You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by Markus Maeder <mm...@oase.ch> on 2002/02/01 06:32:41 UTC
Client Certificates working with mod_jk but not with mod_webapp
Hi
Some days ago I posted following message in tomcat-user and had one reply
stating he is having the same problem.
I'd like to fix this problem. Is there somebody already working on this? If not,
which source should I get to track down the problem?
Markus
My message in tomcat-user:
--- Markus Maeder <mm...@oase.ch> wrote:
> Hi!
>
> I was playing around with Tomcat 4.0.1 and couldn't
> get the client certificates
> from apache through mod_webapp. So I tried Tomcat
> 4.0.2 b2 and the build from
> January 27. I even compiled a new mod_webapp
> (1.0.2-tc402).
>
> Then I tried ajp13 and mod_jk. This is working fine
> after I changed my code
> (working in Tomcat 3.2x) from
>
> String certAttribute =
> "javax.servlet.request.X509Certificate";
> X509Certificate certificate =
>
(java.security.cert.X509Certificate)request.getAttribute(certAttribute);
>
> To version for Tomcat 4:
> String certAttribute =
> "javax.servlet.request.X509Certificate";
> X509Certificate certificate[] =
>
(java.security.cert.X509Certificate[])request.getAttribute(certAttribute);
>
> As I think I missed something in the configuration
> of mod_webapp, I wonder, if
> somebody has a working configuration for getting
> client certificates with
> mod_webapp, apache 1.3 and mod_ssl.
>
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Client Certificates working with mod_jk but not with mod_webapp
Posted by jean-frederic clere <jf...@fujitsu-siemens.com>.
Markus Maeder wrote:
>
> Hi
>
> The problem is, that
> X509Certificate jsseCerts[] = (X509Certificate [])
> request.getAttribute("javax.servlet.request.X509Certificate");
> is null with mod_webapp (but as expected with mod_jk).
>
> May you please send me the configuration stuff you used in httpd.conf?
> Which versions do you use (Apache, OS DIstribution and Version, Tomcat,
> mod_webapp)?
Apache/1.3.22 Server + mod_ssl
OS - Linux, Solaris and ReliantUnix -
Tomcat and mod_webapp from
http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.2-b2/
>
> Markus
>
> Zitat von jean-frederic clere <jf...@fujitsu-siemens.com>:
>
> > Markus Maeder wrote:
> > >
> > > Hi
> > >
> > > Some days ago I posted following message in tomcat-user and had one reply
> > > stating he is having the same problem.
> > >
> > > I'd like to fix this problem. Is there somebody already working on this? If
> > not,
> > > which source should I get to track down the problem?
> >
> > What is the problem? It works well on my tests, try the test application I
> > have
> > attached to the mail..
> >
> > >
> > > Markus
> > >
> > > My message in tomcat-user:
> > > --- Markus Maeder <mm...@oase.ch> wrote:
> > > > Hi!
> > > >
> > > > I was playing around with Tomcat 4.0.1 and couldn't
> > > > get the client certificates
> > > > from apache through mod_webapp. So I tried Tomcat
> > > > 4.0.2 b2 and the build from
> > > > January 27. I even compiled a new mod_webapp
> > > > (1.0.2-tc402).
> > > >
> > > > Then I tried ajp13 and mod_jk. This is working fine
> > > > after I changed my code
> > > > (working in Tomcat 3.2x) from
> > > >
> > > > String certAttribute =
> > > > "javax.servlet.request.X509Certificate";
> > > > X509Certificate certificate =
> > > >
> > > (java.security.cert.X509Certificate)request.getAttribute(certAttribute);
> > > >
> > > > To version for Tomcat 4:
> > > > String certAttribute =
> > > > "javax.servlet.request.X509Certificate";
> > > > X509Certificate certificate[] =
> > > >
> > >
> > (java.security.cert.X509Certificate[])request.getAttribute(certAttribute);
> > > >
> > > > As I think I missed something in the configuration
> > > > of mod_webapp, I wonder, if
> > > > somebody has a working configuration for getting
> > > > client certificates with
> > > > mod_webapp, apache 1.3 and mod_ssl.
> > > >
> > >
> > > --
> > > To unsubscribe, e-mail:
> > <ma...@jakarta.apache.org>
> > > For additional commands, e-mail:
> > <ma...@jakarta.apache.org>
>
> --
> To unsubscribe, e-mail: <ma...@jakarta.apache.org>
> For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Client Certificates working with mod_jk but not with mod_webapp
Posted by Markus Maeder <mm...@oase.ch>.
