Going through the modes of requesting client's SSL certificate by the server, I found this explanation for SslClientCertificateRequestType.RequestAndRequireAndVerify
Server requests client certificate and enforces that the client presents a certificate. The certificate presented by the client is verified by the *gRPC framework*. (For a successful connection the client needs to present a certificate that can be verified against the root certificate configured by the server) The client's key certificate pair must be valid for the SSL connection to be established. I want to know what exactly gRPC framework varifies when client's certificate is presented to the server? Is it just CN / Subject cert fields or something else... Looking through the code, as far as I could reach is file grpc/src/core/tsi/ssl_transport_security.cc:1884, but couldn't exactly get to the point where I can see which cert fields are compared and what else. All the best, Ugi -- You received this message because you are subscribed to the Google Groups "grpc.io" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/grpc-io/950ae3d3-d31f-41b5-83e2-1dfbb6c32151%40googlegroups.com.
