From 890c18cbc997f79f0e2120ff95d24172e436b0f8 Mon Sep 17 00:00:00 2001
From: Le Roux Bodenstein <lerouxb@gmail.com>
Date: Fri, 1 Mar 2024 15:13:06 +0000
Subject: [PATCH 1/2] account for upstream server TLS option changes

---
 docker/tls/mongod-server.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docker/tls/mongod-server.conf b/docker/tls/mongod-server.conf
index 2f9b575..3c5bbcb 100644
--- a/docker/tls/mongod-server.conf
+++ b/docker/tls/mongod-server.conf
@@ -4,6 +4,7 @@ net:
   tls:
     mode: requireTLS
     certificateKeyFile: /etc/mongod/tls/server.pem
+    CAFile: /etc/mongod/tls/ca.pem
     allowInvalidCertificates: true
     allowInvalidHostnames: true
 

From 01fbd803a3f2855ebdb493bc49c574d7679a2baf Mon Sep 17 00:00:00 2001
From: Le Roux Bodenstein <lerouxb@gmail.com>
Date: Mon, 4 Mar 2024 11:01:13 +0000
Subject: [PATCH 2/2] add CAFile to another server

---
 docker/tls/mongod-server-named.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docker/tls/mongod-server-named.conf b/docker/tls/mongod-server-named.conf
index 26d1d8d..44d1896 100644
--- a/docker/tls/mongod-server-named.conf
+++ b/docker/tls/mongod-server-named.conf
@@ -4,6 +4,7 @@ net:
   tls:
     mode: requireTLS
     certificateKeyFile: /etc/mongod/tls/server-named.pem
+    CAFile: /etc/mongod/tls/ca.pem
     allowInvalidCertificates: true
     allowInvalidHostnames: true