<p>Which example?  In the modules/tls directory I saw these:<br>
<a href="https://github.com/kamailio/kamailio/blob/master/modules/tls/sip-router-tls.cfg">https://github.com/kamailio/kamailio/blob/master/modules/tls/sip-router-tls.cfg</a><br>
<a href="https://github.com/kamailio/kamailio/blob/master/modules/tls/tls.cfg">https://github.com/kamailio/kamailio/blob/master/modules/tls/tls.cfg</a><br>
and they are very brief.  Is there a more complete example somewhere else showing how to verify the client certificate <code>subjectAltName</code> or <code>CN</code> matches the <code>From</code> header of an incoming request?</p>

<p>In the manual:<br>
<a href="http://kamailio.org/docs/modules/4.3.x/modules/tls.html#tls.quick_start">http://kamailio.org/docs/modules/4.3.x/modules/tls.html#tls.quick_start</a></p>

<ul>
<li>this quick start section is very brief</li>
</ul>

<p><a href="http://kamailio.org/docs/modules/4.3.x/modules/tls.html#tls.p.tls_method">http://kamailio.org/docs/modules/4.3.x/modules/tls.html#tls.p.tls_method</a></p>

<ul>
<li>
<code>tls_method</code> documentation isn't clear.  <code>SSLv23_method</code> is actually a very good default and does not actually enable SSL 3.0 or below unless those are explicitly compiled into OpenSSL.  This should really be emphasized.</li>
</ul>

<p><a href="http://kamailio.org/docs/modules/4.3.x/modules/tls.html#tls.p.require_certificate">http://kamailio.org/docs/modules/4.3.x/modules/tls.html#tls.p.require_certificate</a><br>
<a href="http://kamailio.org/docs/modules/4.3.x/modules/tls.html#tls.f.is_peer_verfied">http://kamailio.org/docs/modules/4.3.x/modules/tls.html#tls.f.is_peer_verfied</a></p>

<ul>
<li>
<code>require_certificate</code> and <code>is_peer_verified</code> are explained very briefly.  Should <code>is_peer_verified</code> take an argument perhaps, to verify that the peer is verified for a specific URI or domain?</li>
</ul>

<p style="font-size:small;-webkit-text-size-adjust:none;color:#666;">—<br>Reply to this email directly or <a href="https://github.com/kamailio/kamailio/issues/531#issuecomment-192922193">view it on GitHub</a>.<img alt="" height="1" src="https://github.com/notifications/beacon/AF36ZR2LFE3qnsC6BtQSR4DOFxw6EXneks5pqv1ugaJpZM4HqQyJ.gif" width="1" /></p>
<div itemscope itemtype="http://schema.org/EmailMessage">
<div itemprop="action" itemscope itemtype="http://schema.org/ViewAction">
  <link itemprop="url" href="https://github.com/kamailio/kamailio/issues/531#issuecomment-192922193"></link>
  <meta itemprop="name" content="View Issue"></meta>
</div>
<meta itemprop="description" content="View this Issue on GitHub"></meta>
</div>