From 11d557a3610fdf5580af9be2a6da84825c08e23a Mon Sep 17 00:00:00 2001 From: Anton Todorov Date: Fri, 31 Oct 2025 15:41:59 +0200 Subject: [PATCH] fix the Nginx example configuration in sunstone_auth.rst MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit The SSL module in Nginx does not have a `$client_dn` variable, but it does have `$ssl_client_s_dn` (a similar one to Apache's example) that returns the “subject DN” string of the client certificate for an established SSL connection according to RFC 2253 (1.11.6) Source: https://nginx.org/en/docs/http/ngx_http_ssl_module.html#var_ssl_client_s_dn --- .../authentication/sunstone_auth.rst | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/source/installation_and_configuration/authentication/sunstone_auth.rst b/source/installation_and_configuration/authentication/sunstone_auth.rst index 6277fed442..6b8850c7fd 100644 --- a/source/installation_and_configuration/authentication/sunstone_auth.rst +++ b/source/installation_and_configuration/authentication/sunstone_auth.rst @@ -131,7 +131,7 @@ Nginx ssl_verify_client optional; location / { ... - proxy_set_header X-Client-Dn $client_dn; + proxy_set_header X-Client-Dn $ssl_client_s_dn; }