On 21-May-07, at 6:43 AM, Jerome Louvel wrote:
Hi all,
I've added support for client authentication in the SVN trunk
(upcoming 1.1). Only Simple connector has support to retrieve the
client certificates,
These two features are working well for me in 1.1b1.
More specifically, as expected, client authentication succeeds
against my CA and fails against foreign CA, or out of date
certificate. I haven't tested a revocation list.
getContext().getParameters().add("needClientAuthentication", "true")
And I can retrieve the certificate details that I need as follows:
List<X509Certificate> certs =
(List)req.getAttributes().get("org.restlet.https.clientCertificates");
X509Certificate firstCert = certs.get(0);
... firstCert.getSubjectX500Principal().getName() ...
Thankyou very much for the work.
--Toby
but other connectors should ask/require a certificate too if you
set the connector attributes correctly (see Javadocs for each
connector).
See details in the RFE:
http://restlet.tigris.org/issues/show_bug.cgi?id=281
I'm looking forward to getting your feed-back and test results. I
will post a first 1.1 snapshot soon.
Best regards,
Jerome
