You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Miguel A Paraz <mp...@mparaz.com> on 2003/12/24 07:56:17 UTC

Re: X.509 DN's in tomcat-users.xml / MalformedObjectNameException

On Tue, Dec 23, 2003 at 10:17:27PM -0800, Bill Barker wrote:
> Read again:  "At the moment, only MemoryRealm supports CLIENT-CERT auth".
> What part of this don't you understand?

OK, my typo.  When I said:

> > But UserRealm doesn't like it.  I tried URL-escaping the '=' to '%3D' but

I meant MemoryRealm, so I entered this into tomcat-users.xml:

<user username="/C=PH/ST=NCR/L=Pasig/O=mparaz.com/OU=personal/CN=Miguel A Paraz/emailAddress=mparaz@mparaz.com" 
  password="ignored" 
  roles="role1"/>

Where the username attribute comes from the DN of the OpenSSL-generated 
certificate.

The heart of my question - and the original poster's - would be how to deal
with the javax.management.MalformedObjectNameException that comes from
having '=' characters in the username.

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org