You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: crowdsec-docs/docs/configuration/crowdsec_configuration.md
+42-1Lines changed: 42 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -146,6 +146,9 @@ db_config:
146
146
host: "<db_host_ip>" # for mysql/pgsql
147
147
port: "<db_host_port>" # for mysql/pgsql
148
148
sslmode: "<require/disable>" # for pgsql
149
+
ssl_ca_cert: "<path_to_ca_cert_file>" # for mysql/pgsql
150
+
ssl_client_cert: "<path_to_client_cert_file>" # for mysql/pgsql
151
+
ssl_client_key: "<path_to_client_key_file>" # for mysql/pgsql
149
152
use_wal: "true|false" # for sqlite
150
153
max_open_conns: "<max_number_of_conns_to_db>"
151
154
flush:
@@ -459,6 +462,9 @@ db_config:
459
462
host: "<db_host_ip>" # for mysql/postgresql/pgx # must be omitted if using socket file
460
463
port: "<db_host_port>" # for mysql/postgresql/pgx # must be omitted if using socket file
461
464
sslmode: "<require/disable>" # for postgresql/pgx
465
+
ssl_ca_cert: "<path_to_ca_cert_file>" # for mysql/pgsql
466
+
ssl_client_cert: "<path_to_client_cert_file>" # for mysql/pgsql
467
+
ssl_client_key: "<path_to_client_key_file>" # for mysql/pgsql
462
468
max_open_conns: "<max_number_of_conns_to_db>"
463
469
decision_bulk_size: "<decision_bulk_size>"
464
470
flush:
@@ -556,13 +562,48 @@ db_config:
556
562
The port to connect to (only if the type of database is `mysql` or `postgresql`). Must be omitted if using socket file.
557
563
558
564
565
+
#### `sslmode`
566
+
559
567
```yaml
560
568
db_config:
561
569
type: postgresql
562
570
563
571
sslmode: require
564
572
```
565
-
Require or disable ssl connection to database (only if the type of database is `postgresql`). See [PostgreSQL SSL modes](https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS) for possible values.
573
+
Require or disable ssl connection to database (only if the type of database is `mysql` or `postgresql` or `pgx`).
574
+
575
+
See [PostgreSQL SSL modes](https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS) for possible values.
576
+
See [MySQL SSL modes](https://dev.mysql.com/doc/refman/8.0/en/using-encrypted-connections.html) for possible values within the `Client-Side` configuration.
577
+
578
+
#### `ssl_ca_cert`
579
+
580
+
```yaml
581
+
db_config:
582
+
type: mysql|postgresql|pgx
583
+
584
+
ssl_ca_cert: /path/to/ca.crt
585
+
```
586
+
Path to the CA certificate file (only if the type of database is `mysql` or `postgresql` or `pgx`)
587
+
588
+
#### `ssl_client_cert`
589
+
590
+
```yaml
591
+
db_config:
592
+
type: mysql|postgresql|pgx
593
+
594
+
ssl_client_cert: /path/to/client.crt
595
+
```
596
+
Path to the client certificate file when using mTLS (only if the type of database is `mysql` or `postgresql` or `pgx`)
597
+
598
+
#### `ssl_client_key`
599
+
600
+
```yaml
601
+
db_config:
602
+
type: mysql|postgresql|pgx
603
+
604
+
ssl_client_key: /path/to/client.key
605
+
```
606
+
Path to the client key file when using mTLS (only if the type of database is `mysql` or `postgresql` or `pgx`)
0 commit comments