Hi, In the client certificate authentication example at https://www.gnu.org/software/libmicrohttpd/tutorial.html#Adding-a-layer-of-security the check seems to be performed after tls session setup. I deduced that from: ci = MHD_get_connection_info (connection, MHD_CONNECTION_INFO_GNUTLS_SESSION); tls_session = ci->tls_session;
I think it would be better to do this verification during the TLS handshake (I don't know if there is such a thing!) for safety reasons. My question now is: can this be realised with libmicrohttpd? Maybe via a callback, maybe going through libmicrohttpd all the way into gnutls? Regards, Folkert van Heusden --
