add require: syntax to -x509-pat option

Author: korc

auth_cert.go

@@ -56,6 +56,9 @@ func NewAuthX509Pat(sni, action string) (ret AuthX509Pattern, err error) {
 	if strings.HasPrefix(action, "!") {
 		ret.require = true
 		action = action[1:]
+	} else if strings.HasPrefix(action, "require:") {
+		ret.require = true
+		action = action[len("require:"):]
 	}
 	switch action {
 	case "none":

main.go

@@ -55,7 +55,7 @@ func main() {
 	var x509Pat AuthX509PatFlag
 	flag.Var(&authFlag, "auth", "alias to 'role'")
 	flag.Var(&authFlag, "role", "[<role>[+<role2>]=]<method>:<auth> (multi-arg)")
-	flag.Var(&x509Pat, "x509-pat", "{'*'|'*.'<domain>|<servername>}={'none'|[!]'any'} (multi-arg, default '*=any' if have cert auth or '*=none' otherwise)")
+	flag.Var(&x509Pat, "x509-pat", "{'*'|'*.'<domain>|<servername>}={'none'|['require:']'any'} (multi-arg, default '*=any' if have cert auth or '*=none' otherwise)")
 	flag.Var(&aclFlag, "acl", "[{host:<vhost..>|<method..>}]<path_regexp>=<role>[+<role2..>]:<role..> (multi-arg)")
 	flag.Var(&urlMaps, "map", "[<vhost>]/<path>=<handler>:[<params>] (multi-arg, default '/=file:')")
 	flag.Var(&corsMaps, "cors", "<path>=<allowed_origin> (multi-arg)")