Npgsql: Allow specifying a certificate via the connection string and other standard means

Should we also support an environment variable? (Along the lines of PGPASSFILE or PGTZ).

Uh, I'm not sure... I try to support environment variables where they're PostgreSQL standard ones, i.e. recognized by libpq. Is there an env var for specifying the location of a certificate?

I was just thinking aloud earlier, but it turns out libpq does check for environment variables:

Per 33.18. SSL Support (_emphasis added_):

If the server attempts to verify the identity of the client by requesting the client's leaf certificate, libpq will send the certificates stored in file ~/.postgresql/postgresql.crt in the user's home directory. The certificates must chain to the root certificate trusted by the server. A matching private key file ~/.postgresql/postgresql.key must also be present. The private key file must not allow any access to world or group; achieve this by the command chmod 0600 ~/.postgresql/postgresql.key. On Microsoft Windows these files are named %APPDATA%\postgresql\postgresql.crt and %APPDATA%\postgresql\postgresql.key, and there is no special permissions check since the directory is presumed secure.

__The location of the certificate and key files can be overridden by the connection parameters sslcert and sslkey or the environment variables PGSSLCERT and PGSSLKEY.__

Ok, so I guess we do it! We can even support ~/.postgresql/postgresql.crt...

Once this is in place, we should give some attention to the getting started/connection docs. It would be great to get a comparison chart of Npgsql and libpq, and be able to say for configuration parameters that "the standard docs apply, except for these outstanding issues".