vault (filesystem)

Zilla runtime filesystem vault

Defines a vault stored on the local filesystem.
The filesystem vault uses PKCS12 format to store signed certificates and keys.
The keys option is used to identify the local peer in a TLS handshake.
The trust option is used to verify identity of the remote peer in a TLS handshake.
The signers option is used to challenge for mutual authentication in a TLS handshake.
Example
"server":
{
    "type": "filesystem",
    "options":
    {
        "keys":
        {
            "store": "localhost.p12",
            "type": "pkcs12",
            "password": "{{env.KEYS_PASSWORD}}"
        }
    }
}
Note that use of {{env.*}} syntax to read an environment variable currently requires setting zilla.engine.config.syntax.mustache=true in .zilla/zilla.properties.
Configuration
Guard with support for local filesystem.
Properties
Name (* = required)
Type
Description
type*
const "filesystem"
Support filesystem
​options​
object
filesystem-specific options
options
Options for local filesystem.
Properties
Name (* = required)
Type
Description
keys
​store​
Private keys
trust
​store​
Trust certificates
signers
​store​
Signer certificates
store
Store option for local filesystem.
Properties
Name (* = required)
Type
Description
store*
string
Relative path to keystore
type
string
Keystore type,
defaults to "pkcs12"
password
string
Keystore password

Name (* = required)	Type	Description
`type`*	`const "filesystem"`	Support `filesystem`
`options`	`object`	`filesystem`-specific options

Name (* = required)	Type	Description
`keys`	`store`	Private keys
`trust`	`store`	Trust certificates
`signers`	`store`	Signer certificates

Name (* = required)	Type	Description
`store`*	`string`	Relative path to keystore
`type`	`string`	Keystore type, defaults to `"pkcs12"`
`password`	`string`	Keystore password

vault

Last modified 10mo ago