DefaultVerifyOptions returns VerifyOptions that use the system root certificates, current time, and requires certificates to be valid for client auth (x509.ExtKeyUsageClientAuth).

New returns a request.Authenticator that verifies client certificates using the provided VerifyOptions, and converts valid certificate chains into user.Info using the provided UserConversion.

NewDynamic returns a request.Authenticator that verifies client certificates using the provided VerifyOptionFunc (which may be dynamic), and converts valid certificate chains into user.Info using the provided UserConversion.

NewDynamicCAVerifier create a request.Authenticator by verifying a client cert on the request, then delegating to the wrapped auth.

NewStaticVerifierFromFile creates a new verification func from a file.

NewVerifier create a request.Authenticator by verifying a client cert on the request, then delegating to the wrapped auth.

StaticVerifierFn is a VerifyOptionFunc that always returns the same value.

CommonNameUserConversion builds user info from a certificate chain using the subject's CommonName.

Authenticator implements request.Authenticator by extracting user info from verified client certificates.

Verifier implements request.Authenticator by verifying a client cert on the request, then delegating to the wrapped auth.

StringSliceProvider is a way to get a string slice value.

UserConversion defines an interface for extracting user info from a client certificate chain.

StaticStringSlice a StringSliceProvider that returns a fixed value.

StringSliceProviderFunc is a function that matches the StringSliceProvider interface.

UserConversionFunc is a function that implements the UserConversion interface.

VerifyOptionFunc is function which provides a shallow copy of the VerifyOptions to the authenticator.