TLS: pre-generate and load server selfsigned cert, when one is to be used
[users/heiko/exim.git] / test / confs / 3462
1 # Exim test configuration 3462
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12
13 log_selector = +tls_peerdn
14
15 queue_only
16 queue_run_in_order
17
18 tls_advertise_hosts = *
19 tls_certificate = DIR/aux-fixed/cert1
20
21
22 # ----- Authenticators -----
23
24 begin authenticators
25
26 plain:
27   driver = plaintext
28   public_name = LOGIN
29   server_prompts = Username : Password
30   server_condition = "\
31     ${if and {{eq{$1}{userx}}{eq{$2}{secret}}}{yes}{no}}"
32   server_set_id = $1
33   client_send = : userx : secret
34
35
36 # ----- Routers -----
37
38 begin routers
39
40 client:
41   driver = accept
42   condition = ${if eq {SERVER}{server}{no}{yes}}
43   retry_use_local_part
44   transport = send_to_server
45
46 server:
47   driver = accept
48   retry_use_local_part
49   transport = local_delivery
50
51
52 # ----- Transports -----
53
54 begin transports
55
56 local_delivery:
57   driver = appendfile
58   file = DIR/test-mail/${bless:$local_part}
59   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
60   user = CALLER
61
62 send_to_server:
63   driver = smtp
64   allow_localhost
65   hosts = 127.0.0.1
66   port = PORT_D
67   hosts_try_fastopen =  :
68   hosts_try_auth = *
69   tls_verify_certificates =     DIR/aux-fixed/cert1
70   tls_verify_cert_hostnames =   :
71
72
73 # ----- Retry -----
74
75
76 begin retry
77
78 * * F,5d,10s
79
80
81 # End