diff options
author | Stef Walter <stefw@collabora.co.uk> | 2011-08-01 13:18:05 +0200 |
---|---|---|
committer | Stef Walter <stefw@collabora.co.uk> | 2011-08-01 13:18:05 +0200 |
commit | e938d137fee800605b5c11d0c2aa6eae90e205eb (patch) | |
tree | 9200d125e8f54e8f6a64b49a17aa5fdfdf8a9a4e /doc | |
parent | dd6b2c11794a74a33bfa53fec9892cb0c7007e80 (diff) |
Add example configuration documentation.
* And also install example pkcs11.conf file.
Diffstat (limited to 'doc')
-rw-r--r-- | doc/p11-kit-config.xml | 48 |
1 files changed, 48 insertions, 0 deletions
diff --git a/doc/p11-kit-config.xml b/doc/p11-kit-config.xml index f12f274..89ba7e7 100644 --- a/doc/p11-kit-config.xml +++ b/doc/p11-kit-config.xml @@ -20,6 +20,54 @@ </para> </section> + <section id="config-example"> + <title>Example</title> + + <para>The following sections describe the config format in detail. But first + an example which shows the various features. The configuration below, loads + two modules called 'my-module' and 'nss'. The user settings override some + aspects of the system settings.</para> + +<para>Global configuration file: <literal>/etc/pkcs11/pkcs11.conf</literal></para> +<programlisting> +# This setting controls whether to load user configuration from the +# ~/.pkcs11 directory. Possible values: +# none: No user configuration (default) +# merge: Merge the user configuration over the system configuration +# only: Only user configuration, ignore system configuration +user-config: merge +</programlisting> + +<para>One module configuration file per module: <literal>/etc/pkcs11/modules/my-module</literal></para> +<programlisting> +# This setting controls the actual module library to load. This config file might +# be installed by the package that installs this module library. +module: /usr/lib/my-pkcs11-module.so +</programlisting> + +<para>User configuration file: <literal>~/.pkcs11/pkcs11.conf</literal></para> +<programlisting> +# This is an empty file. Files that do not exist are treated as empty. +</programlisting> + +<para>User configuration file: <literal>~/.pkcs11/modules/my-module</literal></para> +<programlisting> +# Merge with the settings in the system my-module config file. In this case +# a developer has overridden to load a different module for my-module instead. +module: /home/user/src/custom-module/my-module.so +</programlisting> + +<para>User configuration file: <literal>~/.pkcs11/modules/nss</literal></para> +<programlisting> +# Load the NSS libsoftokn.so.3 PKCS#11 library as a module. Note that we pass +# some custom non-standard initialization arguments, as NSS expects. +module: /usr/lib/libsoftokn3.so +x-init-reserved: configdir='sql:/home/test/.pki/nssdb' certPrefix='' keyPrefix='' secmod='socmod.db' +</programlisting> + + +</section> + <section id="config-format"> <title>File format</title> |