clone/codex
1
0
Fork 0
mirror of https://github.com/openai/codex.git synced 2026-04-29 17:06:51 +00:00
Code Issues Packages Projects Releases Wiki Activity

network-proxy: store MITM certs under CODEX_HOME/proxy

Browse Source
This commit is contained in:
viyatb-oai
2026-01-25 11:49:48 -05:00
parent a4b65c5795
commit 20ae699cbb
3 changed files with 15 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
codex-rs/network-proxy/README.md
View File

@@ -35,6 +35,15 @@ dangerously_allow_non_loopback_proxy = false
dangerously_allow_non_loopback_admin = false
mode = "full" # default when unset; use "limited" for read-only mode
[network.mitm]
# When enabled, HTTPS CONNECT can be terminated so limited-mode method policy still applies.
# CA cert/key paths are relative to CODEX_HOME by default.
enabled = false
ca_cert_path = "proxy/ca.pem"
ca_key_path = "proxy/ca.key"
# Maximum size of request/response bodies MITM will buffer for inspection.
max_body_bytes = 1048576
# Hosts must match the allowlist (unless denied).
# If `allowed_domains` is empty, the proxy blocks requests until an allowlist is configured.
allowed_domains = ["*.openai.com"]