You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2020/03/25 09:55:44 UTC

[Bug 64263] TLSv1.3 with SSLVerifyClient optional inside a Location returns 403

https://bz.apache.org/bugzilla/show_bug.cgi?id=64263

--- Comment #1 from Vlad Mencl <vl...@gmail.com> ---
Hi,

I just realised I might not have been clear on expected / faulty behaviour:
with the above config, hitting /api/ on the server with a TLSv1.3 client not
providing any TLS client auth:

* should return 404 (nothing served at the URL)

* returns 403 - because the code from r1840585 explicitly fails the request
processing.

Hope this clarifies it.

Cheers,
Vlad

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org