agentzh
commented
9 years ago @smira Yes, this has been on my TODO list. But would you mind contributing a patch for it? ;)
Thanks!
Open smira opened 9 years ago
agentzh
commented
9 years ago @smira Yes, this has been on my TODO list. But would you mind contributing a patch for it? ;)
Thanks!
rohitjoshi
commented
8 years ago Any patch available?
Lekensteyn
commented
2 years ago This appears to be fixed since March 2022 via commit 2b902657f370e392bd5066d2eafed7a3429af19e (PR #1602). There is a new tcpsock:setclientcert API.
Bec-k
commented
2 years ago I don't see and can't find setclientcert anywhere...
Bec-k
commented
2 years ago It was not merged...
zhuizhuhaomeng
commented
2 years ago https://github.com/openresty/lua-nginx-module#tcpsocksetclientcert It has been merged. But do not contain in the openresty-1.21.4 Release
There's already an option to validate server TLS certificate using
lua_ssl_trusted_certificate.It would be nice if we could provide client TLS certificate, in the same way as
ngx_http_proxymodule is doing: http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_certificate, so that there would be two new options:lua_ssl_certificatelua_ssl_certificate_keyThese options would initialise nginx ssl context with client certificates, which would be used during ssl handshake.