Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm
Message-ID: <39AE66AE.FF0EC160@tissat.es>
Date: Thu, 31 Aug 2000 16:07:42 +0200
From: "Ismael Blesa Part" <iblesa@tissat.es>
MIME-Version: 1.0
To: tomcat-user@jakarta.apache.org, ralph.einfeldt@uptime-isc.de
Subject: Re: AW: authentication via x509
References: <F1A7F47CE065D311B5E500A0C9CCF1A907EE4E@server01.hh.uptime-isc.de>
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit

I have already tried this, but there is problem with the protocol used
between apache and jakarta, the SSLXX variables are not transmited by
the protocolhandler (ajp12).
I want to access the digital certificate from my jsp to extract some
data from it.

I know that with tomcat3.2B2 there is SSL support, but by default the
server does not ask the user for a digital certificate. Maybe on the
application descriptor you can say the security level you want, but I do
not know where to specify this or you can configure the tomcat to ask
always for a digital certificate.

Anybody knows something about this?

Ralph Einfeldt wrote:

> One solution is to use jakarta with apache and let
> apache (+ mod_ssl + openssl) handle this.
>
> The name of the user is accessible in your
> JSP's through request.getRemoteUser();
>
> > -----Urspr�ngliche Nachricht-----
> > Von: Ismael Blesa Part [mailto:iblesa@tissat.es]
> > Gesendet: Donnerstag, 31. August 2000 14:02
> > Betreff: authentication via x509
> > I have an application running with jsp, how should I do to
> > authenticate
> > the user with digital certificates ?
> > How to access from jsp to the user digital certificate?
> >
> > How and where to specify that the application requieres a digital
> > certificate?