Add TLS File Path Options for MySQL Database Connection #10828
Labels
issue/confirmed
Issue has been reviewed and confirmed to be present or accepted to be implemented
type/enhancement
An improvement of existing functionality
Comments
|
This issue has been automatically marked as stale because it has not had recent activity. I am here to help clear issues left open even if solved or waiting for more insight. This issue will be closed if no further activity occurs during the next 2 weeks. If the issue is still valid just add a comment to keep it alive. Thank you for your contributions. |
zeripath
added
the
issue/confirmed
|
Can that be considered to be implemented ? it is a blocker for us as our mysql server is configured with 2-way TLS (due to our security policy):
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
Currently connecting Gitea to MySQL database over TLS only supports one-way TLS, (that is only database server can be verified by TLS). To enable two-way TLS (both client and server can be verified), passing client credentials (client certificate, its private key, and CA certificates) are required. This can be accomplished by defining custom
tls.Confighandler as per driver documentation.Path to client credentials should be added to
app.ini. The correspondingapp.inientry,SSL_MODEmust be set toverify-client(tls.Configcustom handler) to enable this option.The text was updated successfully, but these errors were encountered: