Skip to content

scoutapp/mtls_example

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits

ca

ca

 
 

client

client

 
 

server

server

 
 

.gitignore

.gitignore

 
 

Dockerfile

Dockerfile

 
 

Gemfile

Gemfile

 
 

Gemfile.lock

Gemfile.lock

 
 

README.md

README.md

 
 

client.rb

client.rb

 
 

create_certs.sh

create_certs.sh

 
 

nginx.conf

nginx.conf

 
 

server.rb

server.rb

 
 

Repository files navigation

mTLS Example

Check out the Securing Ruby Applications with mTLS article to learn more about this repo's contents, as well as deeper insights on troubleshooting.

Scout:

Sign up today for a free trial with Scout APM for your application performance needs:

https://scoutapm.com

Also checkout TelemetryHub. A receiver and exploration tool for OpenTelemetry signals:

https://telemetryhub.com

To Use:

  1. chmod +x create_certs.sh

  2. ./create_certs.sh

  3. docker build -t mtls .

  4. docker run -p 443:443 -it mtls

  5. In a separate terminal window: curl https://localhost:443/ --cert ./client/client.crt --key ./client/client.key --cacert ./ca/ca.crt

  6. (Or) use the combined PEM file curl https://localhost:443/ --cert ./client/combined.pem --cacert ./ca/ca.crt

  7. (Or) run the client.rb script: ruby client.rb

Useful troubleshooting methods for the handshake

This shouldn't be needed for the above, but is useful for looking at the handshake:

  1. Using cURL with the -vvv flag: curl -vvv https://localhost:443/ --cert ./client/combined.pem --cacert ./ca/ca.crt

  2. Using s_client: openssl s_client -connect localhost:443 -key ./client/combined.pem -CAfile ./ca/ca.crt

About

A quick launch mTLS repository.

Resources

Readme
Activity
Custom properties

Stars

2 stars

Watchers

5 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages