Fix User Authentication with certificates from UAExpert. Relates to #430

UAExpert sends its application certificate as client certificate in the initial `CreateSessionRequest`. The user certificate is sent as `ua.X509IdentityToken` in the request body and has to be looked up there.

Fix User Authentication with certificates from UAExpert. Relates to #430
UAExpert sends its application certificate as client certificate in the initial `CreateSessionRequest`. The user certificate is sent as `ua.X509IdentityToken` in the request body and has to be looked up there.
f2f7722d · Dr. Tobias Nils Ackermann · oroulet · 573a8a3f · f2f7722d
Commit f2f7722d authored Apr 19, 2022 by Dr. Tobias Nils Ackermann Committed by oroulet Apr 19, 2022
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 0 deletions

asyncua/server/internal_session.py asyncua/server/internal_session.py +3 -0

No files found.
--- a/asyncua/server/internal_session.py
+++ b/asyncua/server/internal_session.py
@@ -90,6 +90,9 @@ class InternalSession:
        if self.iserver.user_manager is not None:
            if isinstance(id_token, ua.UserNameIdentityToken):
                username, password = self.iserver.check_user_token(self, id_token)
+            elif isinstance(id_token, ua.X509IdentityToken):
+                peer_certificate = id_token.CertificateData
+                username, password = None, None
            else:
                username, password = None, None