mirror of
https://gitee.com/iresty/apisix.git
synced 2024-12-15 01:11:58 +08:00
5191374545
Support the TLS connection when communicating with etcd cluster. We added a configuration item to custom the certificate verification. Whether to setup TLS connection or not depends on the endpoints' scheme, for instance, when endpoints are:
```
etcd:
host:
- "https://127.0.0.1:2379"
- "https://127.0.0.1:3379"
```
APISIX will originate TLS connection automatically, and the Server Name Indication extention will be set by the endpoint host (`127.0.0.1` in above case). Note by default APISIX will verify the certificate, close the verification in configuration explicitly if you want to bypass it.
```
etcd:
tls:
verfiy: false
```
|
||
|---|---|---|
| .. | ||
| etcd.key | ||
| etcd.pem | ||
| mtls_ca.crt | ||
| mtls_client.crt | ||
| mtls_client.key | ||
| mtls_server.crt | ||
| mtls_server.key | ||