Follow-up of #563
In #574 server-side mTLS was implemented, but the resulting client certificate is not communicated to the backend application in any way as far as I can tell. ASGI has an extension for doing so: https://asgi.readthedocs.io/en/latest/specs/tls.html
Also
|
#: build ctx |
|
if client_verify and not ca: |
|
logger.warning('SSL client verification requires a CA certificate, ignoring') |
|
client_verify = False |
... should this not be an error instead of semi-quietly turning client verification off?
Follow-up of #563
In #574 server-side mTLS was implemented, but the resulting client certificate is not communicated to the backend application in any way as far as I can tell. ASGI has an extension for doing so: https://asgi.readthedocs.io/en/latest/specs/tls.html
Also
granian/granian/server/common.py
Lines 241 to 244 in 0fbc4b9
... should this not be an error instead of semi-quietly turning client verification off?