class TlsServerCredentialsOptions

class TlsServerCredentialsOptions

Defined at line 166 of file ../../third_party/grpc-migrating/src/include/grpcpp/security/tls_credentials_options.h

Contains configurable options on the server side.

It is used for experimental purposes for now and it is subject to change.

Public Methods

void TlsServerCredentialsOptions (std::shared_ptr<CertificateProviderInterface> certificate_provider)

Server side is required to use a provider, because server always needs to

use identity certs.

Defined at line 170 of file ../../third_party/grpc-migrating/src/include/grpcpp/security/tls_credentials_options.h

void set_cert_request_type (grpc_ssl_client_certificate_request_type cert_request_type)

Sets option to request the certificates from the client.

The default is GRPC_SSL_DONT_REQUEST_CLIENT_CERTIFICATE.

void set_send_client_ca_list (bool send_client_ca_list)

Sets whether or not a TLS server should send a list of CA names in the

ServerHello. This list of CA names is read from the server's trust bundle,

so that the client can use this list as a hint to know which certificate it

should send to the server.

By default, this option is turned off.

WARNING: This API is extremely dangerous and should not be used. If the

server's trust bundle is too large, then the TLS server will be unable to

form a ServerHello, and hence will be unusable.

Deprecated: This function will be removed in the 1.66 release.