Hello Alex, this is not solving your problem... but we use a dedicated web server (apache) with http proxy to do all the ssl/tls stuff (this has also more performance). Also it checks the client certificate and it's possible to add the certificate owner in the http header.
Best Regards, Mike > On 4. Mar 2020, at 08:02, Alex Weirig <[email protected]> wrote: > > Hello, > > I have multiple REST webservices running in karaf using Apache Aries JAX-RS > Whiteboard. > > Now I'd need to create a webservice that should require a client certificate > authentication. > > Is there an example somewhere on how to implement this authentication > (filter, ...?) is an KISS OSGi approach? > > I found some code samples using google but they all seem relatively > complicated or relying on other frameworks (Spring ...). > > Many thanks in advance for your help > > -- > > Mat frëndleche Gréiss, > Mit freundlichen Grüßen, > Meilleures salutations, > Kind regards, > > Alex Weirig > Responsable Technique > Ville de Luxembourg > Service Enseignement > Centre Technolink > > Tel +352 4796 - 6127 <tel:+35247966127> > Fax +352 42 88 81 > Email [email protected] <mailto:[email protected]> > www.vdl.lu <http://www.vdl.lu/> // www.technolink.lu > <http://www.technolink.lu/> > > Centre Technolink > 2, rue Charles de Tornaco > L-2623 LUXEMBOURG > > indoors.this.blesses > <https://map.what3words.com/indoors.this.blesses>schaufel.besten.kopie > <https://map.what3words.com/schaufel.besten.kopie>supposons.levage.venger > <https://map.what3words.com/supposons.levage.venger><alex_weirig.vcf>
