-
Notifications
You must be signed in to change notification settings - Fork 8.8k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
FAB-1260 Add support for mutual TLS to GRPCServer
Adds initial support for authentication using client certificates. * Regenerate test certificates as the CA did not include the clientauth extended usage attribute which is enforced by Go's x509 library * Added support for requiring and enforcing client certificates * Add a SecureServerConfig struct to collect TLS-related parameters in order to improve readiability / usability of the NewServer* functions * Refactor code and tests to use SecureServerConfig * Added utility methods to server_test.go to reduce duplicate code to make new tests more readable via table structure * Latest commit add additional tests and makes tests run in parallel * DOES NOT support dynamically adding client certificate authorities to a running server instance. Will be addressed in the next change set Change-Id: Ibeca9c2ac4412735ca7b482d4157dae3edc4ea6f Signed-off-by: Gari Singh <gari.r.singh@gmail.com>
- Loading branch information
1 parent
dcaa22b
commit d1ea412
Showing
63 changed files
with
863 additions
and
422 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.