CLIProxyAPI

airkjw/CLIProxyAPI

Fork 0

Commit Graph

Author	SHA1	Message	Date
Luis Pater	bbe30f53b5	feat(server): enhance Home certificate handling with CA fingerprint verification - Added support for `ClusterID`, `CAFingerprint`, and `EnrollmentSecret` in Home JWT claims. - Implemented CA fingerprint normalization and verification for PEM and file-based certificates. - Improved certificate request validation and error handling. - Updated server-side logic to include `EnrollmentSecret` in certificate requests.	2026-05-19 10:25:57 +08:00
Luis Pater	77ba15f71b	feat(server): add mTLS certificate bootstrap via JWT for Home connections - Introduced `-home-jwt` flag and `HOME_JWT` environment variable to provide JWT for mTLS certificate generation. - Added new APIs to handle certificate requests, validate JWT claims, and manage local certificate files. - Updated Home TLS configuration to support client certificates, keys, and dynamic server name resolution.	2026-05-19 00:53:40 +08:00

Author

SHA1

Message

Date

Luis Pater

bbe30f53b5

feat(server): enhance Home certificate handling with CA fingerprint verification

- Added support for `ClusterID`, `CAFingerprint`, and `EnrollmentSecret` in Home JWT claims.
- Implemented CA fingerprint normalization and verification for PEM and file-based certificates.
- Improved certificate request validation and error handling.
- Updated server-side logic to include `EnrollmentSecret` in certificate requests.

2026-05-19 10:25:57 +08:00

Luis Pater

77ba15f71b

feat(server): add mTLS certificate bootstrap via JWT for Home connections

- Introduced `-home-jwt` flag and `HOME_JWT` environment variable to provide JWT for mTLS certificate generation.
- Added new APIs to handle certificate requests, validate JWT claims, and manage local certificate files.
- Updated Home TLS configuration to support client certificates, keys, and dynamic server name resolution.

2026-05-19 00:53:40 +08:00

2 Commits