DO NOT REPLY [Bug 12355] New: - SSLVerifyClient directive in location make post to PHP script impossible

[bu...@apache.org]

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12355>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12355

SSLVerifyClient directive in location make post to PHP script impossible

           Summary: SSLVerifyClient directive in location make post to PHP
                    script impossible
           Product: Apache httpd-2.0
           Version: 2.0.40
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: mod_ssl
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: sb@samuelballe.com


when configuring SSLVerifyClient directive from global none to location 
require, php scripts inside location are no more able to receive post data. 

Error Method Not Allowed then occurs.
error log shows "[error] SSL Re-negotiation in conjunction with POST method not 
supported!" when SSLVerifyClient is set to 'required' but not when set to 'none'

this configuration inside ssl virtualhost section activate the bug :
----
SSLEngine on
SSLVerifyClient none
SSLVerifyDepth  1
SSLOptions +OptRenegotiate
<location /consultation/ >
        SSLVerifyClient require
</location>
----
this configuration does not activate the bug :
SSLEngine on
SSLVerifyClient require
SSLVerifyDepth  1
SSLOptions +OptRenegotiate
<location /consultation/ >
        SSLVerifyClient require
</location>

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org