give X509Certificate from ssl connection
Dear friends!
I only start to work with tomcat, and already asked about it but have not
received the answer. Working with tomcat without ARP I could receive from
request the
information necessary to me.
The following code:
public synchronized void doPost (HttpServletRequest request,
HttpServletResponse response)
throws ServletException, OException {
if (request.isSecure())
X509Certificate[]cr = (X509Certificate[])
request.getAttribute(javax.servlet.request.X509Certificate);
...
Here a fragment of mine server.xml(without ARP):
Connector port=8443 maxHttpHeaderSize=8192
maxThreads=150 minSpareThreads=25 maxSpareThreads=75
enableLookups=false disableUploadTimeout=true
acceptCount=100 scheme=https secure=true
clientAuth=true sslProtocol=TLS
truststoreFile=c:/SSlKeys/.keystore
/
In this case(above) all works also I obtain data of the certificate of the
client
If work goes with ARP (tcnative-1.dll) I cannot receive this information
any more.
Probably this information can be received a different way, but I do not
know as.
Here a fragment of mine server.xml:
Connector port = 8443 maxHttpHeaderSize = 8192
maxThreads = 150 minSpareThreads = 25 maxSpareThreads =
75
enableLookups = false disableUploadTimeout = true
acceptCount = 100 scheme = https secure = true
SSLEngine = on
SSLProtocol = all
SSLCipherSuite = ALL
SSLPassword = pass
SSLVerifyClient = require
SSLCertificateFile = $ {catalina.base}/conf/localhost.crt
SSLCertificateKeyFile = $
{catalina.base}/conf/localhost.key
SSLCACertificateFile =
${catalina.base}/conf/ca-bundle-client.crt
/
Thus connection with the client occurs without mistakes, and the necessary
data from
servlet I receive (i.e. the identification of the client works) but given
SSL are necessary for me
Connections. Beforehand I thank all answered to me!
--
Best regards,
Sergey Kowtoon
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
give X509Certificate from ssl connection
Dear friends!
I only start to work with tomcat, and already asked about it but have not
received the answer.
Working with tomcat without ARP I could receive from request the
information necessary to me
The following code:
public synchronized void doPost (HttpServletRequest request,
HttpServletResponse response)
throws ServletException, OException {
if (request.isSecure())
X509Certificate[]cr = (X509Certificate[]) request.getAttribute
(javax.servlet.request.X509Certificate);
...
If work goes with ARP (tcnative-1.dll) I cannot receive this information
any more.
Probably this information can be received a different way, but I do not
know as.
Here a fragment of mine server.xml:
Connector port = 8443 maxHttpHeaderSize = 8192
maxThreads = 150 minSpareThreads = 25 maxSpareThreads =
75
enableLookups = false disableUploadTimeout = true
acceptCount = 100 scheme = https secure = true
SSLEngine = on
SSLProtocol = all
SSLCipherSuite = ALL
SSLPassword = pass
SSLVerifyClient = require
SSLCertificateFile = $ {catalina.base}/conf/localhost.crt
SSLCertificateKeyFile = $
{catalina.base}/conf/localhost.key
SSLCACertificateFile =
${catalina.base}/conf/ca-bundle-client.crt
/
Thus connection with the client occurs without mistakes, and the necessary
data from
servlet I receive (i.e. the identification of the client works) but given
SSL are necessary for me
Connections. Beforehand I thank all answered to me!
--
Best regards,
Sergey Kowtoon.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: give X509Certificate from ssl connection
as craig and bill barker have said if you want to force the browser to transmit
your cert set your Connector
clientAuth=true
M-
This e-mail communication and any attachments may contain confidential and
privileged information for the use of the
designated recipients named above. If you are not the intended recipient, you
are hereby notified that you have received
this communication in error and that any review, disclosure, dissemination,
distribution or copying of it or its
conte
- Original Message -
From: Сергей Ковтун [EMAIL PROTECTED]
To: users@tomcat.apache.org
Sent: Tuesday, October 24, 2006 7:23 AM
Subject: give X509Certificate from ssl connection
Dear friends!
I only start to work with tomcat, and already asked about it but have not
received the answer.
Working with tomcat without ARP I could receive from request the
information necessary to me
The following code:
public synchronized void doPost (HttpServletRequest request,
HttpServletResponse response)
throws ServletException, OException {
if (request.isSecure())
X509Certificate[]cr = (X509Certificate[]) request.getAttribute
(javax.servlet.request.X509Certificate);
...
If work goes with ARP (tcnative-1.dll) I cannot receive this information
any more.
Probably this information can be received a different way, but I do not
know as.
Here a fragment of mine server.xml:
Connector port = 8443 maxHttpHeaderSize = 8192
maxThreads = 150 minSpareThreads = 25 maxSpareThreads = 75
enableLookups = false disableUploadTimeout = true
acceptCount = 100 scheme = https secure = true
SSLEngine = on
SSLProtocol = all
SSLCipherSuite = ALL
SSLPassword = pass
SSLVerifyClient = require
SSLCertificateFile = $ {catalina.base}/conf/localhost.crt
SSLCertificateKeyFile = $ {catalina.base}/conf/localhost.key
SSLCACertificateFile = ${catalina.base}/conf/ca-bundle-client.crt
/
Thus connection with the client occurs without mistakes, and the necessary
data from
servlet I receive (i.e. the identification of the client works) but given
SSL are necessary for me
Connections. Beforehand I thank all answered to me!
--
Best regards,
Sergey Kowtoon.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
