[5282] Applied Thomas' proposed diff

doc/examples/https/nginx/kea-nginx.conf

@@ -39,7 +39,7 @@
 #
 #   curl -k --key kea-client.key --cert kea-client.crt -X POST \
 #        -H Content-Type:application/json -d '{ "command": "list-commands" }' \
-#         https://kea.example.org/kea
+#         https://kea.example.org
 #
 #   On some curl running on macOS the crypto library requires a PKCS#12
 #   bundle with the private key and the certificate as the cert argument.
@@ -52,7 +52,7 @@
 #
 #   curl -k --cert kea-client.p12:kea -X POST \
 #        -H Content-Type:application/json -d '{ "command": "list-commands" }' \
-#         https://kea.example.org/kea
+#         https://kea.example.org
 #
 #   nginx configuration starts here.
 
@@ -77,11 +77,12 @@ http {
         # Enable verification of the client certificate.
         ssl_verify_client on;
 
-        # For URLs such as https://kea.example.org/kea, forward the
+        # For the URL https://kea.example.org forward the
-        # requests to http://127.0.0.1:8080.
+        # requests to http://127.0.0.1:8000.
-        # Use the / location for URLs with no path.
+        # Since kea-shell doesn't currently support URLs with paths we
-        location /kea {
+        # use location /
-            proxy_pass http://127.0.0.1:8080;
+        location / {
+            proxy_pass http://127.0.0.1:8000;
         }
     }
 }

doc/examples/https/shell/kea-stunnel.conf

@@ -12,7 +12,7 @@
 ;   (i.e. eavesdropping) and active (i.e. man-in-the-middle) attacks
 ;
 ;   kea-shell -- 127.0.0.1 port 8080 -->
-;       stunnel == 127.0.0.1 port 8443 ==>
+;       stunnel == 127.0.0.1 port 443 ==>
 ;           nginx -- 127.0.0.1 port 8000 -->
 ;               kea-agent
 ;
@@ -31,7 +31,7 @@
     accept = 127.0.0.1:8080
 
     ; forward requests to the https peer
-    connect = 127.0.0.1:8443
+    connect = 127.0.0.1:443
 
     ; client certificate
     cert = kea-client.crt