package gomicro

import (
	"crypto/tls"
	"gitea.baoapi.com/root/stu_uuos/util"
	log "github.com/micro/go-micro/v2/logger"
)

func LoadTlsConfig() *tls.Config {
	pemFile, err := util.FindFile("cert/2990195__241210.com.pem")
	if err != nil {
		log.Fatalf("load pem cert err: %v", err)
	}

	keyFile, err := util.FindFile("cert/2990195__241210.com.key")
	if err != nil {
		log.Fatalf("load key cert err: %v", err)
	}

	util.PrintInfo(pemFile)
	util.PrintInfo(keyFile)

	cert, err := tls.LoadX509KeyPair(pemFile, keyFile)
	if err != nil {
		log.Fatalf("tls.LoadX509KeyPair err: %v", err)
	}

	/*caFile, err := util.FindFile("cert/ca.pem")
	if err != nil {
		log.Fatalf("load CA cert err: %v", err)
	}

	certPool := x509.NewCertPool()
	ca, err := ioutil.ReadFile(caFile)
	if err != nil {
		log.Fatalf("ioutil.ReadFile err: %v", err)
	}

	if ok := certPool.AppendCertsFromPEM(ca); !ok {
		log.Fatalf("certPool.AppendCertsFromPEM err")
	}*/

	tlsCfg := &tls.Config{
		Certificates: []tls.Certificate{cert},
		//ClientAuth:         tls.RequireAndVerifyClientCert,
		//ClientCAs:          certPool,
		InsecureSkipVerify: true,
	}

	return tlsCfg
}