Add clientside code for gRPC

commit: 624295da664fea57a1e3bd8cee639ae04f4c0ccf [log] [tgz]
author: Serge Bazanski <serge@bazanski.pl> Sat Oct 06 18:17:56 2018 +0100
committer: Serge Bazanski <serge@bazanski.pl> Sat Oct 06 18:17:56 2018 +0100
tree: 9f26844e6e54e4a350b82478beea2a6a79b62c09
parent: 52478b5627a4c1eb0f73651133912ca4f15943de [diff]
diff --git a/grpc.go b/grpc.go
index 3cace95..af5a6ac 100644
--- a/grpc.go
+++ b/grpc.go

@@ -192,3 +192,25 @@
 
 	return []grpc.ServerOption{creds, interceptor}
 }
+
+func WithClientHSPKI() grpc.DialOption {
+	certPool := x509.NewCertPool()
+	ca, err := ioutil.ReadFile(flagCAPath)
+	if err != nil {
+		glog.Exitf("WithClientHSPKI: cannot load CA certificate: %v", err)
+	}
+	if ok := certPool.AppendCertsFromPEM(ca); !ok {
+		glog.Exitf("WithClientHSPKI: cannot use CA certificate: %v", err)
+	}
+
+	clientCert, err := tls.LoadX509KeyPair(flagCertificatePath, flagKeyPath)
+	if err != nil {
+		glog.Exitf("WithClientHSPKI: cannot load service certificate/key: %v", err)
+	}
+
+	creds := credentials.NewTLS(&tls.Config{
+		Certificates: []tls.Certificate{clientCert},
+		RootCAs:      certPool,
+	})
+	return grpc.WithTransportCredentials(creds)
+}
commit	624295da664fea57a1e3bd8cee639ae04f4c0ccf	[log] [tgz]
author	Serge Bazanski <serge@bazanski.pl>	Sat Oct 06 18:17:56 2018 +0100
committer	Serge Bazanski <serge@bazanski.pl>	Sat Oct 06 18:17:56 2018 +0100
tree	9f26844e6e54e4a350b82478beea2a6a79b62c09
parent	52478b5627a4c1eb0f73651133912ca4f15943de [diff]