Merge pull request #30 from keslerm/tls-auth

Add the ability to specific SSL cert and key files for library

Thank you @keslerm

Author: ThomasTJdev

README.md

@@ -178,6 +178,7 @@ let ctx = newMqttCtx("nmqttClient")
 ctx.set_host("test.mosquitto.org", 1883)
 #ctx.set_auth("username", "password")
 #ctx.set_ping_interval(30)
+#ctx.set_ssl_certificates("cert.crt", "private.key")
 
 proc mqttSub() {.async.} =
   await ctx.start()
@@ -247,6 +248,15 @@ proc set_ping_interval*(ctx: MqttCtx, txInterval: int) =
 
 Set the clients ping interval in seconds. Default is 60 seconds.
 
+____
+
+### set_ssl_certificates*
+
+```nim
+proc set_ssl_certificates*(ctx: MqttCtx, sslCert: string, sslKey: string) =
+```
+
+Sets the SSL Certificate and Key files to use Mutual TLS authentication
 
 ____
 

nmqtt.nim

@@ -25,6 +25,8 @@ type
     host: string
     port: Port
     sslOn: bool
+    sslCert: string
+    sslKey: string
     verbosity: int
     beenConnected: bool
     username: string
@@ -1045,7 +1047,7 @@ proc connectBroker(ctx: MqttCtx) {.async.} =
     ctx.s = await asyncnet.dial(ctx.host, ctx.port)
     if ctx.sslOn:
       when defined(ssl):
-        ctx.ssl = newContext(protSSLv23, CVerifyNone)
+        ctx.ssl = newContext(protSSLv23, CVerifyNone, ctx.sslCert, ctx.sslKey)
         wrapConnectedSocket(ctx.ssl, ctx.s, handshakeAsClient)
       else:
         ctx.wrn "Requested SSL session but ssl is not enabled"
@@ -1103,6 +1105,12 @@ proc set_host*(ctx: MqttCtx, host: string, port: int=1883, sslOn=false) =
   ctx.port = Port(port)
   ctx.sslOn = sslOn
 
+proc set_ssl_certificates*(ctx: MqttCtx, sslCert: string, sslKey: string) =
+  # Sets the SSL Certificate and Key to use when connecting to the remote broker
+  # for mutal TLS authentication
+  ctx.sslCert = sslCert
+  ctx.sslKey = sslKey
+
 proc set_auth*(ctx: MqttCtx, username: string, password: string) =
   ## Set the authentication for the host.
   ctx.username = username