coap.properties
The file coap.properties contains configuration options for the CoAP proxy that may be used as part of the EST protocol.
To communicate with Protocol Gateway, the CoAP proxy will use TLS client authentication using the virtual registration officer configured in Protocol Gateway.
Some CoAP server settings related to DTLS (such as ports) are configured in Californium.properties, a file that will be created with default values the first time you start the proxy.
Relative paths specified below are relative the <configroot>.
CoAPs Proxy parameters
These parameters in coap.properties are used to configure the Protocol Gateway CoAP Proxy.
Parameter | Description |
---|---|
start | Controls if the EST-CoAPs proxy should start or not.
XML
|
proxyPort | The Protocol Gateway port for client TLS authentication. I.e. the port where the proxy will forward the requests.
XML
|
discoveryPath | The resource type "ace.est" will be set at the discoveryPath which will be returned when a client is doing a discovery. The resource types "ace.est.crts", "ace.est.sen", "ace.est.sren", "ace.est.att", "ace.est.skg", "ace.est.skc" will be set at the corresponding endpoints under the discoveryPath.
XML
|
includeHandlers | This regular expression controls what handlers in est.properties that will be included for use in the CoAP proxy. The proxy will filter away unsupported endpoints automatically. This only needs to be changed if EST is multitenant and only some handlers in est.properties are meant for CoAP. The following example would only include handlers with a coap/ sub-path:
XML
|
DTLS parameters
These parameters in coap.properties are used to configure the DTLS communication that is required for CoAPs.
Parameter | Description |
---|---|
tlsToken | A PKCS#12 file containing the private key, certificate and full certificate chain for the DTLS server certificate.
XML
|
tlsTokenPassword | The password for unlocking the PKCS#12 file. It is recommended to obfuscate sensitive data with .encrypted.
XML
|
cipherSuite | The cipher suites that the DTLS endpoint should support.
XML
|
trustAll | Enable trust all policy for the DTLS.
XML
|
retransmissionTimeout | Sets the (starting) time to wait before a handshake package gets retransmitted. On each retransmission, the time is doubled.
XML
|