OpenSSL: better handling of $tls_{in,out}_certificate_verified under resumption
[users/heiko/exim.git] / test / confs / 3462
1 # Exim test configuration 3462
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12
13 log_selector = +tls_peerdn
14
15 queue_only
16 queue_run_in_order
17
18 tls_advertise_hosts = *
19
20 # Set certificate only if server
21
22 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
23 tls_privatekey = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
24
25
26 # ----- Authenticators -----
27
28 begin authenticators
29
30 plain:
31   driver = plaintext
32   public_name = LOGIN
33   server_prompts = Username : Password
34   server_condition = "\
35     ${if and {{eq{$1}{userx}}{eq{$2}{secret}}}{yes}{no}}"
36   server_set_id = $1
37   client_send = : userx : secret
38
39
40 # ----- Routers -----
41
42 begin routers
43
44 client:
45   driver = accept
46   condition = ${if eq {SERVER}{server}{no}{yes}}
47   retry_use_local_part
48   transport = send_to_server
49
50 server:
51   driver = accept
52   retry_use_local_part
53   transport = local_delivery
54
55
56 # ----- Transports -----
57
58 begin transports
59
60 local_delivery:
61   driver = appendfile
62   file = DIR/test-mail/$local_part
63   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
64   user = CALLER
65
66 send_to_server:
67   driver = smtp
68   allow_localhost
69   hosts = 127.0.0.1
70   hosts_try_auth = *
71   port = PORT_D
72   tls_try_verify_hosts = :
73
74
75 # ----- Retry -----
76
77
78 begin retry
79
80 * * F,5d,10s
81
82
83 # End