Cutlery/caddy
1
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2026-05-28 01:32:30 -04:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity

http: Enable TLS for servers listening only on HTTPS port

Browse Source 
It seems silly to have to add a single, empty TLS connection policy to
a server to enable TLS when it's only listening on the HTTPS port. We
now do this for the user as part of automatic HTTPS (thus, it can be
disabled / overridden).

See https://caddy.community/t/v2-catch-all-server-with-automatic-tls/6692/2?u=matt
This commit is contained in:
Matthew Holt
2019-12-28 23:56:08 -07:00
parent 5c8b502964
commit 2b33d9a5e5
2 changed files with 13 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
modules/caddytls/connpolicy.go
+1
View File
@@ -106,6 +106,7 @@ func (cp ConnectionPolicies) TLSConfig(ctx caddy.Context) (*tls.Config, error) {
}
// ConnectionPolicy specifies the logic for handling a TLS handshake.
// An empty policy is valid; safe and sensible defaults will be used.
type ConnectionPolicy struct {
// How to match this policy with a TLS ClientHello. If
// this policy is the first to match, it will be used.