- Original Message -
From: Jan Luehe [EMAIL PROTECTED]
To: Tomcat Developers List [EMAIL PROTECTED]
Sent: Wednesday, October 15, 2003 6:38 PM
Subject: How to make CLIENT-CERT protection work?
Consider the following scenario:
1. Client sends POST request (with content type other than
Consider the following scenario:
1. Client sends POST request (with content type other than
application/x-www-form-urlencoded) to SSL-enabled server (with
client auth turned off).
2. Server parses request header, and determines that the resource
identified by the request-URI is