ZioByte

Asked: 2020-08-19 07:57:22 +0800 CST2020-08-19 07:57:22 +0800 CST 2020-08-19 07:57:22 +0800 CST

Nginx reverse proxy with client-certificate authentication

I understand I can have nginx to check client certificate before forwarding requests; something along the lines:

server {
    listen 443 ssl;

    server_name my.server.com;

    ssl_certificate     /etc/ssl/my.server.com.crt;
    ssl_certificate_key /etc/ssl/my.server.com.key;

    ssl_verify_client       on;
    ssl_trusted_certificate /etc/ssl/myca.pem;
    location / {
        ...
        proxy_pass http://my.backend.com:9999;
    }
    ...
}

Question is: can I extract certificate details (essentially client certificate Subject:CN) and use it to modify forwarded URL (e.g.: adding a fragment to it)?

If that's possible, how?

Nginx reverse proxy with client-certificate authentication

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

Nginx reverse proxy with client-certificate authentication

0 Answers