Okay...I get all that. And thanks for your responses. My point of confusion, however, is in dealing with cake's routing and such. I'm probably expressing myself poorly, but let me try to provide a bit more information.
The way the server is set up, I can go to https for my site without it requiring a client certificate. I have to go into my htaccess file and list the files that require a client certificate. But, I can't require that on the entire site, because I want the people to be able to go to the login page without being forced to present a certificate -- and the login functionality follows the cake model/controller/view structure. (I have to provide two methods of logging in, so there are two buttons on the page - login with a certificate and kerberos login. I already have the kerberos part functional.) For both those methods, regardless of the pass or fail status of the initial authentication, I have to go into my database with the information and verify that they are indeed a user of my site. I've tried a lot of different options...but as an example, when I tell the server (in the htaccess file) to require a client certificate for a single controller file in cake, it will ask me for a certificate, but the $_SERVER['SSL_CLIENT_XXXX'] environment variables aren't set actually set by the time the controller code is executed because cake has routed through index.php and the dispatcher and who knows what else and the settings have disappeared. I'm not sure if this made my problem any clearer or not. Am I overlooking a simpler solution to my problem? Thanks for all your help and suggestions. On Sep 4, 5:02 am, Penfold <[EMAIL PROTECTED]> wrote: > Hi, > > Have a look at this it might help > > http://bakery.cakephp.org/articles/view/component-for-forcing-a-secur... > > On 3 Sep, 19:50, creationsings <[EMAIL PROTECTED]> wrote: > > > Has anyone tried to use client certificates to login with CakePHP? > > I'm developing on a server that already has apache mod_ssl set up, but > > I can't figure out how to get Cake to utilize it. I'm trying to have > > a button that they click which sends them to an ssl protected page, > > then read the client certificate information and check against my user > > database to see if they're a valid user. > > > If I protect a controller with mod_ssl, I can't get access to the > > certificate environment variables because of cake's Dispatcher stuff. > > And if I try going through a non-cake page, I can't figure out how to > > pass the parameters back to the Cake app. (I tried using Sessions, > > but Cake always loses the information.) > > > I'm very new to SSL and I'm extremely confused at this point. Cake > > doesn't seem to be making things easier. > > > Does anyone have any ideas? Any help would be VERY much > > appreciated!!! > > > Thanks. > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
