marcelog/passing_client_ssl_certificate_options_haproxy.conf

## passing_client_ssl_certificate_options_haproxy.conf
  mode http
  http-request set-header X-SSL                       %[ssl_fc]
  http-request set-header X-SSL-Client-Cert           %[ssl_fc_has_crt]
  http-request set-header X-SSL-Client-Verify         %[ssl_c_verify]
  http-request set-header X-SSL-Client-SHA1           %{+Q}[ssl_c_sha1,hex]
  http-request set-header X-SSL-Client-DN             %{+Q}[ssl_c_s_dn]
  http-request set-header X-SSL-Client-CN             %{+Q}[ssl_c_s_dn(cn)]
  http-request set-header X-SSL-Issuer                %{+Q}[ssl_c_i_dn]
  http-request set-header X-SSL-Client-Not-Before     %{+Q}[ssl_c_notbefore]
  http-request set-header X-SSL-Client-Not-After      %{+Q}[ssl_c_notafter]
	mode http
	http-request set-header X-SSL %[ssl_fc]
	http-request set-header X-SSL-Client-Cert %[ssl_fc_has_crt]
	http-request set-header X-SSL-Client-Verify %[ssl_c_verify]
	http-request set-header X-SSL-Client-SHA1 %{+Q}[ssl_c_sha1,hex]
	http-request set-header X-SSL-Client-DN %{+Q}[ssl_c_s_dn]
	http-request set-header X-SSL-Client-CN %{+Q}[ssl_c_s_dn(cn)]
	http-request set-header X-SSL-Issuer %{+Q}[ssl_c_i_dn]
	http-request set-header X-SSL-Client-Not-Before %{+Q}[ssl_c_notbefore]
	http-request set-header X-SSL-Client-Not-After %{+Q}[ssl_c_notafter]