This component is currently work in progress.
The credentials manager manages the server credentials for external facing gRPC servers. It generates InsecureServerCredentials to the HAL component if no credential is given (Certificate and Private key)
If credentials are provided and valid, the credentials manager will provide a TlsServerCredentials to the HAL component so it can use this credential config to start the gRPC server.
To start Stratum with SSL/TLS, you need to provide credential below:
- CA certificate
- Server certificate
- Server private key
According to the gRPC document, the certificate and private key need to be specified in PEM format.
You can use tools like OpenSSL to generate these files. We also provide a script to create credentials for both the server-side and client-side.
To start Stratum with SSL/TLS, add the following flags:
--ca-cert=[CA certificate file]
--server-cert=[Server certificate file]
--server-key=[Server private key file]