Github user shinrich commented on the pull request:
https://github.com/apache/trafficserver/pull/254#issuecomment-122588703
Yes, you could write a confusing policy via the remap rules. You could
have remap rules for two different URLs on the same host with different
override values. And as you indicate if session sharing is enabled, you could
reuse a server connection that was verified which the matching remap rule
indicated that it shouldn't have been (or visa versa).
That would be a fairly odd use case. Since this is a per-origin feature,
one would think that you would set the override variables consistently across
the origin. You could also write an arbitrary plugin to set the override
variable however you like.
I'm open to suggestions for other configuration options to enable origin
granularity when controlling the proxy.config.ssl.client.verify.sever feature.
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
