Feature Suggestion - x509 key pair authentication

Question

Feature Suggestion - x509 key pair authentication

Closed this issue 2 years ago · 4 comments

This application is a really nice tool and I can imagine numerous applications for this model. What I would like to suggest is an additional module that would allow for zero trust via x509 key pair. This would allow users to deploy unconfigured versions on their applications and the said application could just auth with a key pair, request what it needs to request for an initial configuration download.

Private key verification could be integrated into cloud-based key storage like Google KMS, an intermediate CA, or even stored locally on the host machine's file system or k8s secrets.

Answer 1 · 2022-03-02T04:45:14.000Z

Do you mean just to add client SSL certificate support at proxy?

Answer 2 · 2022-03-02T04:49:09.000Z

if so, here is how: https://docs.wallarm.com/api-firewall/installation-guides/docker-container/#protected-application-ssltls-settings

Answer 3 · 2022-03-04T02:11:34.000Z

already supported

Answer 4 · 2022-03-04T18:18:10.000Z

auth with a key pair

@kbrewer92 Did you mean mutual TLS authentication?