Update help

2 years ago · e3698807a0
parent 673fd8cade
commit e3698807a0
1 changed files with 10 additions and 10 deletions
--- a/cmd/rqlited/flags.go
+++ b/cmd/rqlited/flags.go
@ -377,18 +377,18 @@ func ParseFlags(name, desc string, build *BuildInfo) (*Config, error) {
 	flag.StringVar(&config.HTTPAdv, HTTPAdvAddrFlag, "", "Advertised HTTP address. If not set, same as HTTP server bind")
 	flag.BoolVar(&config.TLS1011, "tls1011", false, "Support deprecated TLS versions 1.0 and 1.1")
 	flag.StringVar(&config.X509CACert, "http-ca-cert", "", "Path to X.509 CA certificate for HTTPS")
-	flag.StringVar(&config.X509Cert, "http-cert", "", "Path to HTTPS X.509 certificate for this node")
-	flag.StringVar(&config.X509Key, "http-key", "", "Path to HTTPS X.509 private key for this node")
-	flag.StringVar(&config.X509CertClient, "http-cert-client", "", "Path to HTTPS X.509 certificate for this node when joining other nodes")
-	flag.StringVar(&config.X509KeyClient, "http-key-client", "", "Path to HTTPS X.509 private key for this node when joining other nodes")
-	flag.BoolVar(&config.NoHTTPVerify, "http-no-verify", false, "Skip verification of remote HTTPS cert when joining cluster")
+	flag.StringVar(&config.X509Cert, "http-cert", "", "Path to server X.509 certificate for this node's HTTP server")
+	flag.StringVar(&config.X509Key, "http-key", "", "Path to server X.509 private key for this node's HTTP server")
+	flag.StringVar(&config.X509CertClient, "http-cert-client", "", "Path to client X.509 certificate for this node when joining a cluster")
+	flag.StringVar(&config.X509KeyClient, "http-key-client", "", "Path to client X.509 private key for this node when joining a cluster")
+	flag.BoolVar(&config.NoHTTPVerify, "http-no-verify", false, "Skip verification of remote HTTPS cert when joining cluster, or receiving client certificates")
 	flag.BoolVar(&config.NodeEncrypt, "node-encrypt", false, "Enable node-to-node encryption")
 	flag.StringVar(&config.NodeX509CACert, "node-ca-cert", "", "Path to X.509 CA certificate for node-to-node encryption")
-	flag.StringVar(&config.NodeX509Cert, "node-cert", "cert.pem", "Path to node-to-node X.509 certificate for this node")
-	flag.StringVar(&config.NodeX509Key, "node-key", "key.pem", "Path to node-to-node X.509 private key for this node")
-	flag.StringVar(&config.NodeX509CertClient, "node-cert-client", "", "Path to node-to-node X.509 certificate for this node when connecting to other nodes")
-	flag.StringVar(&config.NodeX509KeyClient, "node-key-client", "", "Path to node-to-node X.509 private key for this node when connecting to other nodes")
-	flag.BoolVar(&config.NoNodeVerify, "node-no-verify", false, "Skip verification of a remote node cert")
+	flag.StringVar(&config.NodeX509Cert, "node-cert", "cert.pem", "Path to server X.509 certificate for internode communication")
+	flag.StringVar(&config.NodeX509Key, "node-key", "key.pem", "Path to server X.509 private key for internode communication")
+	flag.StringVar(&config.NodeX509CertClient, "node-cert-client", "", "Path to client X.509 certificate for internode communication")
+	flag.StringVar(&config.NodeX509KeyClient, "node-key-client", "", "Path to client X.509 private key for internode communication")
+	flag.BoolVar(&config.NoNodeVerify, "node-no-verify", false, "Skip verification of a remote node cert, or when receiving client certificates")
 	flag.StringVar(&config.AuthFile, "auth", "", "Path to authentication and authorization file. If not set, not enabled")
 	flag.StringVar(&config.RaftAddr, RaftAddrFlag, "localhost:4002", "Raft communication bind address")
 	flag.StringVar(&config.RaftAdv, RaftAdvAddrFlag, "", "Advertised Raft communication address. If not set, same as Raft bind")