(Go) FTPS with Mutual TLS Authentication (TLS Client Certificate)

Demonstrates how to do mutual TLS authentication (using a client certificate from a .pfx/.p12).

Chilkat Go Downloads Go Package for Windows, MacOS, Linux, Alpine Linux, Solaris

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    ftp := chilkat.NewFtp2()

    ftp.SetHostname("ftp.example.com")
    ftp.SetPort(21)

    // If using implicit TLS, you probably want port 990..
    ftp.SetPort(990)

    // Set this to false for implicit TLS, otherwise set to true for explicit TLS (where port is typically 21).
    ftp.SetAuthTls(false)

    // Set this to true for implicit TLS, otherwise set to false.
    ftp.SetSsl(true)

    cert := chilkat.NewCert()
    success := cert.LoadPfxFile("qa_data/pfx/example.pfx","pfx_password")
    if success == false {
        fmt.Println(cert.LastErrorText())
        ftp.DisposeFtp2()
        cert.DisposeCert()
        return
    }

    // Use this certificate for our TLS mutually authenticated connection:
    success = ftp.SetSslClientCert(cert)
    if success == false {
        fmt.Println(cert.LastErrorText())
        ftp.DisposeFtp2()
        cert.DisposeCert()
        return
    }

    // Establish the TLS connection with the FTP server.
    success = ftp.ConnectOnly()
    if success == false {
        fmt.Println(ftp.LastErrorText())
        ftp.DisposeFtp2()
        cert.DisposeCert()
        return
    }

    // If a login is required, then login with the FTP account login/password.
    ftp.SetUsername("myLogin")
    ftp.SetPassword("myPassword")
    success = ftp.LoginAfterConnectOnly()
    if success == false {
        fmt.Println(ftp.LastErrorText())
        ftp.DisposeFtp2()
        cert.DisposeCert()
        return
    }

    // Do whatever you're doing to do ...
    // upload files, download files, etc...

    // .....
    // .....

    success = ftp.Disconnect()

    ftp.DisposeFtp2()
    cert.DisposeCert()