Re: SSLVerifyClient applies to parent directory

[Gilles Cuesta (Gmail)]

Florian Hackenberger a écrit :
On Thursday 26 June 2008, Cuesta Gilles wrote:
  
Maybe try this:
Listen 443
<VirtualHost *:443>
        SSLEngine On
        SSLCertificateFile /etc/apache2/ssl/acoveo.com.pem
        DocumentRoot "/usr/local/htdocs"

        <Location /directory/subdirectory>
                SSLVerifyClient require
                SSLVerifyDepth 1
        </Location>
</VirtualHost>
    

Unfortunately it leads to the same result, but thanks for the 
suggestion.

  
Regarding mod_ssl:
"In per-server context it applies to the client authentication process 
used in the standard SSL handshake when a connection is established. "
"In per-directory context it forces a SSL renegotation with the 
reconfigured client verification level after the HTTP request was read 
but before the HTTP response is sent."

So maybe:

Listen 443
<VirtualHost *:443>
       SSLEngine On
       SSLCertificateFile /etc/apache2/ssl/acoveo.com.pem
       DocumentRoot "/usr/local/htdocs"

        <Directory /usr/local/htdocs/directory/subdirectory>
        SSLVerifyClient require
                SSLVerifyDepth 1
        </Directory>
</VirtualHost>

______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      modssl-users@modssl.org
Automated List Manager                            [EMAIL PROTECTED]