Hi
The problem is, that
X509Certificate jsseCerts[] = (X509Certificate [])
request.getAttribute("javax.servlet.request.X509Certificate");
is null with mod_webapp (but as expected with mod_jk).
May you please send me the configuration stuff you used in httpd.conf?
Which versions do you use (Apache, OS DIstribution and Version, Tomcat,
mod_webapp)?
Markus
Zitat von jean-frederic clere <jf...@fujitsu-siemens.com>:
> Markus Maeder wrote:
> >
> > Hi
> >
> > Some days ago I posted following message in tomcat-user and had one reply
> > stating he is having the same problem.
> >
> > I'd like to fix this problem. Is there somebody already working on this? If
> not,
> > which source should I get to track down the problem?
>
> What is the problem? It works well on my tests, try the test application I
> have
> attached to the mail..
>
> >
> > Markus
> >
> > My message in tomcat-user:
> > --- Markus Maeder <mm...@oase.ch> wrote:
> > > Hi!
> > >
> > > I was playing around with Tomcat 4.0.1 and couldn't
> > > get the client certificates
> > > from apache through mod_webapp. So I tried Tomcat
> > > 4.0.2 b2 and the build from
> > > January 27. I even compiled a new mod_webapp
> > > (1.0.2-tc402).
> > >
> > > Then I tried ajp13 and mod_jk. This is working fine
> > > after I changed my code
> > > (working in Tomcat 3.2x) from
> > >
> > > String certAttribute =
> > > "javax.servlet.request.X509Certificate";
> > > X509Certificate certificate =
> > >
> > (java.security.cert.X509Certificate)request.getAttribute(certAttribute);
> > >
> > > To version for Tomcat 4:
> > > String certAttribute =
> > > "javax.servlet.request.X509Certificate";
> > > X509Certificate certificate[] =
> > >
> >
> (java.security.cert.X509Certificate[])request.getAttribute(certAttribute);
> > >
> > > As I think I missed something in the configuration
> > > of mod_webapp, I wonder, if
> > > somebody has a working configuration for getting
> > > client certificates with
> > > mod_webapp, apache 1.3 and mod_ssl.
> > >
> >
> > --
> > To unsubscribe, e-mail:
> <ma...@jakarta.apache.org>
> > For additional commands, e-mail:
> <ma...@jakarta.apache.org>
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Client Certificates working with mod_jk but not with mod_webapp
Posted by jean-frederic clere <jf...@fujitsu-siemens.com>.
Markus Maeder wrote:
>
> Hi
>
> Some days ago I posted following message in tomcat-user and had one reply
> stating he is having the same problem.
>
> I'd like to fix this problem. Is there somebody already working on this? If not,
> which source should I get to track down the problem?
What is the problem? It works well on my tests, try the test application I have
attached to the mail..
>
> Markus
>
> My message in tomcat-user:
> --- Markus Maeder <mm...@oase.ch> wrote:
> > Hi!
> >
> > I was playing around with Tomcat 4.0.1 and couldn't
> > get the client certificates
> > from apache through mod_webapp. So I tried Tomcat
> > 4.0.2 b2 and the build from
> > January 27. I even compiled a new mod_webapp
> > (1.0.2-tc402).
> >
> > Then I tried ajp13 and mod_jk. This is working fine
> > after I changed my code
> > (working in Tomcat 3.2x) from
> >
> > String certAttribute =
> > "javax.servlet.request.X509Certificate";
> > X509Certificate certificate =
> >
> (java.security.cert.X509Certificate)request.getAttribute(certAttribute);
> >
> > To version for Tomcat 4:
> > String certAttribute =
> > "javax.servlet.request.X509Certificate";
> > X509Certificate certificate[] =
> >
> (java.security.cert.X509Certificate[])request.getAttribute(certAttribute);
> >
> > As I think I missed something in the configuration
> > of mod_webapp, I wonder, if
> > somebody has a working configuration for getting
> > client certificates with
> > mod_webapp, apache 1.3 and mod_ssl.
> >
>
> --
> To unsubscribe, e-mail: <ma...@jakarta.apache.org>
> For additional commands, e-mail: <ma...@jakarta.apache.org>