Struct ClientVerifier 

pub struct ClientVerifier { /* private fields */ }

Client verifier for servers verifying mTLS agent clients.

Implementations

impl ClientVerifier

pub fn builder() -> ClientVerifierBuilder

Create a new builder.

pub async fn verify(&self, client_cert: &CertIdentity) -> VerificationOutcome

Verify an mTLS client certificate.

Steps

1. Extract CN (FQDN) and URI SAN (ANSName) from certificate
2. Parse version from ANSName
3. DNS lookup for _ans-badge (with _ra-badge fallback) using CN as FQDN
4. Select badge matching version from certificate
5. Compare identity cert fingerprint, CN, and URI SAN to badge
6. On fingerprint mismatch, refresh badge and re-verify once

Trait Implementations

impl Debug for ClientVerifier

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.