Same here. Well worth it for $10 a year

Thanks. Authelia looks promising, but I can find anything about tls client auth.

Edit: actually maybe caddy supports this directly? https://caddyserver.com/docs/json/apps/http/servers/tls_connection_policies/client_authentication/

Exactly. Even if the standard Lemmy software does it, there’s no guarantee that your instance admin hasn’t altered the code or done something else to keep that data.

How do you have this set up? Is it possible to have a single verification process in front of several exposed services? Like as part of a reverse proxy?

Or mergerfs if you are not too concerned with performance