Access tls config

broker/http_broker.go

@@ -144,11 +144,15 @@ func (h *httpBroker) start() error {
 	var err error
 
 	if h.opts.Secure {
-		cert, err := mls.Certificate(h.address)
-		if err != nil {
-			return err
+		config := h.opts.TLSConfig
+		if config == nil {
+			cert, err := mls.Certificate(h.address)
+			if err != nil {
+				return err
+			}
+			config = &tls.Config{Certificates: []tls.Certificate{cert}}
 		}
-		l, err = tls.Listen("tcp", h.address, &tls.Config{Certificates: []tls.Certificate{cert}})
+		l, err = tls.Listen("tcp", h.address, config)
 	} else {
 		l, err = net.Listen("tcp", h.address)
 	}

broker/options.go

@@ -1,11 +1,14 @@
 package broker
 
 import (
+	"crypto/tls"
+
 	"golang.org/x/net/context"
 )
 
 type Options struct {
-	Secure bool
+	Secure    bool
+	TLSConfig *tls.Config
 
 	// Other options for implementations of the interface
 	// can be stored in a context
@@ -71,3 +74,10 @@ func Secure(b bool) Option {
 		o.Secure = b
 	}
 }
+
+// Specify TLS Config
+func TLSConfig(t *tls.Config) Option {
+	return func(o *Options) {
+		o.TLSConfig = t
+	}
+}