https://ambassadorpatryk.com/tags/api-security/ Recent content in API Security on Patryk Bandurski https://ambassadorpatryk.com/images/patryk-og.png https://ambassadorpatryk.com/images/patryk-og.png Hugo -- 0.160.0 en-us Tue, 07 Apr 2026 00:00:00 +0000 https://ambassadorpatryk.com/posts/mtls-in-mulesoft-truststore-keystore-demystified/ Tue, 07 Apr 2026 00:00:00 +0000 https://ambassadorpatryk.com/posts/mtls-in-mulesoft-truststore-keystore-demystified/ <p>&ldquo;Which certificates do I need to give to the client?&rdquo;</p> <p>That was the question I couldn&rsquo;t answer confidently the first time I configured mTLS in MuleSoft. I understood the handshake at a high level — both sides prove who they are. What I didn&rsquo;t understand was the practical side: who holds what, and where in the platform does each piece actually live?</p> <p>If you&rsquo;ve been there, this post is for you.</p>