On Wed, 17 Oct 2001 09:54:21 -0700, in soap you wrote: >> If you want to proxy SSL connections, then you need to use the CONNECT >> method to the proxy, this requires the proxy to support using CONNECT, >> and for the http client code to recognize that you're trying to proxy >> SSL, and to send the CONNECT command first. >> >> I don't know if there's any support for this in the Apache SOAP http >> stack. > >Does anybody know if Apache SOAP 2.2 supports this? I'm presuming right now >that SOAP is sending SSL data to the proxy server, requiring the proxy >server to tunnel the https. But when that occurs, how does the proxy server >know where to forward the request to since from what I can see, the >destination URL is part of the http header, which would be encrypted. > >Does it work by having the proxy decrypt the SSL from my client, then >re-encrypt using a different SSL to the web server? Seems unlikely, but I'm >otherwise unsure how the proxy can know where to send the message. > >David
That shouldn't work, as the proxy certificate name won't match the destination server name, so the client stack should fail the connection. Cheers Simon
