💾 Archived View for bbs.geminispace.org › u › skyjake › 154 captured on 2023-07-22 at 18:18:48. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
Re: "After starting to use the Bubble site I have to say that..."
Yeah, I'm also using the SHA-256 hash of the peer's DER-formatted certificate. From the CGI program's point of view, that is unique enough to serve as the user ID, and the TLS protocol ensures that only a peer who has the private key of the certificate can use it successfully.
In Bubble, I'm also keeping the SHA-256 hashes of the certificate public keys as a secondary form of identification. Currently they are not used, but a user could create a new certificate with the same private key, in which case the existing public key hash on the server would be enough to recognize and accept the new certificate even though the full certificate SHA-256 doesn't match.
2023-05-15 · 2 months ago
After starting to use the Bubble site I have to say that using certificates for user accounts works really great, I have created a cert for Astrobotany initially and use that for other sites now as well and have that on 2 different computers and that saves me using a password manager for it