HAProxy community

Forward client certificate info via TCP

#1

Hi there!!

I am using HAProxy over TCP so solve the TLS negotiation so that my app downstream can deal with a clean TCP connection. I require client certificates in the incoming TLS connections and then my app uses the common name of the client certificate to identify the customer. My problem is: since TLS is negotiated and solved by HAProxy, I can’t find a way to forward that information (client’s certificate common name) to my app. I’ve seen in some HTTP examples how that kind of information can be forwarded using HTTP headers, but I am not using HTTP, just TCP. Is there any way to do it using TCP?

Thanks for your help!!

Diego.

0 Likes