There is an application (Java) deployed in OpenShift. The istio-ingress-gateway is also configured. My task is to call my service using the https protocol with mTLS. At the moment, I have the following settings in the ingress-gateway in the tls block:
caCertificates: somePath/ca.pem
mode: MUTUAL
privateKey: somePath/tls.key
serverCertificate: somePath/tls.crt
I want to call my service through Google Chrome / Postman / curl, as I understand it, for this I need to generate a client certificate based on the certificates specified in openshift and put it in the calling client. My question is how can I generate a client certificate from this and how can I put it on the caller?