From 80bab78526a161b3389358a55652650bb35f567d Mon Sep 17 00:00:00 2001
From: Niall Sheridan <nsheridan@gmail.com>
Date: Fri, 10 Aug 2018 00:07:30 +0100
Subject: [PATCH] Mention `require_reason` in config & README

---
 README.md           | 1 +
 example-server.conf | 1 +
 2 files changed, 2 insertions(+)

diff --git a/README.md b/README.md
index 625e1338..bcf08454 100644
--- a/README.md
+++ b/README.md
@@ -110,6 +110,7 @@ Exception to this: the `http_logfile` option **ONLY** writes to local files.
 - `cookie_secret`: string. Authentication key for the session cookie. This can be a secret stored in a [vault](https://www.vaultproject.io/) using the form `/vault/path/key` e.g. `/vault/secret/cashier/cookie_secret`.
 - `csrf_secret`: string. Authentication key for CSRF protection. This can be a secret stored in a [vault](https://www.vaultproject.io/) using the form `/vault/path/key` e.g. `/vault/secret/cashier/csrf_secret`.
 - `http_logfile`: string. Path to the HTTP request log. Logs are written in the [Common Log Format](https://en.wikipedia.org/wiki/Common_Log_Format). The only valid destination for logs is a local file path.
+- `require_reason`: bool. Require the client to provide a reason when requesting a certificate. Defaults to `false`.
 - `database`: See below.
 
 ### database
diff --git a/example-server.conf b/example-server.conf
index fe8be007..477ae15c 100644
--- a/example-server.conf
+++ b/example-server.conf
@@ -9,6 +9,7 @@ server {
   cookie_secret = "supersecret"  # Authentication key for the client cookie
   csrf_secret = "supersecret"  # Authentication key for the CSRF token
   http_logfile = "http.log"  # Logfile for HTTP requests
+  require_reason = false # Optional. Request a reason for the certificate from the client
   database {
     type = "mysql"
     dbname = "cashier_production"
-- 
GitLab