Question

Is it applicable to authenticate database users using X509 certificates through a middle web server tier?

I’ve been reading in the Node.JS docs about SSL attributes for the Node.JS connector to MariaDB server:

https://mariadb.com/kb/en/nodejs-connection-options/#two-way-ssl-authentication

I’m left with these questions for my current setup is a 3-tier architecture (Client–Nodejs Webserver–MariaDB):

  1. Based on two-way TLS authentication of database users in the documentation:

Is it fine to ask users to upload their corresponding files (client-key, client-cert, CA-cert set by the database admin) to the webserver through a login form in which they can submit their credentials too?

  1. What other implementations are there given this two-way TLS setup (x509 certificates) between web server and DB server in order to authenticate database users?

Thanks a lot for any guidance!

Subscribe
Share

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!