https://github.com/manu-sh/berserk_tls
client/server pair - openssl - mutal TLS authentication (mTLS)
https://github.com/manu-sh/berserk_tls
client-server mtls-authentication openssl ssl-duplex-authentication
Last synced: 2 months ago
JSON representation
client/server pair - openssl - mutal TLS authentication (mTLS)
- Host: GitHub
- URL: https://github.com/manu-sh/berserk_tls
- Owner: Manu-sh
- License: mit
- Created: 2019-12-29T08:31:33.000Z (over 5 years ago)
- Default Branch: master
- Last Pushed: 2024-11-27T12:41:46.000Z (5 months ago)
- Last Synced: 2024-11-27T13:26:08.836Z (5 months ago)
- Topics: client-server, mtls-authentication, openssl, ssl-duplex-authentication
- Language: C
- Homepage:
- Size: 91.8 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# berserk_tls
#### generate key.pem & cert.pem
you can read more [here](https://www.digitalocean.com/community/tutorials/openssl-essentials-working-with-ssl-certificates-private-keys-and-csrs#generate-a-self-signed-certificate)
`openssl req -newkey rsa:2048 -nodes -keyout key.pem -x509 -days 365 -out crt.pem`
#### server
use an openssl server to test the client
`openssl s_server -cert crt.pem -key key.pem -port 5000 -CAfile crt.pem -verify_return_error -Verify 1`
#### client
use an openssl client to test the server
`openssl s_client -cert crt.pem -key key.pem -CAfile crt.pem -connect localhost:5000`
`curl -k --cert crt.pem --key key.pem https://localhost:5000/sad`
##### the first (testing ssl) is most important
- https://stackoverflow.com/questions/21050366/testing-ssl-tls-client-authentication-with-openssl
- https://stackoverflow.com/questions/17024769/openssl-client-not-sending-client-certificate
##### other resources
- https://knowledge.digicert.com/tutorials/create-pem-file-for-tls-ssl-certificate-installations
###### Copyright © 2024, [Manu-sh](https://github.com/Manu-sh), [email protected]. Released under the [MIT license](LICENSE).