For the connection to the OCSP server, timestamping service and the proxy servers, so-called HTTP endpoints must be set up and stored in the configuration. The definition of an HTTP endpoint includes the following settings:
-
authentication data for HTTP authentication
-
setting regarding the TLS connection
HTTP endpoint definitions have a unique ID that can be found within a connection definition (e.g. for an OCSP responder or proxy). Specifying this ID will apply the endpoint settings for this connection.
Example:
<HttpEndpoints>
<HttpEndpoint HttpEndpointId="plainHttp"/>
</HttpEndpoints>
<Proxies>
<HttpProxy ProxyId="defaultProxy">
<Url>http://www-your-service.com:80/</Url>
<HttpEndpointConfig>plainHttp</HttpEndpointConfig>
</HttpProxy>
</Proxies>
The proxy with the ID defaultProxy uses the HTTP endpoint with the ID plainHttp. Since no options are set in the endpoint settings, an HTTP connection to the proxy will be established under the URL http://www-your-service.com:80 without HTTP authentication or TLS encryption / authentication.