cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/03/23 08:31:41 Modified:webapps/docs changelog.xml ssl-howto.xml Log: Bugzilla 33883. Revision ChangesPath 1.253 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.252 retrieving revision 1.253 diff -u -r1.252 -r1.253 --- changelog.xml 23 Mar 2005 16:27:03 - 1.252 +++ changelog.xml 23 Mar 2005 16:31:41 - 1.253 @@ -48,6 +48,9 @@ fix bug33719/bug: Update reference to Ant download page. (yoavs) /fix + fix +bug33883/bug: Bad options in SSL-HowTo. (yoavs) + /fix /changelog /subsection 1.15 +2 -2 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.14 retrieving revision 1.15 diff -u -r1.14 -r1.15 --- ssl-howto.xml 1 Feb 2005 21:07:29 - 1.14 +++ ssl-howto.xml 23 Mar 2005 16:31:41 - 1.15 @@ -214,8 +214,8 @@ /p pTo import an existing certificate signed by your own CA into a PKCS12 keystore using OpenSSL you would execute a command like: -sourceopenssl pkcs12 -export -infile mycert.crt -inkey mykey.key \ --outfile mycert.p12 -name tomcat -CAfile myCA.crt \ +sourceopenssl pkcs12 -export -in mycert.crt -inkey mykey.key \ +-out mycert.p12 -name tomcat -CAfile myCA.crt \ -caname root -chain /source For more advanced cases, consult the a href=http://www.openssl.org/;OpenSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/02/01 13:04:30 Modified:webapps/docs Tag: TOMCAT_5_0 changelog.xml ssl-howto.xml Log: Bugzilla 33204. Revision ChangesPath No revision No revision 1.70.2.92 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.70.2.91 retrieving revision 1.70.2.92 diff -u -r1.70.2.91 -r1.70.2.92 --- changelog.xml 1 Feb 2005 20:54:12 - 1.70.2.91 +++ changelog.xml 1 Feb 2005 21:04:30 - 1.70.2.92 @@ -20,6 +20,9 @@ fix bug32210/bug: Fixed Realm HowTo. (yoavs) /fix + fix +bug33204/bug: Fixed SSL HowTo. (yoavs) + /fix /changelog /subsection /section 1.11.2.3 +1 -1 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.11.2.2 retrieving revision 1.11.2.3 diff -u -r1.11.2.2 -r1.11.2.3 --- ssl-howto.xml 18 Nov 2004 15:01:03 - 1.11.2.2 +++ ssl-howto.xml 1 Feb 2005 21:04:30 - 1.11.2.3 @@ -152,7 +152,7 @@ simply prefixing the address with codehttps:/code instead of codehttp:/code. Any pages which absolutely strongrequire/strong a secure connection should check the protocol type associated with the -page request and take the appropriate action of codehttps/code is not +page request and take the appropriate action if codehttps/code is not specified./p pFinally, using name-based virtual hosts on a secured connection can be - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2005/02/01 13:07:29 Modified:webapps/docs changelog.xml ssl-howto.xml Log: Bugzilla 33204. Revision ChangesPath 1.230 +8 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.229 retrieving revision 1.230 diff -u -r1.229 -r1.230 --- changelog.xml 29 Jan 2005 19:48:25 - 1.229 +++ changelog.xml 1 Feb 2005 21:07:29 - 1.230 @@ -27,6 +27,14 @@ /section section name=Tomcat 5.5.8 (yoavs) + subsection name=General +changelog + fix +bug33204/bug: Fixed SSL HowTo page. (yoavs) + /fix +/changelog + /subsection + subsection name=Catalina changelog fix 1.14 +1 -1 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.13 retrieving revision 1.14 diff -u -r1.13 -r1.14 --- ssl-howto.xml 18 Nov 2004 14:51:35 - 1.13 +++ ssl-howto.xml 1 Feb 2005 21:07:29 - 1.14 @@ -152,7 +152,7 @@ simply prefixing the address with codehttps:/code instead of codehttp:/code. Any pages which absolutely strongrequire/strong a secure connection should check the protocol type associated with the -page request and take the appropriate action of codehttps/code is not +page request and take the appropriate action if codehttps/code is not specified./p pFinally, using name-based virtual hosts on a secured connection can be - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2004/11/18 06:51:35 Modified:webapps/docs changelog.xml ssl-howto.xml Log: Bugzilla 22679: misc addition to SSL HowTo. Revision ChangesPath 1.171 +3 -0 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.170 retrieving revision 1.171 diff -u -r1.170 -r1.171 --- changelog.xml 18 Nov 2004 14:23:55 - 1.170 +++ changelog.xml 18 Nov 2004 14:51:35 - 1.171 @@ -35,6 +35,9 @@ fix bug31132/bug: Better -x/-r support for OS/400 in startup scripts. (yoavs) /fix + update +bug22679/bug: Added misc note on accessing session ID to SSL-HowTo. (yoavs) + /update /changelog /subsection 1.13 +20 -4 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.12 retrieving revision 1.13 diff -u -r1.12 -r1.13 --- ssl-howto.xml 