struct CassSsl
Describes the SSL configuration of a cluster.
Functions
CassSsl *
cass_ssl_new
( )Creates a new SSL context.
void
cass_ssl_free
( ssl )Frees a SSL context instance.
CassError
cass_ssl_add_trusted_cert
( ssl, cert )Adds a trusted certificate. This is used to verify the peer’s certificate.
CassError
cass_ssl_add_trusted_cert_n
( ssl, cert, cert_length )Same as CassSsl::cass_ssl_add_trusted_cert
, but with lengths for string parameters.
void
cass_ssl_set_verify_flags
( ssl, flags )Sets verification performed on the peer’s certificate.
CASS_SSL_VERIFY_NONE - No verification is performed CASS_SSL_VERIFY_PEER_CERT - Certificate is present and valid CASS_SSL_VERIFY_PEER_IDENTITY - IP address matches the certificate’s common name or one of its subject alternative names. This implies the certificate is also present. CASS_SSL_VERIFY_PEER_IDENTITY_DNS - Hostname matches the certificate’s common name or one of its subject alternative names. This implies the certificate is also present. Hostname resolution must also be enabled.
Default: CASS_SSL_VERIFY_PEER_CERT
CassError
cass_ssl_set_cert
( ssl, cert )Set client-side certificate chain. This is used to authenticate the client on the server-side. This should contain the entire Certificate chain starting with the certificate itself.
CassError
cass_ssl_set_cert_n
( ssl, cert, cert_length )Same as CassSsl::cass_ssl_set_cert
, but with lengths for string parameters.
CassError
cass_ssl_set_private_key
( ssl, key, password )Set client-side private key. This is used to authenticate the client on the server-side.
CassError
cass_ssl_set_private_key_n
( ssl, key, key_length, password, password_length )Same as CassSsl::cass_ssl_set_private_key
, but with lengths for string parameters.