Not sure if folks are interested in this or not but attached is a quick patch to support authentication via x509 certificates. It is esentially the same as http except for different fields being used in the index.php page to determine the user. At present it is coded to use the email portion of the certificate, so for users the alias (username) should equal a users email address. The code can probably be cleaned up a fair bit with how much it overlaps on the http auth but as I said, it was done quickly.

If someone wants to move this into the core of the app, go ahead.