pomerium

3pp-mirror/pomerium

Fork 0

mirror of https://github.com/pomerium/pomerium.git synced 2025-05-01 03:16:31 +02:00

Commit graph

Author	SHA1	Message	Date
Kenneth Jenkins	acbad4fb96	policy: add client cert SAN match criteria (#4913 ) Expand the Certificate Matcher to support matching on DNS, email, or URI Subject Alternative Names, using the existing String Matcher conditions.	2024-01-24 16:05:22 -08:00
Kenneth Jenkins	ac475f4c5d	ppl: add new client certificate criterion (#4448 ) Add a new client_certificate criterion that accepts a "Certificate Matcher" object. Start with two certificate match conditions: fingerprint and SPKI hash, each of which can accept either a single string or an array of strings. Add new "client-certificate-ok" and "client-certificate-unauthorized" reason strings.	2023-08-09 09:47:23 -07:00

Author

SHA1

Message

Date

Kenneth Jenkins

acbad4fb96

policy: add client cert SAN match criteria (#4913 )

Expand the Certificate Matcher to support matching on DNS, email, or URI
Subject Alternative Names, using the existing String Matcher conditions.

2024-01-24 16:05:22 -08:00

Kenneth Jenkins

ac475f4c5d

ppl: add new client certificate criterion (#4448 )

Add a new client_certificate criterion that accepts a "Certificate
Matcher" object. Start with two certificate match conditions:
fingerprint and SPKI hash, each of which can accept either a single
string or an array of strings.

Add new "client-certificate-ok" and "client-certificate-unauthorized"
reason strings.

2023-08-09 09:47:23 -07:00

2 commits