cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/03/23 08:31:41 Modified:webapps/docs changelog.xml ssl-howto.xml Log: Bugzilla 33883. Revision ChangesPath 1.253 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.252 retrieving revision 1.253 diff -u -r1.252 -r1.253 --- changelog.xml 23 Mar 2005 16:27:03 - 1.252 +++ changelog.xml 23 Mar 2005 16:31:41 - 1.253 @@ -48,6 +48,9 @@ 33719: Update reference to Ant download page. (yoavs) + +33883: Bad options in SSL-HowTo. (yoavs) + 1.15 +2 -2 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.14 retrieving revision 1.15 diff -u -r1.14 -r1.15 --- ssl-howto.xml 1 Feb 2005 21:07:29 - 1.14 +++ ssl-howto.xml 23 Mar 2005 16:31:41 - 1.15 @@ -214,8 +214,8 @@ To import an existing certificate signed by your own CA into a PKCS12 keystore using OpenSSL you would execute a command like: -openssl pkcs12 -export -infile mycert.crt -inkey mykey.key \ --outfile mycert.p12 -name tomcat -CAfile myCA.crt \ +openssl pkcs12 -export -in mycert.crt -inkey mykey.key \ +-out mycert.p12 -name tomcat -CAfile myCA.crt \ -caname root -chain For more advanced cases, consult the http://www.openssl.org/";>OpenSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/02/01 13:07:29 Modified:webapps/docs changelog.xml ssl-howto.xml Log: Bugzilla 33204. Revision ChangesPath 1.230 +8 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.229 retrieving revision 1.230 diff -u -r1.229 -r1.230 --- changelog.xml 29 Jan 2005 19:48:25 - 1.229 +++ changelog.xml 1 Feb 2005 21:07:29 - 1.230 @@ -27,6 +27,14 @@ + + + +33204: Fixed SSL HowTo page. (yoavs) + + + + 1.14 +1 -1 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.13 retrieving revision 1.14 diff -u -r1.13 -r1.14 --- ssl-howto.xml 18 Nov 2004 14:51:35 - 1.13 +++ ssl-howto.xml 1 Feb 2005 21:07:29 - 1.14 @@ -152,7 +152,7 @@ simply prefixing the address with https: instead of http:. Any pages which absolutely require a secure connection should check the protocol type associated with the -page request and take the appropriate action of https is not +page request and take the appropriate action if https is not specified. Finally, using name-based virtual hosts on a secured connection can be - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/02/01 13:04:30 Modified:webapps/docs Tag: TOMCAT_5_0 changelog.xml ssl-howto.xml Log: Bugzilla 33204. Revision ChangesPath No revision No revision 1.70.2.92 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.70.2.91 retrieving revision 1.70.2.92 diff -u -r1.70.2.91 -r1.70.2.92 --- changelog.xml 1 Feb 2005 20:54:12 - 1.70.2.91 +++ changelog.xml 1 Feb 2005 21:04:30 - 1.70.2.92 @@ -20,6 +20,9 @@ 32210: Fixed Realm HowTo. (yoavs) + +33204: Fixed SSL HowTo. (yoavs) + 1.11.2.3 +1 -1 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.11.2.2 retrieving revision 1.11.2.3 diff -u -r1.11.2.2 -r1.11.2.3 --- ssl-howto.xml 18 Nov 2004 15:01:03 - 1.11.2.2 +++ ssl-howto.xml 1 Feb 2005 21:04:30 - 1.11.2.3 @@ -152,7 +152,7 @@ simply prefixing the address with https: instead of http:. Any pages which absolutely require a secure connection should check the protocol type associated with the -page request and take the appropriate action of https is not +page request and take the appropriate action if https is not specified. Finally, using name-based virtual hosts on a secured connection can be - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2004/11/18 07:01:03 Modified:webapps/docs Tag: TOMCAT_5_0 changelog.xml ssl-howto.xml Log: Bugzilla 22678: misc addition to SSL HowTo Revision ChangesPath No revision No revision 1.70.2.74 +3 -1 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.70.2.73 retrieving revision 1.70.2.74 diff -u -r1.70.2.73 -r1.70.2.74 --- changelog.xml 18 Nov 2004 14:38:14 - 1.70.2.73 +++ changelog.xml 18 Nov 2004 15:01:03 - 1.70.2.74 @@ -26,7 +26,9 @@ 31132: Modified startup scripts for better OS/400 -x/-r handling. (yoavs) - + +22679: Added misc note on accessing session ID to SSL-HowTo. (yoavs) + 1.11.2.2 +19 -4 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.11.2.1 retrieving revision 1.11.2.2 diff -u -r1.11.2.1 -r1.11.2.2 --- ssl-howto.xml 28 Oct 2004 20:30:52 - 1.11.2.1 +++ ssl-howto.xml 18 Nov 2004 15:01:03 - 1.11.2.2 @@ -8,13 +8,14 @@ Christopher Cain +Yoav Shapira SSL Configuration HOW-TO - + The description below uses the variable name $CATALINA_HOME @@ -173,14 +174,15 @@ - + +Note that JSSE is bundled with Sun's JDK 1.4 and later, so if you're using + JDK 1.4 and later, you can skip this step. Download the Java Secure Socket Extensions (JSSE) package, version 1.0.3 or later, from http://java.sun.com/products/jsse/";>http://java.sun.com/products/jsse/. If you built Tomcat from source, you have probably already downloaded this -package. If you are running JDK 1.4.x, these classes have -been integrated directly into the JDK, so you can skip this entire step. +package. After expanding the package, there are two ways to make it available to Tomcat (choose one or the other): @@ -503,6 +505,19 @@ http://jakarta.apache.org/site/mail.html";>http://jakarta.apache.org/site/mail.html";. + + + + To access the SSL session ID from the request, use: + + + String sslID = (String)request.getAttribute("javax.servlet.request.ssl_session"); + + + For additional discussion on this area, please see + http://issues.apache.org/bugzilla/show_bug.cgi?id=22679";>Bugzilla. + + - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2004/11/18 06:51:35 Modified:webapps/docs changelog.xml ssl-howto.xml Log: Bugzilla 22679: misc addition to SSL HowTo. Revision ChangesPath 1.171 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.170 retrieving revision 1.171 diff -u -r1.170 -r1.171 --- changelog.xml 18 Nov 2004 14:23:55 - 1.170 +++ changelog.xml 18 Nov 2004 14:51:35 - 1.171 @@ -35,6 +35,9 @@ 31132: Better -x/-r support for OS/400 in startup scripts. (yoavs) + +22679: Added misc note on accessing session ID to SSL-HowTo. (yoavs) + 1.13 +20 -4 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.12 retrieving revision 1.13 diff -u -r1.12 -r1.13 --- ssl-howto.xml 1 Sep 2004 22:04:27 - 1.12 +++ ssl-howto.xml 18 Nov 2004 14:51:35 - 1.13 @@ -8,13 +8,14 @@ Christopher Cain +Yoav Shapira SSL Configuration HOW-TO - + The description below uses the variable name $CATALINA_HOME @@ -173,14 +174,16 @@ - + +Note that JSSE is bundled with Sun's JDK 1.4 and later, so if you're using +JDK 1.4 and later, you can skip this step. + Download the Java Secure Socket Extensions (JSSE) package, version 1.0.3 or later, from http://java.sun.com/products/jsse/";>http://java.sun.com/products/jsse/. If you built Tomcat from source, you have probably already downloaded this -package. If you are running JDK 1.4.x, these classes have -been integrated directly into the JDK, so you can skip this entire step. +package. After expanding the package, there are two ways to make it available to Tomcat (choose one or the other): @@ -502,6 +505,19 @@ information, at http://jakarta.apache.org/site/mail.html";>http://jakarta.apache.org/site/mail.html";. + + + + +To access the SSL session ID from the request, use: + + +String sslID = (String)request.getAttribute("javax.servlet.request.ssl_session"); + + +For additional discussion on this area, please see +http://issues.apache.org/bugzilla/show_bug.cgi?id=22679";>Bugzilla. + - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]