This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 74%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
Is it possible to validate client certificates coming in an HTTP header forwarded from a proxy? The same as in https://learn.microsoft.com/en-us/azure/app-service/app-service-web-configure-tls-mutual-auth#access-client-certificate or https://www.ietf.org/archive/id/draft-bdc-something-something-certificate-01.html
Now we check it with (context.Request.Certificate==null || !context.Request.Certificate.VerifyNoRevocation())), the question is whether we can set the context.Request.Certificate from the header
@Ferenc Szabó Since its available in the header, you could just import the certificate as an object and then call VerifyNoRevocation() on it to validate it.
Then you can use the authentication-certificate policy to set the certificate in the request to the backend.