From e1d2e58570d620f25425e8f1c01131a426d9818e Mon Sep 17 00:00:00 2001
From: Paweł Zuzelski <pawelz@pld-linux.org>
Date: Mon, 21 Jun 2010 17:40:28 +0200
Subject: ssl certs verification

Introduced config variables:
  (string) ssl_ca_file
     (int) ssl_verify
ssl_ca_file is openssl-style CAfile containing trusted root certificates.
ssl_verify value controls whether to verify remote certs. If it is set to
non-zero, uzbl won't connect to remote https site unless it validates cert.
---
 examples/config/config | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'examples')

diff --git a/examples/config/config b/examples/config/config
index 389e7c6..fe1e236 100644
--- a/examples/config/config
+++ b/examples/config/config
@@ -144,6 +144,14 @@ set useragent         = Uzbl (Webkit @{WEBKIT_MAJOR}.@{WEBKIT_MINOR}) (@(+uname
 # Drop google analytics tracking cookies (applied after whitelists if any)
 #request BLACKLIST_COOKIE name '^__utm.$'
 
+# === SSL related configuration ==============================================
+
+# Set it to certificates store of your distribution, or your own CAfile.
+# set ssl_ca_file = /etc/certs/ca-certificates.crt
+# set ssl_verify = 1
+# Command to toggle ssl_verify value:
+@cbind  !ssl = sh 'echo "set ssl_verify=$((!\@ssl_verify))" > "$4"; echo "set uri = \\\\\\\@uri" > "$4"'
+
 # === Key binding configuration ==============================================
 # --- Internal modmapping and ignoring ---------------------------------------
 
-- 
cgit v1.2.3