DOC: ssl: add fetch and ACL 'ssl_verify_result'

commit: c68af8db6f5a2f3d616404c70af7fc34c31de1e3 [log] [tgz]
author: Emeric Brun <ebrun@exceliance.fr> Fri Sep 28 18:14:24 2012 +0200
committer: Willy Tarreau <w@1wt.eu> Tue Oct 02 08:34:37 2012 +0200
tree: 3da482915a5813eca1c9a66561b8fa20a470ef53
parent: baf8ffb6738c51767a76ee456be03afc4272928f [diff]
diff --git a/doc/configuration.txt b/doc/configuration.txt
index 9cc77d0..4675bd3 100644
--- a/doc/configuration.txt
+++ b/doc/configuration.txt

@@ -8190,6 +8190,10 @@
   haproxy and not to SSL contents being blindly forwarded. This requires that
   the SSL library is build with support for TLS extensions (check haproxy -vv).
 
+ssl_verify_result <errorID>
+  Returns true when the incoming connection was made over an SSL/TLS data layer
+  and the verify result match the errorID.
+
 wait_end
   Waits for the end of the analysis period to return true. This may be used in
   conjunction with content analysis to avoid returning a wrong verdict early.
@@ -8804,6 +8808,10 @@
                host name (253 chars or less). The SSL library must have been
                built with support for TLS extensions (check haproxy -vv).
 
+  ssl_verify_result
+               Returns the verify result errorID when the incoming connection
+               was made over an SSL/TLS data layer.
+
   url          This extracts the request's URL as presented in the request. A
                typical use is with prefetch-capable caches, and with portals
                which need to aggregate multiple information from databases and
commit	c68af8db6f5a2f3d616404c70af7fc34c31de1e3	[log] [tgz]
author	Emeric Brun <ebrun@exceliance.fr>	Fri Sep 28 18:14:24 2012 +0200
committer	Willy Tarreau <w@1wt.eu>	Tue Oct 02 08:34:37 2012 +0200
tree	3da482915a5813eca1c9a66561b8fa20a470ef53
parent	baf8ffb6738c51767a76ee456be03afc4272928f [diff]