Thanks for the answer William, it is very much appreciated. It is good to get some clarification and will stop me continuing to spend time trying to get it to work.
In the meantime, I am working around the problem by calling out to a local python service running on the same machine as HAProxy over http, which is then making the authorisation request with a client certificate. Not ideal, but will switch out the hack once it is supported in HAProxy. Thanks again Phil > On 20 Jun 2022, at 7:38 pm, William Lallemand <[email protected]> wrote: > > On Wed, Jun 15, 2022 at 11:33:27PM +1000, Philip Young wrote: >> Hi >> I am currently writing a LUA module to make authorisation decisions on >> whether a request is allowed, by calling out to another service to make the >> authorisation decision. >> In the Lua module, I am using Socket.connect_ssl() to connect to the >> authorisation service but I am struggling to work out how to set the path to >> the certificate I want to use to connect to the authorisation service. >> Does anybody know how to set the path to the certificate that is used when >> using Socket.connect_ssl() >> Is it possible to do this using the httpclient? >> I have tried asking the Slack chat channel and on the commercial site but no >> one knows. >> >> Cheers Phil > > Hello Phil, > > Unfortunately the Socket and the HTTPClient lua class are not able to > use a client certificate right now. This should evolve in the future but > the current architecture is not able to do it. > > -- > William Lallemand
