cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/03/23 08:31:41 Modified:webapps/docs changelog.xml ssl-howto.xml Log: Bugzilla 33883. Revision ChangesPath 1.253 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.252 retrieving revision 1.253 diff -u -r1.252 -r1.253 --- changelog.xml 23 Mar 2005 16:27:03 - 1.252 +++ changelog.xml 23 Mar 2005 16:31:41 - 1.253 @@ -48,6 +48,9 @@ 33719: Update reference to Ant download page. (yoavs) + +33883: Bad options in SSL-HowTo. (yoavs) + 1.15 +2 -2 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.14 retrieving revision 1.15 diff -u -r1.14 -r1.15 --- ssl-howto.xml 1 Feb 2005 21:07:29 - 1.14 +++ ssl-howto.xml 23 Mar 2005 16:31:41 - 1.15 @@ -214,8 +214,8 @@ To import an existing certificate signed by your own CA into a PKCS12 keystore using OpenSSL you would execute a command like: -openssl pkcs12 -export -infile mycert.crt -inkey mykey.key \ --outfile mycert.p12 -name tomcat -CAfile myCA.crt \ +openssl pkcs12 -export -in mycert.crt -inkey mykey.key \ +-out mycert.p12 -name tomcat -CAfile myCA.crt \ -caname root -chain For more advanced cases, consult the http://www.openssl.org/";>OpenSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/02/01 13:07:29 Modified:webapps/docs changelog.xml ssl-howto.xml Log: Bugzilla 33204. Revision ChangesPath 1.230 +8 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.229 retrieving revision 1.230 diff -u -r1.229 -r1.230 --- changelog.xml 29 Jan 2005 19:48:25 - 1.229 +++ changelog.xml 1 Feb 2005 21:07:29 - 1.230 @@ -27,6 +27,14 @@ + + + +33204: Fixed SSL HowTo page. (yoavs) + + + + 1.14 +1 -1 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.13 retrieving revision 1.14 diff -u -r1.13 -r1.14 --- ssl-howto.xml 18 Nov 2004 14:51:35 - 1.13 +++ ssl-howto.xml 1 Feb 2005 21:07:29 - 1.14 @@ -152,7 +152,7 @@ simply prefixing the address with https: instead of http:. Any pages which absolutely require a secure connection should check the protocol type associated with the -page request and take the appropriate action of https is not +page request and take the appropriate action if https is not specified. Finally, using name-based virtual hosts on a secured connection can be - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/02/01 13:04:30 Modified:webapps/docs Tag: TOMCAT_5_0 changelog.xml ssl-howto.xml Log: Bugzilla 33204. Revision ChangesPath No revision No revision 1.70.2.92 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.70.2.91 retrieving revision 1.70.2.92 diff -u -r1.70.2.91 -r1.70.2.92 --- changelog.xml 1 Feb 2005 20:54:12 - 1.70.2.91 +++ changelog.xml 1 Feb 2005 21:04:30 - 1.70.2.92 @@ -20,6 +20,9 @@ 32210: Fixed Realm HowTo. (yoavs) + +33204: Fixed SSL HowTo. (yoavs) + 1.11.2.3 +1 -1 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.11.2.2 retrieving revision 1.11.2.3 diff -u -r1.11.2.2 -r1.11.2.3 --- ssl-howto.xml 18 Nov 2004 15:01:03 - 1.11.2.2 +++ ssl-howto.xml 1 Feb 2005 21:04:30 - 1.11.2.3 @@ -152,7 +152,7 @@ simply prefixing the address with https: instead of http:. Any pages which absolutely require a secure connection should check the protocol type associated with the -page request and take the appropriate action of https is not +page request and take the appropriate action if https is not specified. Finally, using name-based virtual hosts on a secured connection can be - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2004/11/18 07:01:03
Modified:webapps/docs Tag: TOMCAT_5_0 changelog.xml ssl-howto.xml
Log:
Bugzilla 22678: misc addition to SSL HowTo
Revision ChangesPath
No revision
No revision
1.70.2.74 +3 -1 jakarta-tomcat-catalina/webapps/docs/changelog.xml
Index: changelog.xml
===
RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v
retrieving revision 1.70.2.73
retrieving revision 1.70.2.74
diff -u -r1.70.2.73 -r1.70.2.74
--- changelog.xml 18 Nov 2004 14:38:14 - 1.70.2.73
+++ changelog.xml 18 Nov 2004 15:01:03 - 1.70.2.74
@@ -26,7 +26,9 @@
31132: Modified startup scripts for better OS/400 -x/-r
handling. (yoavs)
-
+
+22679: Added misc note on accessing session ID to
SSL-HowTo. (yoavs)
+
1.11.2.2 +19 -4 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml
Index: ssl-howto.xml
===
RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v
retrieving revision 1.11.2.1
retrieving revision 1.11.2.2
diff -u -r1.11.2.1 -r1.11.2.2
--- ssl-howto.xml 28 Oct 2004 20:30:52 - 1.11.2.1
+++ ssl-howto.xml 18 Nov 2004 15:01:03 - 1.11.2.2
@@ -8,13 +8,14 @@
Christopher Cain
+Yoav Shapira
SSL Configuration HOW-TO
-
+
The description below uses the variable name $CATALINA_HOME
@@ -173,14 +174,15 @@
-
+
+Note that JSSE is bundled with Sun's JDK 1.4 and later, so if you're
using
+ JDK 1.4 and later, you can skip this step.