1 Sep 2004 22:04:27 - 1.12 +++ ssl-howto.xml 18 Nov 2004 14:51:35 - 1.13 @@ -8,13 +8,14 @@ properties author email=[EMAIL PROTECTED]Christopher Cain/author +author email=[EMAIL PROTECTED]Yoav Shapira/author titleSSL Configuration HOW-TO/title /properties body -section name=Quick-Start Version +section name=Quick Start blockquoteem pThe description below uses the variable name $CATALINA_HOME @@ -173,14 +174,16 @@ section name=Configuration -subsection name=Download and Install JSSE +subsection name=Download and Install JSSE (if needed) +pNote that JSSE is bundled with Sun's JDK 1.4 and later, so if you're using +JDK 1.4 and later, you can skip this step./p + pDownload the emJava Secure Socket Extensions/em (JSSE) package, version 1.0.3 or later, from a href=http://java.sun.com/products/jsse/;http://java.sun.com/products/jsse//a. If you built Tomcat from source, you have probably already downloaded this -package. If you are running JDK 1.4.x, these classes have -been integrated directly into the JDK, so you can skip this entire step./p +package./p pAfter expanding the package, there are two ways to make it available to Tomcat (choose one or the other):/p @@ -502,6 +505,19 @@ information, at a href=http://jakarta.apache.org/site/mail.html;http://jakarta.apache.org/site/mail.html;/a./p +/section + +section name=Miscellaneous Tips and Bits + +pTo access the SSL session ID from the request, use:br / + + code +String sslID = (String)request.getAttribute(javax.servlet.request.ssl_session); + /code +br / +For additional discussion on this area, please see +a href=http://issues.apache.org/bugzilla/show_bug.cgi?id=22679;Bugzilla/a. +/p /section /body - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml ssl-howto.xml
yoavs 2004/11/18 07:01:03 Modified:webapps/docs Tag: TOMCAT_5_0 changelog.xml ssl-howto.xml Log: Bugzilla 22678: misc addition to SSL HowTo Revision ChangesPath No revision No revision 1.70.2.74 +3 -1 jakarta-tomcat-catalina/webapps/docs/changelog.xml Index: changelog.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/changelog.xml,v retrieving revision 1.70.2.73 retrieving revision 1.70.2.74 diff -u -r1.70.2.73 -r1.70.2.74 --- changelog.xml 18 Nov 2004 14:38:14 - 1.70.2.73 +++ changelog.xml 18 Nov 2004 15:01:03 - 1.70.2.74 @@ -26,7 +26,9 @@ fix bug31132/bug: Modified startup scripts for better OS/400 -x/-r handling. (yoavs) /fix - + update +bug22679/bug: Added misc note on accessing session ID to SSL-HowTo. (yoavs) + /update /changelog /subsection 1.11.2.2 +19 -4 jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml Index: ssl-howto.xml === RCS file: /home/cvs/jakarta-tomcat-catalina/webapps/docs/ssl-howto.xml,v retrieving revision 1.11.2.1 retrieving revision 1.11.2.2 diff -u -r1.11.2.1 -r1.11.2.2 --- ssl-howto.xml 28 Oct 2004 20:30:52 - 1.11.2.1 +++ ssl-howto.xml 18 Nov 2004 15:01:03 - 1.11.2.2 @@ -8,13 +8,14 @@ properties author email=[EMAIL PROTECTED]Christopher Cain/author +author email=[EMAIL PROTECTED]Yoav Shapira/author titleSSL Configuration HOW-TO/title /properties body -section name=Quick-Start Version +section name=Quick Start blockquoteem pThe description below uses the variable name $CATALINA_HOME @@ -173,14 +174,15 @@ section name=Configuration -subsection name=Download and Install JSSE +subsection name=Download and Install JSSE (if needed) +pNote that JSSE is bundled with Sun's JDK 1.4 and later, so if you're using + JDK 1.4 and later, you can skip this step./p pDownload the emJava Secure Socket Extensions/em (JSSE) package, version 1.0.3 or later, from a href=http://java.sun.com/products/jsse/;http://java.sun.com/products/jsse//a. If you built Tomcat from source, you have probably already downloaded this -package. If you are running JDK 1.4.x, these classes have -been integrated directly into the JDK, so you can skip this entire step./p +package./p pAfter expanding the package, there are two ways to make it available to Tomcat (choose one or the other):/p @@ -503,6 +505,19 @@ a href=http://jakarta.apache.org/site/mail.html;http://jakarta.apache.org/site/mail.html;/a./p /section + +section name=Miscellaneous Tips and Bits + + pTo access the SSL session ID from the request, use:br / + + code + String sslID = (String)request.getAttribute(javax.servlet.request.ssl_session); + /code + br / + For additional discussion on this area, please see + a href=http://issues.apache.org/bugzilla/show_bug.cgi?id=22679;Bugzilla/a. + /p + /section /body - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]