- `key`: Private key to use for SSL. Default `null`.
- `passphrase`: A string of passphrase for the private key or pfx. Default `null`.
- `cert`: Public x509 certificate to use. Default `null`.
-- `ca`: An authority certificate or array of authority certificates to check
- the remote host against.
+- `ca`: A string, `Buffer` or array of strings or `Buffer`s of trusted
+ certificates in PEM format. If this is omitted several well known "root"
+ CAs will be used, like VeriSign. These are used to authorize connections.
- `ciphers`: A string describing the ciphers to use or exclude. Consult
<http://www.openssl.org/docs/apps/ciphers.html#CIPHER_LIST_FORMAT> for
details on the format.
- `cert`: A string or `Buffer` containing the certificate key of the client in
PEM format. (Could be an array of certs).
- - `ca`: An array of strings or `Buffer`s of trusted certificates in PEM
- format. If this is omitted several well known "root" CAs will be used,
- like VeriSign. These are used to authorize connections.
+ - `ca`: A string, `Buffer` or array of strings or `Buffer`s of trusted
+ certificates in PEM format. If this is omitted several well known "root"
+ CAs will be used, like VeriSign. These are used to authorize connections.
- `ciphers`: A string describing the ciphers to use or exclude, separated by
`:`. Uses the same default cipher suite as `tls.createServer`.
objects in the format `{pem: key, passphrase: passphrase}`. (Required)
* `passphrase` : A string of passphrase for the private key or pfx
* `cert` : A string holding the PEM encoded certificate
-* `ca` : Either a string or list of strings of PEM encoded CA
- certificates to trust.
+* `ca`: A string, `Buffer` or array of strings or `Buffer`s of trusted
+ certificates in PEM format. If this is omitted several well known "root"
+ CAs will be used, like VeriSign. These are used to authorize connections.
* `crl` : Either a string or list of strings of PEM encoded CRLs
(Certificate Revocation List)
* `ciphers`: A string describing the ciphers to use or exclude.
- `cert`: A string or `Buffer` containing the certificate key of the server in
PEM format. (Could be an array of certs). (Required)
- - `ca`: An array of strings or `Buffer`s of trusted certificates in PEM
- format. If this is omitted several well known "root" CAs will be used,
- like VeriSign. These are used to authorize connections.
+ - `ca`: A string, `Buffer` or array of strings or `Buffer`s of trusted
+ certificates in PEM format. If this is omitted several well known "root"
+ CAs will be used, like VeriSign. These are used to authorize connections.
- `crl` : Either a string or list of strings of PEM encoded CRLs (Certificate
Revocation List)