Testsuite: avoid cipher vs. cert validity problem
[users/heiko/exim.git] / test / confs / 3462
1 # Exim test configuration 3462
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12
13 log_selector = +tls_peerdn
14
15 queue_only
16 queue_run_in_order
17
18 tls_advertise_hosts = *
19
20 # Set certificate only if server
21
22 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
23 tls_privatekey = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
24
25
26 # ----- Authenticators -----
27
28 begin authenticators
29
30 plain:
31   driver = plaintext
32   public_name = LOGIN
33   server_prompts = Username : Password
34   server_condition = "\
35     ${if and {{eq{$1}{userx}}{eq{$2}{secret}}}{yes}{no}}"
36   server_set_id = $1
37   client_send = : userx : secret
38
39
40 # ----- Routers -----
41
42 begin routers
43
44 client:
45   driver = accept
46   condition = ${if eq {SERVER}{server}{no}{yes}}
47   retry_use_local_part
48   transport = send_to_server
49
50 server:
51   driver = accept
52   retry_use_local_part
53   transport = local_delivery
54
55
56 # ----- Transports -----
57
58 begin transports
59
60 local_delivery:
61   driver = appendfile
62   file = DIR/test-mail/${bless:$local_part}
63   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
64   user = CALLER
65
66 send_to_server:
67   driver = smtp
68   allow_localhost
69   hosts = 127.0.0.1
70   port = PORT_D
71   hosts_try_fastopen =  :
72   hosts_try_auth = *
73   tls_try_verify_hosts = :
74
75
76 # ----- Retry -----
77
78
79 begin retry
80
81 * * F,5d,10s
82
83
84 # End