Page MenuHomePhabricator

Arcanist to be able to access site requiring client side SSL certificate
Closed, WontfixPublic


Currently arcanist and libphutil handle server side SSL certificates, but unable to access site requiring client side SSL certificate. Curl has an option to specify the user's certificate (see CURLOPT_SSLCERT), we just need to pass it down from the configuration.

Event Timeline

vgabor raised the priority of this task from to Needs Triage.
vgabor updated the task description. (Show Details)
vgabor added projects: libphutil, Arcanist.
vgabor added a subscriber: vgabor.

We haven't seen other interest in this and don't plan to pursue it in the near term. I believe deployment of client SSL certificates is exceptionally rare in the wild. Running Conduit over SSH (T550) might solve some of the same problems but has far broader acceptance.

epriestley triaged this task as Wishlist priority.Apr 6 2015, 1:29 PM

I had added code to implement this feature to arcanist and libphutil and is working. How can I contribute to have this feature added to code base?

After the introduction of PhutilHTTPEngineExtension (T10227) we have a more viable pathway to bring support for this upstream, but I'd still like to see more interest in it before thinking about upstream support. It looks like only 1-2 installs would use it, today (not sure if both of you represent the same install or not).

epriestley claimed this task.

We currently have no interest in this from customers, so I don't plan to pursue it. If customer interest arises, there's a plausible pathway forward.