Can mutual TLS (mTLS) authentication be added to ensure the legitimacy of users through client certificates? #35

New Issue

Open

opened 2025-12-29 09:21:52 +01:00 by adam · 3 comments

adam commented 2025-12-29 09:21:52 +01:00

Owner

Copy Link

Originally created by @JoJenH on GitHub (Feb 6, 2025).

Currently, I'm using Traefik and employing mTLS as the authentication method. I'm hoping to migrate to go-proxy, but I haven't found any support for mTLS in the Wiki. Is there any plan to support mTLS?
Also, can OTP technology be integrated into JWT authentication?

Originally created by @JoJenH on GitHub (Feb 6, 2025). Currently, I'm using Traefik and employing mTLS as the authentication method. I'm hoping to migrate to go-proxy, but I haven't found any support for mTLS in the Wiki. Is there any plan to support mTLS? Also, can OTP technology be integrated into JWT authentication?

adam added the enhancement label 2025-12-29 09:21:52 +01:00

adam commented 2025-12-29 09:21:53 +01:00

Author

Owner

Copy Link

@yusing commented on GitHub (Feb 6, 2025):

Sure, will implement mTLS and OTP asap. Thanks for your suggestions.

@yusing commented on GitHub (Feb 6, 2025): Sure, will implement mTLS and OTP asap. Thanks for your suggestions.

adam commented 2025-12-29 09:21:53 +01:00

Author

Owner

Copy Link

@JoJenH commented on GitHub (Feb 7, 2025):

Sorry for the frequent interruptions. The JWT authentication we mentioned just works with the api server, right? Whether there is a global jwt, like mtls authentication, that uses GoDoxy as a gateway. Or a plan for development.

@JoJenH commented on GitHub (Feb 7, 2025): Sorry for the frequent interruptions. The JWT authentication we mentioned just works with the api server, right? Whether there is a global jwt, like mtls authentication, that uses GoDoxy as a gateway. Or a plan for development.

adam commented 2025-12-29 09:21:53 +01:00

Author

Owner

Copy Link

@yusing commented on GitHub (Feb 7, 2025):

Yes JWT only works for API server, but OIDC can be worked with all apps. You may want to try Pocket ID or Authentik.

@yusing commented on GitHub (Feb 7, 2025): Yes JWT only works for API server, but OIDC can be worked with all apps. You may want to try Pocket ID or Authentik.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

compat

feat/agent-stream

dev

main-backup

feat/custom-json-marshaling

feat/non-root-non-host-mode

v0.24.0

v0.23.1

v0.23.0

v0.22.1

v0.22.0

v0.21.3

v0.21.2

v0.21.1

v0.21.0

v0.20.14

v0.20.13

v0.20.12

v0.20.11

v0.20.10

v0.20.9

v0.20.8

v0.20.7

v0.20.6

v0.20.5

v0.20.4

v0.20.3

v0.20.2

v0.20.1

v0.20.0

v0.19.2

v0.19.1

v0.19.0

v0.18.6

v0.18.5

v0.18.4

v0.18.3

v0.18.2

v0.18.1

v0.18.0

v0.17.6

v0.17.5

v0.17.4

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.2

v0.16.0-pathfix

v0.16.1

v0.16.0

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.2

v0.14.1

v0.14.0

v0.13.8

v0.13.7

v0.13.6

v0.13.5

v0.13.4

v0.13.3

v0.13.2

v0.13.1

v0.13.0

v0.12.3

v0.12.2

v0.12.1

v0.12.0

v0.11.9

v0.11.8

v0.11.7

v0.11.6-buildfix

v0.11.6

v0.11.5

v0.11.4

v0.11.3

v0.11.2-2

v0.11.2-1

v0.11.2

v0.11.1

v0.11.0

v0.10.2

v0.10.1

v0.10.0

v0.9.10

v0.9.9-1

v0.9.9

v0.9.8

0.9.8

0.9.7

0.9.6

0.9.5

0.9.4-1

0.9.4

0.9.3

0.9.2

0.9.1

0.9

0.8.1

0.8.0

0.7.7

0.7.6

0.7.5

0.7.4

0.7.3

0.7.2

0.7.1

0.7.0

0.6.4-1

0.6.4

0.6.3

0.6.2

0.6.1

0.6

0.6-rp1

0.5.8

0.5.7

0.5.6

0.5.5

0.5.4

0.5.3

0.5.2

0.5.1

0.5.0

0.5.0-rc6

0.5.0-rc5

0.5.0-rc4

0.5.0-rc3

0.5.0-rc2

0.5.0-rc1

0.5.0-beta3

0.5.0-beta2

0.5.0-beta

0.4.8-1

0.4.8

0.4.7

0.4.6

0.4.5

0.4.4

0.4.3

0.4.2

0.4.1

0.4.0

0.3.1

0.3

0.2.2

0.2.1

0.2-alpha

0.1-stable

Labels

Clear labels

bug

enhancement

pull-request

Mirrored from GitHub Pull Request

wontfix

No Label enhancement

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

adam

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/godoxy#35