Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/vkuznet/x509proxy

Last synced: 2 months ago
JSON representation

Host: GitHub
URL: https://github.com/vkuznet/x509proxy
Owner: vkuznet
License: mit
Created: 2016-03-12T13:51:38.000Z (almost 9 years ago)
Default Branch: master
Last Pushed: 2021-08-01T17:18:40.000Z (over 3 years ago)
Last Synced: 2024-11-02T12:26:08.998Z (2 months ago)
Language: Go
Size: 6.84 KB
Stars: 6
Watchers: 3
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # x509proxy

[![Build Status](https://travis-ci.org/vkuznet/x509proxy.svg?branch=master)](https://travis-ci.org/vkuznet/x509proxy)

[![GoDoc](https://godoc.org/github.com/vkuznet/x509proxy?status.svg)](https://godoc.org/github.com/vkuznet/x509proxy)

[![Go Report Card](https://goreportcard.com/badge/github.com/vkuznet/x509proxy)](https://goreportcard.com/report/github.com/vkuznet/x509proxy)

[![DOI](https://zenodo.org/badge/53734052.svg)](https://zenodo.org/badge/latestdoi/53734052)

Package to handle X509 proxy certificates.

### Example

```go

import (

	"crypto/tls"

	"io/ioutil"

	"log"

	"net/http"

    "github.com/vkuznet/x509proxy"

    "os"

)

// load X509 certificates

func Certs() (tls_certs []tls.Certificate) {

	uproxy := os.Getenv("X509_USER_PROXY")

	uckey := os.Getenv("X509_USER_KEY")

	ucert := os.Getenv("X509_USER_CERT")

	log.Println("X509_USER_PROXY", uproxy)

	log.Println("X509_USER_KEY", uckey)

	log.Println("X509_USER_CERT", ucert)

	if len(uproxy) > 0 {

		// use local implementation of LoadX409KeyPair instead of tls one

		x509cert, err := x509proxy.LoadX509Proxy(uproxy)

		if err != nil {

			log.Println("Fail to parser proxy X509 certificate", err)

			return

		}

		tls_certs = []tls.Certificate{x509cert}

	} else if len(uckey) > 0 {

		x509cert, err := tls.LoadX509KeyPair(ucert, uckey)

		if err != nil {

			log.Println("Fail to parser user X509 certificate", err)

			return

		}

		tls_certs = []tls.Certificate{x509cert}

	} else {

		return

	}

	return

}

// HTTP client

func HttpClient() (client *http.Client) {

	// create HTTP client

	certs := Certs()

	log.Println("Number of certificates", len(certs))

	if len(certs) == 0 {

		client = &http.Client{}

		return

	}

	tr := &http.Transport{

		TLSClientConfig: &tls.Config{Certificates: certs,

			InsecureSkipVerify: true},

	}

	log.Println("Create TLSClientConfig")

	client = &http.Client{Transport: tr}

	return

}

// create global HTTP client and re-use it through the code

var client = HttpClient()

// now you http client is ready to use X509 proxy

```