[C++] grpc::SslServerCredentialsOptions::pem_root_certs option
33 views
Skip to first unread message
Arpit Baldeva
Feb 2, 2018, 11:44:34 PM2/2/18
to grpc.io
Hi,
Any idea what is above field used for? For a server, it's own ssl cert for any client making request to it is specified via pem_key_cert_pairs. And SslServerCredentialsOptions should not be used when your application is acting as a client, grpc::SslCredentialsOptions should be used (which has a field with the same name).
Am I missing something obvious?
Thanks.
Benjamin Krämer
Feb 5, 2018, 2:55:54 AM2/5/18
to grpc.io
Hi Arpit,
I would assume (by the name) that it's for the root certificate. So if you use a self-signed certificate with pem_key_cert_pairs (signed with your self-generated root certificate and not by a paid service like COMODO), you have to establish the trust yourself. Normally, the system has a list of trusted root certificates. And your own normally does not belong to those.
-- Benjamin
I would assume (by the name) that it's for the root certificate. So if you use a self-signed certificate with pem_key_cert_pairs (signed with your self-generated root certificate and not by a paid service like COMODO), you have to establish the trust yourself. Normally, the system has a list of trusted root certificates. And your own normally does not belong to those.
-- Benjamin
Reply all
Reply to author
Forward
0 new messages