Got it ! Thank you. On Wednesday, November 16, 2016 at 10:00:32 AM UTC-8, Christian Svensson wrote: > > > On Wed, Nov 16, 2016 at 6:33 PM, AK <[email protected] <javascript:>> > wrote: > >> The client code has server address as 0.0.0.0:50051 not as >> localhost:50051, as mentioned in my previous reply. >> > > You need to mint the certificate for the same CN as you connect to. > > 1. Create a server private key. This is what the server needs to have, > it's super-secret. > 2. Create a server certificate with CN=localhost, self-signed. This is > what the server and the client needs to have, it's public. > 3. In the client, use the server certificate (*not* the key) as a "roots". > This will tell your client to trust servers using that certificate - but > only if the CN matches the address you connect to. > 4.In the client, connect to localhost. > > Done. > >
-- You received this message because you are subscribed to the Google Groups "grpc.io" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/grpc-io. To view this discussion on the web visit https://groups.google.com/d/msgid/grpc-io/c361dbb1-3507-432e-8ba2-0658e16eddcb%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
