Re: Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-31 Thread Michael Ströder
Michael Ströder wrote: Joe Orton wrote: On Fri, May 23, 2008 at 05:23:34PM +0200, Michael Ströder wrote: Ok, then the OID in my cert is 0.9.2342.19200300.100.1.1 (attribute type 'uid' specified for pilotPerson). That seems right to me since it's compliant with RFC 4514 which contains a table

Re: Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-27 Thread erika20
DONT SEND ME THIS CRAP THANK'S -- Original message from Michael Ströder [EMAIL PROTECTED]: -- Joe, many thanks for your response. Joe Orton wrote: On Mon, May 19, 2008 at 10:13:45AM +0200, Michael Ströder wrote: Maybe I'm overlooking the obvious but it

Re: Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-24 Thread Michael Ströder
Joe Orton wrote: On Fri, May 23, 2008 at 05:23:34PM +0200, Michael Ströder wrote: Ok, then the OID in my cert is 0.9.2342.19200300.100.1.1 (attribute type 'uid' specified for pilotPerson). That seems right to me since it's compliant with RFC 4514 which contains a table of short and long

Re: Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-24 Thread Michael Ströder
Michael Ströder wrote: Joe Orton wrote: On Fri, May 23, 2008 at 05:23:34PM +0200, Michael Ströder wrote: Ok, then the OID in my cert is 0.9.2342.19200300.100.1.1 (attribute type 'uid' specified for pilotPerson). That seems right to me since it's compliant with RFC 4514 which contains a table

Re: Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-23 Thread Joe Orton
On Mon, May 19, 2008 at 10:13:45AM +0200, Michael Ströder wrote: HI! (Re-sent since my message through gmane didn't come through.) Maybe I'm overlooking the obvious but it seems that env var SSL_CLIENT_S_DN_UID is not set when using a client cert for authentication. The following env vars

Re: Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-23 Thread Joe Orton
On Fri, May 23, 2008 at 04:46:48PM +0200, Michael Ströder wrote: In the current 2.x mod_ssl sources, UID maps to: #ifdef NID_x500UniqueIdentifier /* new name as of Openssl 0.9.7 */ { UID, NID_x500UniqueIdentifier }, #else /* old name, OpenSSL 0.9.7 */ { UID,

Re: Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-23 Thread Michael Ströder
Joe Orton wrote: On Fri, May 23, 2008 at 04:46:48PM +0200, Michael Ströder wrote: In the current 2.x mod_ssl sources, UID maps to: #ifdef NID_x500UniqueIdentifier /* new name as of Openssl 0.9.7 */ { UID, NID_x500UniqueIdentifier }, #else /* old name, OpenSSL 0.9.7 */ { UID,

Re: Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-23 Thread Joe Orton
On Fri, May 23, 2008 at 05:23:34PM +0200, Michael Ströder wrote: Ok, then the OID in my cert is 0.9.2342.19200300.100.1.1 (attribute type 'uid' specified for pilotPerson). That seems right to me since it's compliant with RFC 4514 which contains a table of short and long attribute type names

Extracting SSL_CLIENT_S_DN_UID does not work

2008-05-19 Thread Michael Ströder
HI! (Re-sent since my message through gmane didn't come through.) Maybe I'm overlooking the obvious but it seems that env var SSL_CLIENT_S_DN_UID is not set when using a client cert for authentication. The following env vars displayed in my SSI HTML text are relevant here (obfuscated to