SSL Client Authentication
-------------------------
Key: CLEREZZA-512
URL: https://issues.apache.org/jira/browse/CLEREZZA-512
Project: Clerezza
Issue Type: Question
Reporter: franco fallica
Priority: Minor
Hi,
We have the need for SSL Client Authentication and I'm not sure how we would do
that.
So this is the scenario:
We have a Jax.rs resource http://domain.com/something/store
This resource should only be accessible per https and only by "known users" and
they should be autenticated by a SSL Certificate. Other resources should still
be accessible over http with normal user login etc.
I understand that for this Clerezza needs to be started with the --https_port
and --https_keystore_password parameters. Additionaly I guess it needs
--https_keystore_clientauth need (not want), right?
And then we need to import the publicKey of the client to the keystore, but how
will this publicKey be mapped to a user in clerezza?
I also saw that in the repo is a foafssl bundle, is that what we need?
Can somebody please explain and/or point us to additional resources to read?
Thanks very much
franco
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
