feature: client side certificate

[tortellini28]

Hi, can a request to have the mobile & desktop apps to authenticate with the server also have client side certificate?

Thanks.

[javiergonzper]

Hi @tortellini28
What do you mean?

[tortellini28]

For SSL/HTTPS, we use certificates. 99% of the time, we only use server-based certs (along with the CA). However, to add extra protection, we can also use client certs. iOS/Android supports this with their native apps. Thus, in addition to using user/password, by having client-side certs, only that device/user can be able to access the server. Since owncloud uses HTTPS, this can be configured via apache to require client-side certs.

Thus to get this to work:

1. Configure web server (e.g., Apache) to require client-side cert
2. Create a new certificate and install on the device
3. Have owncloud app to "import" this client cert into the app

[tflidd]

Would be nice to allow a fully automated setup on the client, e.g. via QR codes on the web-interface: owncloud/core#12071

[michaelstingl]

Related Android issue: owncloud/android#163