From 42f366dba764136f7221f73521ec167b7f72053b Mon Sep 17 00:00:00 2001 From: Igor Scheller Date: Fri, 9 Aug 2024 10:24:08 +0200 Subject: [PATCH] Refs 35653 -- Clarified documentation of EMAIL_SSL_CERTFILE and EMAIL_SSL_KEYFILE. --- docs/ref/settings.txt | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/docs/ref/settings.txt b/docs/ref/settings.txt index 34c835fb82..0a922d8605 100644 --- a/docs/ref/settings.txt +++ b/docs/ref/settings.txt @@ -1503,8 +1503,10 @@ exclusive, so only set one of those settings to ``True``. Default: ``None`` If :setting:`EMAIL_USE_SSL` or :setting:`EMAIL_USE_TLS` is ``True``, you can -optionally specify the path to a PEM-formatted certificate chain file to use -for the SSL connection. +optionally specify the path to a PEM-formatted client authentication +certificate chain file to use for the SSL connection. +It must be used in combination with :setting:`EMAIL_SSL_KEYFILE` or include +the private key. .. setting:: EMAIL_SSL_KEYFILE @@ -1514,8 +1516,8 @@ for the SSL connection. Default: ``None`` If :setting:`EMAIL_USE_SSL` or :setting:`EMAIL_USE_TLS` is ``True``, you can -optionally specify the path to a PEM-formatted private key file to use for the -SSL connection. +optionally specify the path to a PEM-formatted private key file for client +authentication of the SSL connection with :setting:`EMAIL_SSL_CERTFILE`. Note that setting :setting:`EMAIL_SSL_CERTFILE` and :setting:`EMAIL_SSL_KEYFILE` doesn't result in any certificate checking. They're passed to the underlying SSL