Return-Path: 
 <tomcat-dev-return-2274-qmlist-jakarta-archive-tomcat-dev=jakarta.apache.org@jakarta.apache.org>
Delivered-To: apmail-jakarta-tomcat-dev-archive@apache.org
Received: (qmail 78233 invoked from network); 7 Dec 2001 14:59:37 -0000
Received: from unknown (HELO nagoya.betaversion.org) (192.18.49.131)
  by daedalus.apache.org with SMTP; 7 Dec 2001 14:59:37 -0000
Received: (qmail 5801 invoked by uid 97); 7 Dec 2001 14:59:26 -0000
Delivered-To: qmlist-jakarta-archive-tomcat-dev@jakarta.apache.org
Received: (qmail 5785 invoked by uid 97); 7 Dec 2001 14:59:26 -0000
Mailing-List: contact tomcat-dev-help@jakarta.apache.org; run by ezmlm
Precedence: bulk
List-Unsubscribe: <mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
List-Subscribe: <mailto:tomcat-dev-subscribe@jakarta.apache.org>
List-Help: <mailto:tomcat-dev-help@jakarta.apache.org>
List-Post: <mailto:tomcat-dev@jakarta.apache.org>
List-Id: "Tomcat Developers List" <tomcat-dev.jakarta.apache.org>
Reply-To: "Tomcat Developers List" <tomcat-dev@jakarta.apache.org>
Delivered-To: mailing list tomcat-dev@jakarta.apache.org
Received: (qmail 5765 invoked from network); 7 Dec 2001 14:59:25 -0000
Sender: ekr@rtfm.com
To: "Tomcat Developers List" <tomcat-dev@jakarta.apache.org>,
   "Tomcat Developers List" <tomcat-dev@jakarta.apache.org>
Subject: Re: Submission: Portable SSL Support
References: <Pine.LNX.4.33.0111302326190.1200-100000@localhost.localdomain>
 <kjpu5zezma.fsf@romeo.rtfm.com>
 <001b01c17ee1$e9a79560$1b7d0304@vz.dsl.genuity.net>
 <kjelm7lgp2.fsf@romeo.rtfm.com>
 <002e01c17eea$74127be0$1b7d0304@vz.dsl.genuity.net>
Reply-to: EKR <ekr@rtfm.com>
Mime-Version: 1.0 (generated by tm-edit 7.108)
Content-Type: text/plain; charset=US-ASCII
From: Eric Rescorla <ekr@rtfm.com>
Date: 07 Dec 2001 06:59:24 -0800
In-Reply-To: "Bill Barker"'s message of "Thu, 6 Dec 2001 22:43:16 -0800"
Message-ID: <kj1yi7kreb.fsf@romeo.rtfm.com>
Lines: 21
X-Mailer: Gnus v5.6.45/XEmacs 20.4 - "Emerald"
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N

"Bill Barker" <wbarker@wilshire.com> writes:
> It compiles with or without JSSE, and runs fine without an SSL connector.
> However, I haven't actually gotten around to doing the whole keystore thing
> here, so the (big) one thing I haven't tried (yet) is to run it with an
> JSSE-SSL connection.
I just did a CVS update and checked it against PureTLS. It runs fine.

> The other thing that would be nice is to be able to access the SessionId,
> (via request.getAttribute("javax.servlet.request.ssl_session")).  There is
> already optional support to validate HttpSession access against this for SSL
> sessions in 3.3.x.  Currently it is only supported if you are connecting via
> Apache, but stand-alone (at least for PureTLS) would also be a nice feature.
That's certainly easy to add. I just didn't know what attribute string
to use since I didn't see it in the Servlet 2.3 spec. Which spec
is this string defined in?

-Ekr

-- 
[Eric Rescorla                                   ekr@rtfm.com]
                http://www.rtfm.com/

--
To unsubscribe, e-mail:   <mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-dev-help@jakarta.apache.org>