maged
Reputation: 889
gRPC python client authentication example
How do you use the gRPC python auth library for both client and server authentication? The docs only cover server authentication.
Are there additional flags in grpc.secure_channel() that need to be used?
Upvotes: 7
Views: 7264
Answers (1)
maged
Reputation: 889
The server side, needs to have:
server_credentials = grpc.ssl_server_credentials(
((private_key, cert_chain),), root_cert, require_client_auth=True)
server.add_secure_port('%s:%d' % (ip, port), server_credentials)
root_cert is the root CA to verify the client certificate. private_key and cert_chain will be the certificate the server uses to be verified by the client.
And the client side:
creds = grpc.ssl_channel_credentials(
certificate_chain=cert_chain, private_key=cert_key, root_certificates=root_ca)
channel = grpc.secure_channel('%s:%d' % (hostname, port), creds)
Where root_ca is the root CA to verify the server's certificate chain, and cert_chain and cert_key are used to authenticate the client.
Upvotes: 8
Related Questions
- I have a certificate and a private key on the client and on the server but gRPC secure connetion fails
- gRPC server in Python with Unix domain socket
- Creating grpc server and client python interfaces from URL
- gRPC Python Server calling Client?
- Python gRPC client request only with bearer token
- gRPC client failing to connect to server with TLS certificates
- How to implement Grpc username/password authentication. Python client, Java server
- How to get authentication token on a server side?
- How do I use JWT with grpc?
- Troubles in using gRPC python server with ruby client