So I’m trying to use the
cert auth method and assign a policy to clients that authenticate with it. All of the valid certs I want to work should have a specific
required_extension, and I would like to have access to those extensions to insert into a policy.
I know there are are
metadata attributes available in
identity.entity.aliases.<mount accessor>.metadata.<metadata key> But there doesn’t appear to be any other data populated into the entities created from my TLS cert auth.
Is there a general approach for this that I am missing?