Antonio Albendiz wrote:
If you configure tomcat server in SSL mode, you can say what to do. In your
server.xml, at the ssl connector it says what to do with the users. If you
configure with no authentication, all users can see all. If you say want I
think it says what to do with the user and if you put TRUE it means that the
user should have a good certificate.
I have already tried all the settings of the clientAuth attribute. If I
set to "false" all the users can pass, and even if a user has a valid
certificate I can't read it. If I set to "want" and the user has no
certificate or it has expired (which are the relevant cases for me) the
server answers with a 400 error. If I set to "true" in these cases the
connection is dropped and I see no page in the browser.
What I want to do is to let the user pass even with an expired
certificate and possibily to give a kinder message when he/she has no
certificate.
Fabrizio
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
