On Mon, Dec 19, 2016 at 2:19 PM, arthur.wiebe via grpc.io < grpc-io@googlegroups.com> wrote:
> I've looked everywhere that I can think of but not finding a method to get
> the client certificate that a client is using to connect via SSL.
>
> The client code connects using ssl channel credentials like this:
>
> creds = grpc.ssl_channel_credentials(
> root_certificates=open('certs/ca_cert.pem').read(),
> certificate_chain=open('certs/test_client_full.pem').read(),
> private_key=open('certs/test_client_privkey.pem').read()
> )
>
>
>
> Now how do I access the public key (client certificate) from the server?
> I've examined what's available to me in the servicer context, in the
> request handler, in the metadata but there's been nothing.
>
> My use case here is that I want to validate that the client certificate
> belongs to an entity using a hash of the cert.
>
> Perhaps this is not possible using grpc-python?
>
I don't believe that it's possible today although it's something we want to
add in the future. Consider filing an issue in our issue tracker
<https://github.com/grpc/grpc/issues/new>?
-Nathaniel
--
You received this message because you are subscribed to the Google Groups
"grpc.io" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to grpc-io+unsubscr...@googlegroups.com.
To post to this group, send email to grpc-io@googlegroups.com.
Visit this group at https://groups.google.com/group/grpc-io.
To view this discussion on the web visit
https://groups.google.com/d/msgid/grpc-io/CAEOYnARa-V1BwrKZ5CPQR7Fs0o%2BKLE%2BuMiU7yws7mLeZ8Ro5sQ%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
smime.p7s
Description: S/MIME Cryptographic Signature
