Interface: IMtlsAuthSpec

namespace.v1.IMtlsAuthSpec

Properties of a MtlsAuthSpec.

Implemented by

MtlsAuthSpec

Properties

acceptedClientCa

• Optional acceptedClientCa: null | Uint8Array

The ca cert(s) in PEM format that the clients can use for authentication and authorization. This must only be one value, but the CA can have a chain. temporal:versioning:min_version=v0.2.0

acceptedClientCaDeprecated

• Optional acceptedClientCaDeprecated: null | string

The base64 encoded ca cert(s) in PEM format that the clients can use for authentication and authorization. This must only be one value, but the CA can have a chain.

(-- api-linter: core::0140::base64=disabled --) Deprecated: Not supported after v0.2.0 api version. Use accepted_client_ca instead. temporal:versioning:max_version=v0.2.0

certificateFilters

• Optional certificateFilters: null | ICertificateFilterSpec[]

Certificate filters which, if specified, only allow connections from client certificates whose distinguished name properties match at least one of the filters. This allows limiting access to specific end-entity certificates. Optional, default is empty.

enabled

• Optional enabled: null | boolean

Flag to enable mTLS auth (default: disabled). Note: disabling mTLS auth will cause existing mTLS connections to fail. temporal:versioning:min_version=v0.2.0

Implemented by​

Properties​

acceptedClientCa​

acceptedClientCaDeprecated​

certificateFilters​

enabled​