Allow signing downloaded RDP file (#156)

Implement signing of RDP files downloaded from web
2026-03-27 14:36:36 +00:00 · 2025-09-05 20:21:32 +08:00
parent 10722d7105
commit 2b9ec4a3f0
10 changed files with 259 additions and 34 deletions
--- a/README.md
+++ b/README.md
@@ -328,6 +328,12 @@ Client:
  SplitUserDomain: false
  # If true, removes "username" (and "domain" if SplitUserDomain is true) from RDP file.
  # NoUsername: true
+  # If both SigningCert and SigningKey are set the downloaded RDP file will be signed
+  # so the client can authenticate the validity of the RDP file and reduce warnings from
+  # the client if the CA that issued the certificate is trusted. Both should be PEM encoded
+  # and the key must be an unencrypted RSA private key.
+  # SigningCert: /path/to/signing.crt
+  # SigningKey: /path/to/signing.key
 Security:
  # a random string of 32 characters to secure cookies on the client
  # make sure to share this amongst different pods