From Fedora Project Wiki
(Created page with "== Setting up server applications to use caml-crush-softhsm == For information on how to setup caml-crush-softhsm [http://pkgs.fedoraproject.org/cgit/caml-crush.git/tree/READ...") |
|||
| Line 1: | Line 1: | ||
= Setting up server applications to use caml-crush-softhsm = | |||
For information on how to setup caml-crush-softhsm [http://pkgs.fedoraproject.org/cgit/caml-crush.git/tree/README.fedora click here]. The rest of this section discusses how to configure specific daemons for caml-crush. | For information on how to setup caml-crush-softhsm [http://pkgs.fedoraproject.org/cgit/caml-crush.git/tree/README.fedora click here]. The rest of this section discusses how to configure specific daemons for caml-crush. | ||
== lighttpd2 == | |||
The minimum configuration file for lighttpd2 should contain the following. | The minimum configuration file for lighttpd2 should contain the following. | ||
<pre> | <pre> | ||
Revision as of 14:39, 2 April 2015
Setting up server applications to use caml-crush-softhsm
For information on how to setup caml-crush-softhsm click here. The rest of this section discusses how to configure specific daemons for caml-crush.
lighttpd2
The minimum configuration file for lighttpd2 should contain the following.
module_load [
"mod_gnutls",
];
"pemfile" => (
"key" => "pkcs11:model=SoftHSM%20v2;manufacturer=SoftHSM%20project;token=System%20softtoken;type=private",
"cert" => "pkcs11:model=SoftHSM%20v2;manufacturer=SoftHSM%20project;token=System%20softtoken;type=cert"
)
The exact PKCS #11 URLs can be seen using
p11tool --list-all --login pkcs11:model=SoftHSM%20v2;manufacturer=SoftHSM%20project;token=System%20softtoken
Before running ensure that the user lighttpd2 runs with is on the pkcs11proxy group.