Hi, We are trying to use the variable SSL_CLIENT_CERT in our code while doing client certificate authentication. It appears that the SSL_CLIENT_CERT does not retain its value till the completion of a request. For e.g. if we have a html which contains some gifs, then apache makes individual requests for the html and gifs. In our mod_auth routine we check for the presence of the certificate that has been presented to be available in the environment. The certificate presented by the client is available on the first request but is not available in the subsequent requests. ap_table_get(rq->subprocess_env, "SSL_CLIENT_CERT") returns nothing. We have set the following SSLOptions in our configuration: SSLOptions +ExportCertData +StdEnvVars Our understanding is that we should be able to get the value of the EVs consistenly which does not seem to be the case. Any ideas as to what could be wrong? TIA, Sai ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
