Opened 7 years ago
Closed 3 years ago
#34883 closed enhancement (reported-upstream)
Support TLS Client Certificates
| Reported by: |
|
Owned by: | |
|---|---|---|---|
| Milestone: | Priority: | normal | |
| Severity: | normal | Version: | |
| Component: | HTTP API | Keywords: | has-patch needs-unit-tests |
| Focuses: | Cc: |
Description
As we get savvier about TLS as part of the HTTPS Everywhere movement, one use-case that would be nice to support is using Client Certificates when making HTTPS requests. Using client certificates for authentication is a strong way to build trusted APIs.
This looks like it would be fairly straightforward to implement as the option is supported by both Curl and PHP stream contexts (CURLOPT_SSLCERT or local_cert, respectively). We'd just need to add the handling for specifying the path to a client cert as part of the $options array in the API calls, and turn that in the proper option for the actual transporter.
I should be able to create a patch for this shortly.
Attachments (2)
Change History (7)
#2
@
7 years ago
- Keywords needs-unit-tests added
- Milestone changed from Awaiting Review to Future Release
#3
follow-up:
↓ 4
@
7 years ago
- Keywords needs-upstream added
As we've now switched to using Requests in core, this should be submitted as an enhancement for Requests.
Adding client cert option to HTTP reqests API