116 lines
2.7 KiB
JSON
116 lines
2.7 KiB
JSON
{
|
|
"wfe": {
|
|
"listenAddress": "0.0.0.0:4001",
|
|
"TLSListenAddress": "0.0.0.0:4431",
|
|
"serverCertificatePath": "test/wfe-tls/boulder/cert.pem",
|
|
"serverKeyPath": "test/wfe-tls/boulder/key.pem",
|
|
"allowOrigins": [
|
|
"*"
|
|
],
|
|
"shutdownStopTimeout": "10s",
|
|
"subscriberAgreementURL": "https://boulder.service.consul:4431/terms/v7",
|
|
"debugAddr": ":8013",
|
|
"directoryCAAIdentity": "happy-hacker-ca.invalid",
|
|
"directoryWebsite": "https://github.com/letsencrypt/boulder",
|
|
"legacyKeyIDPrefix": "http://boulder.service.consul:4000/reg/",
|
|
"goodkey": {
|
|
"blockedKeyFile": "test/example-blocked-keys.yaml"
|
|
},
|
|
"tls": {
|
|
"caCertFile": "test/grpc-creds/minica.pem",
|
|
"certFile": "test/grpc-creds/wfe.boulder/cert.pem",
|
|
"keyFile": "test/grpc-creds/wfe.boulder/key.pem"
|
|
},
|
|
"raService": {
|
|
"dnsAuthority": "consul.service.consul",
|
|
"srvLookup": {
|
|
"service": "ra",
|
|
"domain": "service.consul"
|
|
},
|
|
"timeout": "15s",
|
|
"noWaitForReady": true,
|
|
"hostOverride": "ra.boulder"
|
|
},
|
|
"saService": {
|
|
"dnsAuthority": "consul.service.consul",
|
|
"srvLookup": {
|
|
"service": "sa",
|
|
"domain": "service.consul"
|
|
},
|
|
"timeout": "15s",
|
|
"noWaitForReady": true,
|
|
"hostOverride": "sa.boulder"
|
|
},
|
|
"accountCache": {
|
|
"size": 9000,
|
|
"ttl": "5s"
|
|
},
|
|
"getNonceService": {
|
|
"dnsAuthority": "consul.service.consul",
|
|
"srvLookup": {
|
|
"service": "nonce",
|
|
"domain": "service.consul"
|
|
},
|
|
"timeout": "15s",
|
|
"noWaitForReady": true,
|
|
"hostOverride": "nonce.boulder"
|
|
},
|
|
"redeemNonceService": {
|
|
"dnsAuthority": "consul.service.consul",
|
|
"srvLookups": [
|
|
{
|
|
"service": "nonce1",
|
|
"domain": "service.consul"
|
|
},
|
|
{
|
|
"service": "nonce2",
|
|
"domain": "service.consul"
|
|
}
|
|
],
|
|
"srvResolver": "nonce-srv",
|
|
"timeout": "15s",
|
|
"noWaitForReady": true,
|
|
"hostOverride": "nonce.boulder"
|
|
},
|
|
"noncePrefixKey": {
|
|
"passwordFile": "test/secrets/nonce_prefix_key"
|
|
},
|
|
"chains": [
|
|
[
|
|
"/hierarchy/intermediate-cert-rsa-a.pem",
|
|
"/hierarchy/root-cert-rsa.pem"
|
|
],
|
|
[
|
|
"/hierarchy/intermediate-cert-rsa-b.pem",
|
|
"/hierarchy/root-cert-rsa.pem"
|
|
],
|
|
[
|
|
"/hierarchy/intermediate-cert-ecdsa-a.pem",
|
|
"/hierarchy/root-cert-ecdsa.pem"
|
|
],
|
|
[
|
|
"/hierarchy/intermediate-cert-ecdsa-b.pem",
|
|
"/hierarchy/root-cert-ecdsa.pem"
|
|
],
|
|
[
|
|
"/hierarchy/intermediate-cross-cert-ecdsa-a.pem",
|
|
"/hierarchy/root-cert-rsa.pem"
|
|
],
|
|
[
|
|
"/hierarchy/intermediate-cross-cert-ecdsa-b.pem",
|
|
"/hierarchy/root-cert-rsa.pem"
|
|
]
|
|
],
|
|
"staleTimeout": "5m",
|
|
"authorizationLifetimeDays": 30,
|
|
"pendingAuthorizationLifetimeDays": 7,
|
|
"features": {
|
|
"ServeRenewalInfo": true
|
|
}
|
|
},
|
|
"syslog": {
|
|
"stdoutlevel": 4,
|
|
"sysloglevel": 6
|
|
}
|
|
}
|