Closed gabsuren closed 4 months ago
@david-cermak thank you for the review. I've updated the example with the following changes:
ssl_context.verify_mode = ssl.CERT_REQUIRED
.Please let me know if this adjustment looks ok for you
Updated : Modified the example to have a two configurations
CONFIG_WS_OVER_TLS_MUTUAL_AUTH=y
is enabled, it's essential to provide valid certificates for both the server and client.
This ensures a secure two-way verification process.CONFIG_WS_OVER_TLS_SERVER_AUTH=y
.
As mentioned in the comments, I'd suggest using server side verification (always), optionally adding client side verification (mutual authentication).
I think for user's perspective it would be useful to see these two additional configs: 1) TLS with server side verification only (using some public ws server if available) 2) Mutual authentication -- with self signed certificates