Playing with mTLS and golang.
graph TD;
ca["`Certificate Authority
**ca.localhost**`"] --> client1["`Client 1
**client1.localhost**`"];
ca --> client2["`Client 2
**client2.localhost**`"];
Both clients need the CA cert to verify the authenticity of the certificate provided by the other client.
Requires port 8101 to not be in use.
- Run
bash generate_certs.sh; you will be prompted a few times for the CA passphrase, choose a random one - Run the server with
go run server/server.go - Run the client with
go run client/client.go
Client and server are arbitrary descriptions here, for mTLS there is no distinction between those.