Add preferences for RSA-PSS

author Michael Kaply <345868+mkaply@users.noreply.github.com>

Mon, 5 Jun 2023 17:48:02 +0000 (13:48 -0400)

committer Michael Kaply <345868+mkaply@users.noreply.github.com>

Mon, 5 Jun 2023 17:48:02 +0000 (13:48 -0400)
author Michael Kaply <345868+mkaply@users.noreply.github.com>
Mon, 5 Jun 2023 17:48:02 +0000 (13:48 -0400)
committer Michael Kaply <345868+mkaply@users.noreply.github.com>
Mon, 5 Jun 2023 17:48:02 +0000 (13:48 -0400)
diff --git a/docs/index.md b/docs/index.md

index 8185aa11262511a2999317a14e439a4a30b3cb84..d8223eb001304d1f8fec4813a5f5d7b972c20325 100644 (file)
--- a/docs/index.md
+++ b/docs/index.md
@@ -4696,6 +4696,8 @@ as well as the following security preferences:
  | &nbsp;&nbsp;&nbsp;&nbsp;If 0, do not fetch OCSP. If 1, fetch OCSP for DV and EV certificates. If 2, fetch OCSP only for EV certificates
  | security.OCSP.require | boolean | false
  | &nbsp;&nbsp;&nbsp;&nbsp; If true, if an OCSP request times out, the connection fails.
  | &nbsp;&nbsp;&nbsp;&nbsp;If 0, do not fetch OCSP. If 1, fetch OCSP for DV and EV certificates. If 2, fetch OCSP only for EV certificates
  | security.OCSP.require | boolean | false
  | &nbsp;&nbsp;&nbsp;&nbsp; If true, if an OCSP request times out, the connection fails.
+| security.osclientcerts.assume_rsa_pss_support | boolean | true
+| &nbsp;&nbsp;&nbsp;&nbsp; If false, we don't assume an RSA key can do RSA-PSS.
  | security.ssl.enable_ocsp_stapling | boolean | true
  | &nbsp;&nbsp;&nbsp;&nbsp; If false, OCSP stapling is not enabled.
  | security.ssl.errorReporting.enabled | boolean | true
  | security.ssl.enable_ocsp_stapling | boolean | true
  | &nbsp;&nbsp;&nbsp;&nbsp; If false, OCSP stapling is not enabled.
  | security.ssl.errorReporting.enabled | boolean | true
author	Michael Kaply <345868+mkaply@users.noreply.github.com>
	Mon, 5 Jun 2023 17:48:02 +0000 (13:48 -0400)
committer	Michael Kaply <345868+mkaply@users.noreply.github.com>
	Mon, 5 Jun 2023 17:48:02 +0000 (13:48 -0400)