> Any prospects for certificate authentication as an alternative to oauth2?
yes; owing to 9P's design, authentication can be different. an early version used authsrv. it is especially easy when there is a Go package that implements the auth protocol. this is the case with OAuth2 (it uses https://github.com/golang/oauth2) -Skip
