Skip to content

Support mTLS #126

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Warchant opened this issue Mar 19, 2025 · 2 comments
Open

Support mTLS #126

Warchant opened this issue Mar 19, 2025 · 2 comments
Labels
enhancement help wanted

Comments

@Warchant
Copy link

Please add support for mTLS (mutual TLS) authentication.

In LFS server I'd like to specify something like LFS_CACERT=ca.pem.

Then, clients specify these options:

  • http.sslCert
  • http.sslKey

If client's sslCert is signed by CA, then we authenticate this client on LFS server.
@chrisd8088
Copy link
Member

Hey, thanks for the suggestion; I'll mark this issue as a possible enhancement.

Because we use a different test server for the principal Git LFS client project's test suite, this project doesn't see a lot of development.

If anyone has time to put together a PR which implements mTLS authentication, that would be appreciated!

@chrisd8088
Copy link
Member

I would be remiss if I didn't also mention that there are a lot of other Git LFS server implementations, and one of those might suit your purposes and have mTLS support already in place.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement help wanted
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Warchant @chrisd8088