New returns auth.Strategy authenticate request from client certificates.

SetAllowedCN sets the common names which a verified certificate is allowed to have.

SetAllowedCNRegex sets the common names regex which a verified certificate is allowed to have.

SetAllowEmptyCN prevent strategy from return ErrMissingCN when client certificate subject CN missing or empty.

SetInfoBuilder sets x509 info builder.

ErrInvalidRequest is returned by x509 strategy when a non TLS request received.

ErrMissingCN is returned by DefaultBuilder when Certificate CommonName missing.

InfoBuilder declare a function signature for building Info from certificate chain.