From modules-dev-return-1073-apmail-httpd-modules-dev-archive=httpd.apache.org@httpd.apache.org Fri Aug 03 13:32:03 2007 Return-Path: Delivered-To: apmail-httpd-modules-dev-archive@locus.apache.org Received: (qmail 64950 invoked from network); 3 Aug 2007 13:32:02 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 3 Aug 2007 13:32:02 -0000 Received: (qmail 97041 invoked by uid 500); 3 Aug 2007 13:32:01 -0000 Delivered-To: apmail-httpd-modules-dev-archive@httpd.apache.org Received: (qmail 96896 invoked by uid 500); 3 Aug 2007 13:32:00 -0000 Mailing-List: contact modules-dev-help@httpd.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: modules-dev@httpd.apache.org Delivered-To: mailing list modules-dev@httpd.apache.org Received: (qmail 96887 invoked by uid 99); 3 Aug 2007 13:32:00 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 03 Aug 2007 06:32:00 -0700 X-ASF-Spam-Status: No, hits=2.0 required=10.0 tests=HTML_MESSAGE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of vedavyasraichur@gmail.com designates 209.85.146.178 as permitted sender) Received: from [209.85.146.178] (HELO wa-out-1112.google.com) (209.85.146.178) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 03 Aug 2007 13:31:57 +0000 Received: by wa-out-1112.google.com with SMTP id k22so810479waf for ; Fri, 03 Aug 2007 06:31:32 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; b=HZfGdPrUVFdNIowoD2l0w/dJFR+RB8Nbw/SIfn+17F7cPRtmO3jPewExlnyluNyufV8MdfqguIMsvRUvBiiL1eHtTWHwwH5tyOCfuIU2+qMC6xofbhyNC+UZHD+U5PAResG/86YB+LgOVyuTaCnn3Mcxsx2AgKSDxL4uJ8p/0vE= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type; b=RyjNzRQR3zN9DTogddewKr+9Z6p0MXdWqWMNkrmafcRrHBi5jgWuDrPc220iq16gzRa+r4NxZ+pTFPLTDaxIw+ifrMUcA1CZ4YNEV3UdqT+nMbXo+JEt/yNdrc1ywycWeN1FM0XxMqPdoL/xexf0U3q/5ouOsejidRLAPAaL71M= Received: by 10.114.112.1 with SMTP id k1mr2978997wac.1186147892042; Fri, 03 Aug 2007 06:31:32 -0700 (PDT) Received: by 10.114.109.11 with HTTP; Fri, 3 Aug 2007 06:31:32 -0700 (PDT) Message-ID: Date: Fri, 3 Aug 2007 06:31:32 -0700 From: "Vedavyas Raichur" To: modules-dev@httpd.apache.org Subject: Apache as Reverse Proxy MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_100643_23535849.1186147892022" X-Virus-Checked: Checked by ClamAV on apache.org ------=_Part_100643_23535849.1186147892022 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Hi all, We are running Apache 2.0 as a reverse proxy with backend servers being apache as well. The reverse proxy uses SSL to talk to backend servers. These back end servers require client authentication. Is there any way we can pass off this client certificate from proxy to backend server. Is it advisable to derive some credentials from the client cert presented to proxy & set a custom http header that will be passed to backend server? Is there any better mechanism to do the same. Thanks for any help. Regards ------=_Part_100643_23535849.1186147892022--