HTTPS with PKCS12 TLS Example

This project demonstrates how to set up an HTTPS server with PKCS12 TLS in a Go application using the Fiber framework.

Prerequisites

Ensure you have the following installed:

• Golang
• Fiber package
• PKCS12 certificate file (cert.p12)

Setup

1. Clone the repository:

   git clone https://github.com/gofiber/recipes.git
   cd recipes/https-pkcs12-tls

2. Install dependencies:

   go get

3. Place your PKCS12 certificate file (cert.p12) in the project directory.

Running the Application

1. Start the application:

   go run main.go

2. Access the application at https://localhost:3000.

Example

Here is an example of how to set up an HTTPS server with PKCS12 TLS in a Fiber application:

package main

import (
    "crypto/tls"
    "crypto/x509"
    "encoding/pem"
    "io/ioutil"
    "log"

    "github.com/gofiber/fiber/v2"
    "golang.org/x/crypto/pkcs12"
)

func main() {
    // Load PKCS12 certificate
    p12Data, err := ioutil.ReadFile("cert.p12")
    if err != nil {
        log.Fatal(err)
    }

    // Decode PKCS12 certificate
    blocks, err := pkcs12.ToPEM(p12Data, "password")
    if err != nil {
        log.Fatal(err)
    }

    var pemData []byte
    for _, b := range blocks {
        pemData = append(pemData, pem.EncodeToMemory(b)...)
    }

    // Load certificate and key
    cert, err := tls.X509KeyPair(pemData, pemData)
    if err != nil {
        log.Fatal(err)
    }

    // Create TLS configuration
    tlsConfig := &tls.Config{
        Certificates: []tls.Certificate{cert},
        ClientCAs:    x509.NewCertPool(),
    }

    // Fiber instance
    app := fiber.New()

    // Routes
    app.Get("/", func(c *fiber.Ctx) error {
        return c.SendString("Hello, HTTPS with PKCS12 TLS!")
    })

    // Start server with TLS
    log.Fatal(app.ListenTLS(":3000", tlsConfig))
}

References

• Fiber Documentation
• TLS in Go
• PKCS12 in Go