Client SSL certificate

[lukescott]

There doesn't appear to be a way to specify a client SSL certificate.

[julienschmidt]

This is intended.
The driver currently only supports connection encryption using TLS / SSL. You don't need to specify a client certificate for that.

You would only need it if you want to authenticate the client using the certificate. The driver currently supports no auth plugins and this has currently a low priority. If you want to work on it, we would be happy to accept you pull request 😉

[lukescott]

Client certificates are an [optional] part of TLS, but required in my case. The problem is the TLS config object is not exposed because of how database/sql is defined.

I'd be happy to send a pull request. But do you have any ideas on how I might be able to accomplish this? It seems like database/sql does a great job of hiding the underlying interfaces.

[julienschmidt]

OK, sorry. We didn't notice this case when implementing TLS support.

The only sensible way which comes to my mind right now is to build a map of named certificates like we do here for Readers: https://github.com/go-sql-driver/mysql/blob/master/infile.go
You could specify a comma-separated list of named certificates in the DSN then.

[lukescott]

Pull request here: #101