Merge branch 'release-v0.25.0' of github.com:matrix-org/synapse v0.25.0

author: Erik Johnston <erik@matrix.org> 2017-11-15 11:32:24 +0000
committer: Erik Johnston <erik@matrix.org> 2017-11-15 11:32:24 +0000
commit: 552f123bea1014680ab798b7e34cd1b23424a189 (patch)
tree: 71da1c70b084a38a032380f8976a0c4deef33d64 /synapse/config/tls.py
parent: Merge pull request #2598 from matrix-org/revert-2596-erikj/attestation_jitter (diff)
parent: Bump changelog (diff)
download: synapse-552f123bea1014680ab798b7e34cd1b23424a189.tar.xz
1 files changed, 6 insertions, 0 deletions
diff --git a/synapse/config/tls.py b/synapse/config/tls.py
index 247f18f454..4748f71c2f 100644
--- a/synapse/config/tls.py
+++ b/synapse/config/tls.py
@@ -109,6 +109,12 @@ class TlsConfig(Config):
         # key. It may be necessary to publish the fingerprints of a new
         # certificate and wait until the "valid_until_ts" of the previous key
         # responses have passed before deploying it.
+        #
+        # You can calculate a fingerprint from a given TLS listener via:
+        # openssl s_client -connect $host:$port < /dev/null 2> /dev/null |
+        #   openssl x509 -outform DER | openssl sha256 -binary | base64 | tr -d '='
+        # or by checking matrix.org/federationtester/api/report?server_name=$host
+        #
         tls_fingerprints: []
         # tls_fingerprints: [{"sha256": "<base64_encoded_sha256_fingerprint>"}]
         """ % locals()
author	Erik Johnston <erik@matrix.org>	2017-11-15 11:32:24 +0000
committer	Erik Johnston <erik@matrix.org>	2017-11-15 11:32:24 +0000
commit	552f123bea1014680ab798b7e34cd1b23424a189 (patch)
tree	71da1c70b084a38a032380f8976a0c4deef33d64 /synapse/config/tls.py
parent	Merge pull request #2598 from matrix-org/revert-2596-erikj/attestation_jitter (diff)
parent	Bump changelog (diff)
download	synapse-552f123bea1014680ab798b7e34cd1b23424a189.tar.xz