All following certs use armoured output ('.crt' aka '.pem') so are readable '.der' is the one that is in binary format, but it is not used.
Note FQDN field must be correct here!
If you want to use a different test domain to localhost here e.g. mysite.local then
edit your /etc/hosts
file to point 127.0.0.1 at mysite.local
All the certs get created by running ./generate_certs.sh
, see that file for details
Because the client and server certs use the same CA this is more simplistic. If this differs, then you'll need to add to each other's cert "pools"
Server Implementation
- server.key
- server.crt
Client Implementation
- client.crt
- client.key
- server.crt
$ sudo go run server/server.go
# In a separate terminal:
$ go run client/client.go
200 OK
Hello from test server.