Add support for TLS client certificate/key
This commit is contained in:
jesopo
parent
3576f18a82
commit
d307fab507
2 changed files with 9 additions and 0 deletions
|
|
@ -85,8 +85,15 @@ class Server(object):
|
||||||
context.options |= ssl.OP_NO_SSLv2
|
context.options |= ssl.OP_NO_SSLv2
|
||||||
context.options |= ssl.OP_NO_SSLv3
|
context.options |= ssl.OP_NO_SSLv3
|
||||||
context.options |= ssl.OP_NO_TLSv1
|
context.options |= ssl.OP_NO_TLSv1
|
||||||
|
|
||||||
context.load_default_certs()
|
context.load_default_certs()
|
||||||
context.verify_mode = ssl.CERT_REQUIRED
|
context.verify_mode = ssl.CERT_REQUIRED
|
||||||
|
|
||||||
|
client_certificate = self.bot.config.get("ssl-certificate", None)
|
||||||
|
client_key = self.bot.config.get("ssl-key", None)
|
||||||
|
if client_certificate and client_key:
|
||||||
|
context.load_cert_chain(client_certificate, keyfile=client_key)
|
||||||
|
|
||||||
self.socket = context.wrap_socket(self.socket)
|
self.socket = context.wrap_socket(self.socket)
|
||||||
|
|
||||||
def connect(self):
|
def connect(self):
|
||||||
|
|
|
||||||
|
|
@ -1,4 +1,6 @@
|
||||||
[bot]
|
[bot]
|
||||||
|
ssl-certificate =
|
||||||
|
ssl-key =
|
||||||
openweathermap-api-key =
|
openweathermap-api-key =
|
||||||
wolframalpha-api-key =
|
wolframalpha-api-key =
|
||||||
google-api-key =
|
google-api-key =
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue