Add variables with TLS CA configuration for mail [SCI-4370]

2024-12-26 09:42:46 +08:00 · 2020-02-20 11:10:20 +01:00 · 2020-02-20 11:10:20 +01:00 · 8c50fe7d4c
commit 8c50fe7d4c
parent 618aa698d5
2 changed files with 5 additions and 1 deletions
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@ -41,7 +41,9 @@ Rails.application.configure do
    enable_starttls_auto: true,
    user_name: Rails.application.secrets.mailer_user_name,
    password: Rails.application.secrets.mailer_password,
-    openssl_verify_mode: Rails.application.secrets.mailer_openssl_verify_mode
+    openssl_verify_mode: Rails.application.secrets.mailer_openssl_verify_mode,
+    ca_path: Rails.application.secrets.mailer_openssl_ca_path,
+    ca_file: Rails.application.secrets.mailer_openssl_ca_file
  }

  #config.action_mailer.perform_deliveries = false
--- a/config/secrets.yml
+++ b/config/secrets.yml
@ -42,6 +42,8 @@ common: &common
  mailer_user_name: <%= ENV["SMTP_USERNAME"] %>
  mailer_password: <%= ENV["SMTP_PASSWORD"] %>
  mailer_openssl_verify_mode: <%= ENV["SMTP_OPENSSL_VERIFY_MODE"] || "peer" %>
+  mailer_openssl_ca_path: <%= ENV["SMTP_OPENSSL_CA_PATH"] || "/etc/ssl/certs" %>
+  mailer_openssl_ca_file: <%= ENV["SMTP_OPENSSL_CA_FILE"] || "/etc/ssl/certs/ca-certificates.crt" %>

 # ======================================================================
 # Your secret key is used for verifying the integrity of signed cookies.