Hi, I need to implement an Apache/mod_ssl reverse proxy that can do client authentication. It then builds an unencrypted HTTP connection to backend servers (could be Apache, IIS, etc). The problem now is how to pass the DN of the client cert to the backend servers. Some solutions that have been sugested is to use mod_rewrite to write the DN into the query string of the URL. However, how would it be handled if the HTTP request is a POST? Another idea is to fake a BasicAuth header which contains the DN as the username. However I don't think that mod_proxy has the ability to set custom headers on outgoing connections. Could anyone else give a better suggestion? Thanks in advance!! :> --Ho Ming Shun ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
