On Wed, May 12, 2004 at 01:09:03PM +0200, Marc Stern wrote:
> When using Apache as a proxy:
>   ( brower  --https-->  Apache + mod_proxy  --https-->  Web server )
> the Web server never receives the user's certificate info, because only the
> proxy is seen by the Web server. That means that all headers SSL_CLIENT_*
> contain the proxy certificate info, not the user certificate info.
> 
> Is there a way to get the user's certificate info ?

On the proxy use, e.g.:

SSLOptions +StdEnvVars
RequestHeader set X-Foo %{SSL_CLIENT_S_DN}e

and the client DN is passed through to the backend in the X-Foo header.

joe

Reply via email to