Download the Java Secure Socket Extensions (JSSE) package,
version 1.0.3 or later, from
http://java.sun.com/products/jsse/";>http://java.sun.com/products/jsse/.
If you built Tomcat from source, you have probably already downloaded this
-package. If you are running JDK 1.4.x, these classes have
-been integrated directly into the JDK, so you can skip this entire step.
+package.
After expanding the package, there are two ways to make it available to
Tomcat (choose one or the other):
@@ -503,6 +505,19 @@
http://jakarta.apache.org/site/mail.html";>http://jakarta.apache.org/site/mail.html";.
+
+
+
+ To access the SSL session ID from the request, use:
+
+
+ String sslID =
(String)request.getAttribute("javax.servlet.request.ssl_session");
+
+
+ For additional discussion on this area, please see
+ http://issues.apache.org/bugzilla/show_bug.cgi?id=22679";>Bugzilla.
+
+
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2004/11/18 06:51:35
Modified:webapps/docs changelog.xml ssl-howto.xml
Log:
Bugzilla 22679: misc addition to SSL HowTo.
Revision ChangesPath
1.171 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml
Index: changelog.xml
===
RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v
retrieving revision 1.170
retrieving revision 1.171
diff -u -r1.170 -r1.171
--- changelog.xml 18 Nov 2004 14:23:55 - 1.170
+++ changelog.xml 18 Nov 2004 14:51:35 - 1.171
@@ -35,6 +35,9 @@
31132: Better -x/-r support for OS/400 in startup
scripts. (yoavs)
+
+22679: Added misc note on accessing session ID to
SSL-HowTo. (yoavs)
+
1.13 +20 -4 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml
Index: ssl-howto.xml
===
RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v
retrieving revision 1.12
retrieving revision 1.13
diff -u -r1.12 -r1.13
--- ssl-howto.xml 1 Sep 2004 22:04:27 - 1.12
+++ ssl-howto.xml 18 Nov 2004 14:51:35 - 1.13
@@ -8,13 +8,14 @@
Christopher Cain
+Yoav Shapira
SSL Configuration HOW-TO
-
+
The description below uses the variable name $CATALINA_HOME
@@ -173,14 +174,16 @@
-
+
+Note that JSSE is bundled with Sun's JDK 1.4 and later, so if you're using
+JDK 1.4 and later, you can skip this step.
+
Download the Java Secure Socket Extensions (JSSE) package,
version 1.0.3 or later, from
http://java.sun.com/products/jsse/";>http://java.sun.com/products/jsse/.
If you built Tomcat from source, you have probably already downloaded this
-package. If you are running JDK 1.4.x, these classes have
-been integrated directly into the JDK, so you can skip this entire step.
+package.
After expanding the package, there are two ways to make it available to
Tomcat (choose one or the other):
@@ -502,6 +505,19 @@
information, at
http://jakarta.apache.org/site/mail.html";>http://jakarta.apache.org/site/mail.html";.
+
+
+
+
+To access the SSL session ID from the request, use:
+
+
+String sslID =
(String)request.getAttribute("javax.servlet.request.ssl_session");
+
+
+For additional discussion on this area, please see
+http://issues.apache.org/bugzilla/show_bug.cgi?id=22679";>Bugzilla.
+
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
