Add option to explicitly disable SSL Certificate Authentication via HTTPS

[viiccwen]

Description:

When connecting to ClickHouse over HTTPS with a user having an empty password, the server attempts to authenticate using SSL Certificate (CN/SAN) even though basic username/password authentication is desired.

Currently, there’s no explicit way in the Go SDK to force Basic Auth and prevent ClickHouse from triggering SSL Certificate Authentication. This behavior leads to authentication failure with the following error:

Code: 516. DB::Exception: Invalid authentication: SSL certificate authentication requires nonempty certificate's Common Name or Subject Alternative Name. (AUTHENTICATION_FAILED)

Expected Behavior:

• I want to connect to ClickHouse over HTTPS with username: default and password: "" (empty string).
• The server should not attempt SSL Certificate Authentication unless explicitly instructed.
• There should be an SDK-level option to force Basic Auth and disable SSL Cert Authentication for that request.

Reference Issue

#1630

• I'm willing to contribute