On Thu, May 18, 2000 at 07:34:44AM -0700, Paul wrote: > > You might want to take a look at SSLOptions +FakeBasicAuth (see > > http://www.modssl.org/docs/2.6/ssl_reference.html#ToC21) which will > > set REMOTE_USER to the subject of the client certificate. > > I did set it, and still got nothing (but see below). > Also, our company is big enough that there's almost certain to be some > non-unique names. I have to differentiate. No, that will not be a problem - if all certs ar signed by the same CA, then all DN (Subject Distinguished Name) must be unique. > > > Alternatively your problem may be that the variable isn't available > > at the time of the request when it hits mod_perl. Some of the people > > on the mod_perl list use mod_ssl and might be able to help. > > Apparently %ENV isn't populated until the response phase unless you > PerlPassEnv, but that didn't work either. I added > SSLVerifyClient require > SSLRequireSSL > to a <Location> section, and then $r->subprocess_env(...) found them, > but now I'm still having the same problem with cookies. =o) Hmmm - I remember something on the list about people with mod_jserv having similar problems with SSL related variables not being available. Maybe you can find something useful in the archive - http://marc.theaimsgroup.com/?l=apache-modssl&r=1&w=2 vh Mads Toftum -- `Darn it, who spiked my coffee with water?!' - lwall ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
