forked from aniani/gmnisrv
ae7ca3db39
Set SSL_VERIFY_PEER to request a client certificate from the server, when available. Have to shim the certificate verification function or else it will fail on self-signed client certs. In serve_cgi retrieve client certificate, create a fingerprint, and set proper environment variables. It's pretty barebones, it doesn't parse the certificate to give any other useful info like the common name, but it's acceptable IMO. For most CGI uses the fingerprint is the only thing that is needed anyways. |
||
---|---|---|
doc | ||
include | ||
src | ||
.gitignore | ||
config.ini | ||
config.sh | ||
configure | ||
COPYING | ||
Makefile | ||
README.md |
gmnisrv
gmnisrv is a simple Gemini protocol server.
Installation
Dependencies:
- A C11 compiler and a POSIX-like system
- OpenSSL
- Mailcap (for /etc/mime.types)
- scdoc (optional)
$ mkdir build
$ cd build
$ ../configure --prefix=/usr
$ make
# make install
Configuration
By default it reads from /etc/gmnisrv.ini
, but this can be changed by passing
the -C
flag to the gmnisrv
daemon. A sample config.ini is provided at
/usr/share/gmnisrv/gmnisrv.ini
:
# Space-separated list of hosts
listen=0.0.0.0:1965 [::]:1965
[:tls]
# Path to store certificates on disk
store=/var/lib/gemini/certs
# Optional details for new certificates
organization=gmnisrv user
[example.org]
root=/srv/gemini/example.org
[example.com]
root=/srv/gemini/example.com
For full details on gmnisrv configuration, consult the gmnisrv(5) manual page.
Usage
See gmnisrv(1).