Return-Path: Delivered-To: apmail-jakarta-tomcat-dev-archive@apache.org Received: (qmail 11477 invoked from network); 11 Aug 2003 22:25:31 -0000 Received: from exchange.sun.com (192.18.33.10) by daedalus.apache.org with SMTP; 11 Aug 2003 22:25:31 -0000 Received: (qmail 15880 invoked by uid 97); 11 Aug 2003 22:28:17 -0000 Delivered-To: qmlist-jakarta-archive-tomcat-dev@nagoya.betaversion.org Received: (qmail 15873 invoked from network); 11 Aug 2003 22:28:17 -0000 Received: from daedalus.apache.org (HELO apache.org) (208.185.179.12) by nagoya.betaversion.org with SMTP; 11 Aug 2003 22:28:17 -0000 Received: (qmail 10698 invoked by uid 500); 11 Aug 2003 22:25:22 -0000 Mailing-List: contact tomcat-dev-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Developers List" Reply-To: "Tomcat Developers List" Delivered-To: mailing list tomcat-dev@jakarta.apache.org Received: (qmail 10685 invoked from network); 11 Aug 2003 22:25:22 -0000 Received: from nwkea-mail-1.sun.com (192.18.42.13) by daedalus.apache.org with SMTP; 11 Aug 2003 22:25:22 -0000 Received: from phys-d3-ha21sca-1 ([129.145.155.163]) by nwkea-mail-1.sun.com (8.12.9/8.12.9) with ESMTP id h7BMPTNj001918 for ; Mon, 11 Aug 2003 15:25:29 -0700 (PDT) Received: from sun.com (raga2.SFBay.Sun.COM [129.145.132.30]) by ha21sca-mail1.sfbay.sun.com (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003)) with ESMTP id <0HJH00MG47MHF1@ha21sca-mail1.sfbay.sun.com> for tomcat-dev@jakarta.apache.org; Mon, 11 Aug 2003 15:25:29 -0700 (PDT) Date: Mon, 11 Aug 2003 15:25:29 -0700 From: Jan Luehe Subject: Re: [PROPOSAL] Add "keystoreAlias" property to CoyoteConnector To: Tomcat Developers List Reply-to: Jan.Luehe@Sun.COM Message-id: <3F3817D9.9010901@sun.com> MIME-version: 1.0 Content-type: text/plain; format=flowed; charset=us-ascii Content-transfer-encoding: 7bit X-Accept-Language: en-US User-Agent: Mozilla/5.0 (X11; U; SunOS sun4u; en-US; rv:1.1) Gecko/20020827 References: <20030803153830.73642.qmail@watermelon.covalent.net> <3F34E5AD.9020906@apache.org> <3F34ED2A.6020909@apache.org> <3F34F3AF.3040100@joedog.org> <3F34F4F2.7050703@apache.org> <3F34F92B.8000106@joedog.org> <3F350CEA.5000101@apache.org> <3F352F8E.6090209@joedog.org> <3F3531A9.5010805@sun.com> <003b01c35ef8$e5f45040$d2b32b04@dslverizon.net> X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N Bill Barker wrote: > Just make certain to close bug #19610 after the commit. Done. Notice that 19610 also requests the ability to assign different passwords to each individual key. JSSE currently does not support this feature via its standard APIs. Jan > ----- Original Message ----- > From: "Jan Luehe" > To: "Tomcat Developers List" > Sent: Saturday, August 09, 2003 10:38 AM > Subject: [PROPOSAL] Add "keystoreAlias" property to CoyoteConnector > > > >>I would like to add support for specifying a keystore alias property >>on CoyoteConnector. This will allow control over which (of possible >>many) keypair and supporting cert chain the connector is going to >>select to authenticate itself to the client during the SSL handshake, >>when client auth is turned on. >> >>If this attribute is specified on the connector, the underlying JSSE >>socket factory will initialize the SSL context with a KeyManager >>implementation whose methods delegate to the default key manager, with >>the exception of the "chooseServerAlias" method, which will return the >>specified alias name. >> >>Let me know if you have any issues with this proposal. >> >>Thanks, >> >>Jan >> >> >> >>--------------------------------------------------------------------- >>To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org >>For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org >> >> >> >> >>------------------------------------------------------------------------ >> >>This message is intended only for the use of the person(s) listed above as the intended recipient(s), and may contain information that is PRIVILEGED and CONFIDENTIAL. If you are not an intended recipient, you may not read, copy, or distribute this message or any attachment. If you received this communication in error, please notify us immediately by e-mail and then delete all copies of this message and any attachments. >> >>In addition you should be aware that ordinary (unencrypted) e-mail sent through the Internet is not secure. Do not send confidential or sensitive information, such as social security numbers, account numbers, personal identification numbers and passwords, to us via ordinary (unencrypted) e-mail. >> >> >> >>------------------------------------------------------------------------ >> >>--------------------------------------------------------------------- >>To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org >>For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org > --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org