All -
I've tried to read the mod_ssl documentation as well as an Apache
architectural description and so far have had no luck in finding the answer
to my question. I'm working on a research project that's building a trust
negotiation client (isrl.byu.edu) and we need to get access to what would be
the SSL_CLIENT_CERT CGI variable. The problem is that for various and
apparently non-negotiable reasons, we're running our code as a Tomcat
servlet.
Servlets, by design, have no shared memory with the web server itself (I
understand this is supposed to cut down on launch time - you don't have to
copy the memory space like a CGI does.) Therefore the info stored in the
CGI vars table in Apache in inaccessible. I'd like to solve this problem by
appending the SSL CGI vars (as name-value pairs) to the html request that is
passed to the servlet, so that any request-handling architecture can work
with them.
After having spent hours of work going through the mod_ssl and Apache
source trying to find the best place to do this, I've nearly given up. I
have had no luck tracing the thread of execution for mod_ssl, since I can't
find where it decodes the html request in order to pass it to Apache (I
presume it does this, otherwise Apache would have no idea what to do with
the encoded request.) Even if I were to successfully trace the thread of
execution until the CGI vars are set, I'd need to patch the code in order to
provide the request_rec to the method that sets the CGI vars - which I
presume I have to do in order to append the name-value pair to the html
request. I don't know the best way to do this either.
I hope this email isn't as confusing as it appears to be. It's as clear as
I could make it.
Sincerely,
Hyrum Mills
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
