io.helidon.common.tls.RevocationConfig
Description
Certificate revocation configuration
Configuration options
| Key | Type | Default | Description |
|---|---|---|---|
soft-fail-enabled | Boolean | false | Allow revocation check to succeed if the revocation status cannot be determined for one of the following reasons:
|
ocsp-responder-uri | URI | The URI that identifies the location of the OCSP responder | |
check-only-end-entity | Boolean | false | Only check the revocation status of end-entity certificates |
prefer-crl-over-ocsp | Boolean | false | Prefer CRL over OCSP |
enabled | Boolean | false | Flag indicating whether this revocation config is enabled |
fallback-enabled | Boolean | true | Enable fallback to the less preferred checking option |
Usages
clients.tls.revocationsecurity.providers.idcs-role-mapper.oidc-config.webclient.tls.revocationsecurity.providers.oidc.webclient.tls.revocationserver.features.security.security.providers.idcs-role-mapper.oidc-config.webclient.tls.revocationserver.features.security.security.providers.oidc.webclient.tls.revocationserver.sockets.tls.revocationserver.tls.revocation
See the manifest for all available types.