29 lines
591 B
Go
29 lines
591 B
Go
package certs
|
|
|
|
import (
|
|
"crypto/tls"
|
|
"crypto/x509"
|
|
"fmt"
|
|
|
|
"google.golang.org/grpc/credentials"
|
|
)
|
|
|
|
func LoadTransportCredentials() (credentials.TransportCredentials, error) {
|
|
cert, err := tls.X509KeyPair(Cert_2, Key_1)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
certPool := x509.NewCertPool()
|
|
if ok := certPool.AppendCertsFromPEM(Cert_1); !ok {
|
|
return nil, fmt.Errorf("failed to append ca certs")
|
|
}
|
|
|
|
return credentials.NewTLS(&tls.Config{
|
|
ServerName: "safeops_server",
|
|
Certificates: []tls.Certificate{cert},
|
|
RootCAs: certPool,
|
|
ClientAuth: tls.NoClientCert,
|
|
}), nil
|
|
}
|