DOC: configuration: issuers-chain-path not compatible with OCSP

author William Lallemand <wlallemand@haproxy.com>

Wed, 17 Jul 2024 15:46:16 +0000 (17:46 +0200)

committer Willy Tarreau <w@1wt.eu>

Mon, 29 Jul 2024 09:56:13 +0000 (11:56 +0200)
author William Lallemand <wlallemand@haproxy.com>
Wed, 17 Jul 2024 15:46:16 +0000 (17:46 +0200)
committer Willy Tarreau <w@1wt.eu>
Mon, 29 Jul 2024 09:56:13 +0000 (11:56 +0200)
diff --git a/doc/configuration.txt b/doc/configuration.txt

index 8fbd4c4..3b9796a 100644 (file)
--- a/doc/configuration.txt
+++ b/doc/configuration.txt
@@ -2037,6 +2037,10 @@ issuers-chain-path <dir>
    "issuers-chain-path" directory. All other certificates with the same issuer
    will share the chain in memory.
  
+  The OCSP features are not able to use the completed chain from
+  'issuers-chain-path', please use an additionnal .issuer file if you want to
+  achieve OCSP stapling.
+
  key-base <dir>
    Assigns a default directory to fetch SSL private keys from when a relative
    path is used with "key" directives. Absolute locations specified prevail and
author	William Lallemand <wlallemand@haproxy.com>
	Wed, 17 Jul 2024 15:46:16 +0000 (17:46 +0200)
committer	Willy Tarreau <w@1wt.eu>
	Mon, 29 Jul 2024 09:56:13 +0000 (11:56 +0200)