Add documentation on validate_target_cert.

Cimpress-MCP · May 3, 2015 · 76960e7 · 76960e7
1 parent b27cc9a
commit 76960e7
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/readme.md b/readme.md
@@ -84,6 +84,8 @@ The following fields are optional for a reverse proxy:
 
 **to_port_is_https** - If the port to which you are proxying traffic is serving https traffic but is not port 443, you need to set this parameter to `true` so that the reverse proxy knows how to open the connection.  The default is `false`.
 
+**validate_target_cert** - If the target host is https, this configuration tells the reverse proxy to forward traffic only if the target host presents a valid certificate.  The default is `true`.
+
 The following fields are optional for a proxy or reverse proxy:
 
 **required_uris** - Sometimes you may have a situation where `oauth_[|reverse_]proxy` is sitting in front of another reverse proxy that is deferring to different systems based on the requested route.  In these cases, you may wish to configure your proxy to only allow access to the routes that match a URI in this list.  This is to prevent client applications from authenticating against your proxy but accessing routes that shouldn't be accessible by this proxy.  The entries in `require_uris` are substrings, not regexes, and they are only considered to match if they match from the start of the route.