Added support for PKCS#8 encrypted private keys.

2025-11-07 12:52:54 -05:00 · 2021-08-20 12:03:52 -07:00
parent 24b456e4fd
commit e47e050149
3 changed files with 36 additions and 11 deletions
--- a/meshcentral-config-schema.json
+++ b/meshcentral-config-schema.json
@@ -58,8 +58,9 @@
        "WANonly": { "type": "boolean", "default": false, "description": "When enabled, only MeshCentral WAN features are enabled and agents will connect to the server using a well known DNS name." },
        "LANonly": { "type": "boolean", "default": false, "description": "When enabled, only MeshCentral LAN features are enabled and agents will find the server using multicast LAN packets." },
        "maintenanceMode": { "type": "boolean", "default": false, "description": "When enabled the server is in maintenance mode, only administrators can login. Use the maintenance command in server console to change." },
+        "certificatePrivateKeyPassword": { "type": "array", "default": null, "description": "List of passwords used to decrypt PKCK#8 .key files that are in the meshcentral-data folder." },
        "sessionTime": { "type": "integer", "default": 60, "description": "Duration of a session cookie in minutes. Changing this affects how often the session needs to be automatically refreshed." },
-        "sessionKey": { "type": "string" },
+        "sessionKey": { "type": "string", "default": null, "description": "Password used to encrypt the MeshCentral web session cookies. If null, a random one is generated each time the server starts." },
        "sessionSameSite": { "type": "string" },
        "dbEncryptKey": { "type": "string" },
        "dbRecordsEncryptKey": { "type": "string", "default": null },