----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
Hi Jean-Luc,
Thanks very much for your help. It was your two sites that finally
showed me the difference btw ajpv11 and ajpv12.
> I already answered you on this topic and gave a pointer to 2 urls where
> this was working with ajpv12 too.
> I'd have appreciated a feedback from you on the results you got with
> these 2 URLs.
>
I used both sites with a Thawte issued personal cerificate and both
returned SSL vars. The ajpv11 one supplied many more SSL vars than the
ajpv12 site. In particular:
https://ma-planete.net/x509authservletajpv11/SuperSnoop
more SSL variables than even mod_ssl supports.
org.apache.jserv.SERVER_SOFTWARE = Apache/1.3.9 (Unix) mod_perl/1.21
PHP/3.0.12 ApacheJServ/1.1 mod_ssl/2.4.9 OpenSSL/0.9.4
org.apache.jserv.GATEWAY_INTERFACE = ApacheJServ/1.0
https://ma-planete.net/x509authservletajpv12/SuperSnoop
SSL_CLIENT_IDN and SSL_CLIENT_DN only
SERVER_SOFTWARE = Apache/1.3.9 (Unix) mod_perl/1.21 PHP/3.0.12
ApacheJServ/1.1 mod_ssl/2.4.9 OpenSSL/0.9.4
org.apache.jserv.REQUEST_METHOD = GET
org.apache.jserv.GATEWAY_INTERFACE = ApacheJServ/1.1
I suspect I used Jserv 1.0 erroneously in hindsight, I perhaps could
have used the directive...
ApJServDefaultProtocol ajpv11
in the jserv.conf file?
These 2 sites gave me the info I used to put together my solution,
your help was invaluable. I thought I had replied to your help with these
two sites giving you the feedback but it is entirely possible I didn't (in
which case please accept my apology).
> Because you just gave everybody a partial and incorrect solution. (who
> would use 1.0 version today ?)
>
Your solution works much better than mine however its on a UNIX
server and I have the limitation of a NT laptop as a server.
I have had a hard time coming across Apache-SSL code for win32 which
I can compile. The main issue seems to be with JServ though and I don't
have source for this for win32 either.
The partial solution I came up with involves no compilation (uses
the binary install of OpenSA 0.20). I am arranging for a copy of msvc6.0
through my company. For the moment its nice to find a solution that gives
me anything. In fact, having the certificate is perfect in one respect.
Now I have it I have JNI classes in my servlet than allows me access
to openssl libraries and I can access our OCSP responder and directory
service to check certificate status and access controls.
> So please be constructive and help me debug this crap. again, working
> perfectly here.
>
I will have the msvc 6.0 CD in the next week or so and a the freedom
to help you fix these issues. I'd be keen to get hold of any latest version
code you may know about, especially if I can use my existing compiler. In
addition, is there anything I can specifically help you with. You seem to
have a purpose to your fixes beyond being nice to me. I'd be interested in
discussing where your work is headed. (I'll take the rest of this offline).
Once again thanks for your help,
Scott
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html>
Problems?: [EMAIL PROTECTED]
