Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Adding OCSP Stapling support to mosquitto #459
Adding OCSP Stapling support to mosquitto, so that the TLS client side
Signed-off-by: Dr. Lars Voelker email@example.com
Also according my understanding, OCSP is used for client certificate validation. Correct me if I am wrong.
Please provide steps to use OCSP.
Regarding Question 1:
Basically OCSP stapling works like this:
So you basically need to have a way to make the client to require OCSP. This is what the configuration parameter is for.
So you only need to add to your config this line:
In order to test this, you need now a CA that supplies the OCSP stapling tickets to you (e.g. letsencrypt) and a server with TLS that sends them out, when the client asks for it.
Regarding Question 2: