tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Wolfgang Stein <zo...@gmd-net.de>
Subject Re: SSL clientAuth="optional" ?!?!?
Date Mon, 07 Oct 2002 09:22:24 GMT
Hi,
 
don't have the spec at hand, but have you already
tried something like:

...
<error-page>
    <error-code>401</error-code>
    <location>/IfNoClientCertThenRegister</location>
</error-page>
...
<security-constraint>
    ...
    <user-data-constraint>
        <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>
    ...
</security-constraint>
...


in your web.wml ?

You might also use a filter or front controler
as an alternative.

Cheers,
Wolfgang

> -----Original Message-----
> From: check-mate@gmx.net [mailto:check-mate@gmx.net]
> Sent: Monday, October 07, 2002 10:32 AM
> To: tomcat-user@jakarta.apache.org
> Subject: SSL clientAuth="optional" ?!?!?
> 
> 
> hi!
> 
> first of all: i'm using tomcat 4.0.4
> 
> i need a client authentication based on a certificate. if the 
> user is new he
> should be able to register and receive his personal key.
> 
> when the clientAuth is set to true the user has no chance to 
> be redirected
> to a register page ....
> 
> maybe there is a path out there?
> is it possible with other versions of tomcat: 4.1.x?
> 
> PLEASE help me!
> blip

--
To unsubscribe, e-mail:   <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-user-help@jakarta.apache.org>


Mime
View raw message