Support mTLS

[Warchant]

Please add support for mTLS (mutual TLS) authentication.

In LFS server I'd like to specify something like LFS_CACERT=ca.pem.

Then, clients specify these options:

• http.sslCert
• http.sslKey

If client's sslCert is signed by CA, then we authenticate this client on LFS server.

[chrisd8088]

Hey, thanks for the suggestion; I'll mark this issue as a possible enhancement.

Because we use a different test server for the principal Git LFS client project's test suite, this project doesn't see a lot of development.

If anyone has time to put together a PR which implements mTLS authentication, that would be appreciated!

[chrisd8088]

I would be remiss if I didn't also mention that there are a lot of other Git LFS server implementations, and one of those might suit your purposes and have mTLS support already in place.