore file that contains the signing keypair. NOTE: An alias needs to be created using "knoxcli.sh create-alias" for the alias name signing.key.passphrase in order to provide the passphrase to access the keystore.|null +gateway.signing.key.alias|OPTIONAL alias for the signing keypair within the keystore specified via gateway.signing.keystore.name.|null ssl.enabled|Indicates whether SSL is enabled for the Gateway|true ssl.include.ciphers|A comma separated list of ciphers to accept for SSL. See the [JSSE Provider docs](http://docs.oracle.com/javase/8/docs/technotes/guides/security/SunProviders.html#SunJSSEProvider) for possible ciphers. These can also contain regular expressions as shown in the [Jetty documentation](http://www.eclipse.org/jetty/documentation/current/configuring-ssl.html).|all| ssl.exclude.ciphers|A comma separated list of ciphers to reject for SSL. See the [JSSE Provider docs](http://docs.oracle.com/javase/8/docs/technotes/guides/security/SunProviders.html#SunJSSEProvider) for possible ciphers. These can also contain regular expressions as shown in the [Jetty documentation](http://www.eclipse.org/jetty/documentation/current/configuring-ssl.html).|none|