[Bug 53459] New: clientAuth="optional" not documented - is it valid?

bugzilla Sat, 23 Jun 2012 06:56:18 -0700

https://issues.apache.org/bugzilla/show_bug.cgi?id=53459


          Priority: P2
            Bug ID: 53459
          Assignee: [email protected]
           Summary: clientAuth="optional" not documented - is it valid?
          Severity: normal
    Classification: Unclassified
                OS: All
          Reporter: [email protected]
          Hardware: All
            Status: NEW
           Version: unspecified
         Component: Documentation
           Product: Tomcat 7

The file ssl-howto.xml includes the line

  clientAuth="optional" SSLProtocol="TLSv1"/&gt;

However, the corresponding description of the clientAuth parameter in
config/http.xml does not mention "optional" as a possible parameter value, only
"true", "false", "want".

The code in util.net.jsse.JSSESocketFactory only checks for

"true", "yes" and "want"; AFAICT everthing else is treated as "false".

It looks like the entry in ssl-howto.xml is wrong.

Also, perhaps the description in http.xml should include "yes" as an alias for
"true".

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[Bug 53459] New: clientAuth="optional" not documented - is it valid?

Reply via email to