Accessing client information with a 2-way SSL connection

["Asankha C. Perera" <as...@apache.org>]

Hi all

I would like to access the client certificate CN when a 2-way SSL
connection is being used. The SSLIOSessionHandler allows me to verify a
client hostname and the SSL connection established before the request is
processed. If we further pass the IOSession to this method from the
SSLIOSession invoking the verify() method, it would be possible to set
values of interest on the context for subsequent processing. Will it be
ok to pass this to an overloaded verify method - on the 4.1-alpha1 codebase?

thanks
asankha

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org

Re: Accessing client information with a 2-way SSL connection

[Oleg Kalnichevski <ol...@apache.org>]

Asankha C. Perera wrote:
> Hi all
> 
> I would like to access the client certificate CN when a 2-way SSL
> connection is being used. The SSLIOSessionHandler allows me to verify a
> client hostname and the SSL connection established before the request is
> processed. If we further pass the IOSession to this method from the
> SSLIOSession invoking the verify() method, it would be possible to set
> values of interest on the context for subsequent processing. Will it be
> ok to pass this to an overloaded verify method - on the 4.1-alpha1 codebase?
> 
> thanks
> asankha

Hi Asankha,

I do not think we can add an overloaded method to an existing interface 
without breaking API compatibility. We, however, could add a completely 
new interface and deprecate the old one.

Oleg




---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org