You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Paul Puschmann <ln...@uzulabs.net> on 2005/06/01 12:58:01 UTC
client authentication with client certificates (ssl)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
we'd like to use our Tomcat with ssl and client certificates.
Does anybody know if the user information (of the user-certificate) can
be used to authenticate?
Tomcat is 5.5.7
Paul
- --
Linux-User #271918 with the Linux Counter, http://counter.li.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (MingW32)
iEYEARECAAYFAkKdlLkACgkQqErKtBWD7VRYqACdEGzKWKtmIOYChETbsH4AnkIW
l50AoLqVNHzQKjF05nz475tgN70t4H16
=EY9o
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: client authentication with client certificates (ssl)
Posted by Mark Thomas <ma...@apache.org>.
Paul Puschmann wrote:
> That is fine, but how can I use the CLIENT-CERT information in my
> applications?
The certificate is exposed as a servlet attribute. You need to read
section SRV.4.7 of the servlet specification and if you search the
specification for "certificate" you will find some useful supporting
information.
Mark
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: client authentication with client certificates (ssl)
Posted by Paul Puschmann <ln...@uzulabs.net>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Mark Thomas wrote:
> Paul Puschmann wrote:
>
>> we'd like to use our Tomcat with ssl and client certificates.
>>
>> Does anybody know if the user information (of the user-certificate) can
>> be used to authenticate?
>>
>> Tomcat is 5.5.7
>
> CLIENT-CERT authentication is supported.
>
That is fine, but how can I use the CLIENT-CERT information in my
applications?
In the client certificates should be a name and/or customer number in
the usual fields. I want my application to use e.g. the customer number
for further authorization.
(Please answer below the quote, this enhances readability)
Paul
- --
Linux-User #271918 with the Linux Counter, http://counter.li.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (MingW32)
iEYEARECAAYFAkKerp0ACgkQqErKtBWD7VSoagCgh9qmuiRedu7h8Jc3bhnVIlCi
d14An0ZOBFp2vGfB8tu6Ym/xyNuyCEsj
=0rap
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: client authentication with client certificates (ssl)
Posted by Mark Thomas <ma...@apache.org>.
Paul,
CLIENT-CERT authentication is supported.
Mark
Paul Puschmann wrote:
> we'd like to use our Tomcat with ssl and client certificates.
>
> Does anybody know if the user information (of the user-certificate) can
> be used to authenticate?
>
> Tomcat is 5.5.7
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org