CHAPTER 21Certificate Authentication

Certificate authentication is one of the most powerful methods for securing your web applications and services. It is also one of the most underutilized authentication mechanisms available to PHP developers, probably because it is significantly more complex to set up and manage than any of the other authentication mechanisms. The APIs can be picky, the certificate-generation process can be complicated, and certificates must be deployed to clients. Yet certificate authentication is definitely worth the effort, as your site security will be markedly improved.

SSL certificates are typically used in a one-way validation mechanism, allowing a client to determine that a server is who it says it is. With certificate ...

Get Pro PHP: Patterns, Frameworks, Testing and More now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.