Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
proposal: cmd/go: enable mutual TLS authentication with client certificates in the go tool #30119
It would be useful to be able to pass to the
Technically, it possibly comes down to how to pass desired TLS options (key/certificate/cacert filenames or such) to
changed the title
cmd:go: proposal - enable mutual TLS authentication with client certificates in the go tool
Feb 7, 2019
I think the array of possible authentication schemes is too wide, so these should be handled by a local GOPROXY that exposes the unauthenticated protocol to the client, and does whatever authentication you want to the upstream.
I'm starting to think it would be nice to let GOPROXY be a binary that the go tool runs itself, so that a GOPROXY can be made even for small tasks, without having to run a network service on the local machine, which is a lot of friction.
I think a drawback of the local GOPROXY solution is that everyone running go who has to play the authentication game would need not just set some environment variables but would have to obtain / install / keep up-to-date, and make sure