mTLS support #330

afawaz2 · 2023-01-30T22:35:55Z

afawaz2
Jan 30, 2023

We are looking to using workerd to allow trusted third parties to run data mappers in our environment. Some of those mappers might require calling public APIs that use mTLS. Does the fetch API in workerd allow setting client certificates?

Answered by kentonv

Jan 30, 2023

As a matter of fact, yes, it does!

You will want to configure a service of type ExternalServer which points at the specific remote API endpoint. You can then specify its tlsOptions, where you would set a keypair. Since these options are applying on the client side, the keypair will be used as a client certificate when talking to the given service. You would then configure your worker with a service binding pointing at the ExternalServer.

View full answer

kentonv · 2023-01-30T23:05:28Z

kentonv
Jan 30, 2023
Maintainer

As a matter of fact, yes, it does!

You will want to configure a service of type ExternalServer which points at the specific remote API endpoint. You can then specify its tlsOptions, where you would set a keypair. Since these options are applying on the client side, the keypair will be used as a client certificate when talking to the given service. You would then configure your worker with a service binding pointing at the ExternalServer.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

mTLS support #330

{{title}}

Replies: 1 comment

{{title}}

Select a reply

mTLS support #330

afawaz2 Jan 30, 2023

Replies: 1 comment

kentonv Jan 30, 2023 Maintainer

afawaz2
Jan 30, 2023

kentonv
Jan 30, 2023
Maintainer