Documentation

Signed-off-by: Gabriele Santomaggio <[email protected]>

Author: Gsantomaggio

docs/Documentation/StreamSystemUsage.cs

@@ -62,6 +62,39 @@ private static async Task CreateTls()
         await streamSystem.Close().ConfigureAwait(false); // <2>
     }
     // end::create-tls[]
+    
+    
+    // tag::create-tls-external-auth[]
+    private static async Task CreateTlsExternal()
+    {
+        var ssl = new SslOption() // <1>
+        {
+            Enabled = true,
+            ServerName = "server_name",
+            CertPath = "certs/client/keycert.p12",
+            CertPassphrase = null, // in case there is no password
+            CertificateValidationCallback = (sender, certificate, chain, errors) => true,
+        };
+
+        var config = new StreamSystemConfig()
+        {
+            UserName = "user_does_not_exist",
+            Password = "password_does_not_exist",
+            Ssl = ssl,
+            Endpoints = new List<EndPoint>(new List<EndPoint>()
+            {
+                new DnsEndPoint("server_name", 5551)
+            }),
+
+            AuthMechanism = AuthMechanism.External, // <2>
+        };
+        
+        var streamSystem = await StreamSystem.Create(config).ConfigureAwait(false);
+        
+        await streamSystem.Close().ConfigureAwait(false);
+        
+    }
+    // end::create-tls-external-auth[]
 
 
     // tag::create-tls-trust[]

docs/asciidoc/api.adoc

@@ -66,7 +66,19 @@ include::{test-examples}/StreamSystemUsage.cs[tag=create-tls]
 --------
 
 <1> Enable TLS
-<2> Load certificate authority (CA) certificate from PEM file
+<2> Load certificates from PEM files
+
+.Creating an StreamSystem that uses TLS and external authentication
+[source,c#,indent=0]
+--------
+include::{test-examples}/StreamSystemUsage.cs[tag=create-tls-external-auth]
+--------
+
+<1> Enable TLS and configure the certificates
+<2> Set the external authentication mechanism
+
+Note: you need the `rabbitmq_auth_mechanism_ssl` plugin enabled on the server side to use external authentication. 
+`AuthMechanism.External` can be used from RabbitMQ server 3.11.19 and RabbitMQ 3.12.1 onwards.
 
 .Creating a TLS environment that trusts all server certificates for development
 [source,c#,indent=0]
@@ -76,6 +88,9 @@ include::{test-examples}/StreamSystemUsage.cs[tag=create-tls-trust]
 
 <1> Trust all server certificates
 
+
+
+
 ===== Configuring the Stream System
 
 The following table sums up the main settings to create an `StreamSystem` using the `StreamSystemConfig`: