![]() So let’s get started!įirst we write the cert/gen.sh script to generate TLS certificates.Įnter fullscreen mode Exit fullscreen mode In this article, we will learn to implement both server-side and mutual TLS in Golang. So in this case, both client and server must provide their TLS certificates to the other. We use it when the server also needs to verify who’s calling its services. The third and strongest type is connection secured by mutual TLS.You can use this type of connection if the server doesn’t care which client is calling its API. In this case, all the data is encrypted, but only the server needs to provide its TLS certificate to the client. The second type is connection secured by server-side TLS.In this connection, all data transfered between client and server is not encrypted. The first one is insecure connection, which we’ve been using since the beginning of this course.Gitlab repository: pcbook-go and pcbook-java Github repository: pcbook-go and pcbook-java Here's the link to the full gRPC course playlist on Youtube I highly recommend you to read it first to have a deep understanding about TLS before continue. If you haven’t read my post about SSL/TLS. ![]() So today we will learn how to secure the gRPC connection using TLS. However, the API that we used to login user was insecure, which means the username and password were being sent in plaintext, and can be read by anyone who listens to the communication between the client and server. In the previous lecture, we have learned how to use gRPC interceptors to authenticate users.
0 Comments
Leave a Reply. |