Closed marpetr closed 4 years ago
grpc.ClientCertPool
should support the system certificate store.Please (also? instead?) provide something connected to credentials.NewTLS() as there may be significant nuance to an organizational PKI within a service mesh.
closed by #1496 and #1489
gRPC outbounds should accept
tls
parameter alongside destination address.tls
flag determines whether TLS should be used. Iftls
is false (the default), the connection should usegrpc.WithInsecure()
option. Iftls
is true, the connection should be opened withgrpc.WithTransportCredentials(credentials.NewClientTLSFromCert(nil, ""))
option (nil = use system certificate pool).