----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
Hi Thierry,
I have figured out the same. But currently I'm not able to extend this file with
SSL env variables.
If I do this the jserv does not react anymore. If I have more information I will
let you know.
But maybe you are able to get was we want to expect :-). The general question
here is
whether the ajp is transmitting the whole env from the httpd process to the
jserv process.
If yes, it shouldn't be a problem to get this information. I had looked into the
c sources but I didn't
found any hint which does prevent transmitting the whole env
Marcus
BERWART Thierry wrote:
> ----------------------------------------------------------------
> BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
> WHEN YOU POST, include all relevant version numbers, log files,
> and configuration files. Don't make us guess your problem!!!
> ----------------------------------------------------------------
>
> Hello friends,
>
> I decompiled the JServConnection.java from the apache/libexe/ApacheJserv.jar
> This file manage the request like getAttribute and getHeader ...
> But i didn't find nothing about SSL in this file !!!
> And i found on another site a JServConnection.java .
> This one is very different from the mine !!!
>
> I think that is the source of my problem !
> What do you think about it ??
>
> PS i can send the 2 differents files if you want ...
>
> Thanks you in advance !
>
> Thierry
>
> -----Original Message-----
> From: BERWART Thierry [mailto:[EMAIL PROTECTED]]
>
> Hello,
>
> I have some problems for getting infos from the certificate :
> i can't get the SSL Variables like SSL_PROTOCOL or SSL_CLIENT_S_DN in a
> servlet.
> When i try to execute the printenv CGI, that works !
> It display all the infos and the SSL variables.
>
> Then, i think that there is a problem between apache and JServ... it's
> perhaps a configuration problem...
>
> My server :
> Linux RedHat 6.1
> Apache WebServer 1.3.12
> JServ 1.1.2
> ModSSL 2.6.5-1.3.12
>
> Thank you !
>
> Thierry
>
> -----Original Message-----
> From: BERWART Thierry [mailto:[EMAIL PROTECTED]]
> Sent: Monday, August 28, 2000 11:08 AM
> To: [EMAIL PROTECTED]
> Subject: FW: Request/read digital certificates from a servlet
>
> Hello,
>
> I try many code for getting client certificate in a servlet but
> nothing works !
>
> I have :
> Linux RedHat 6.1
> Apache WebServer 1.3.12
> JServ 1.1.2
>
> apparently, the way for getting certificate infos depends on the webserver
> ?! ...
>
> Please help me ! :-)
>
> Thierry
>
> -----Original Message-----
> From: Traian Tirzaman [mailto:[EMAIL PROTECTED]]
> Sent: Friday, August 25, 2000 10:03 PM
> To: BERWART Thierry
> Subject: Re: Request/read digital certificates from java From
> JavaSoft.com
>
> Hi Thierry,
>
> Here's some code snippets that you could use to read a
> digital certificate from java code (servlets):
>
> // some imports ....
> import java.io.*;
> import java.util.*;
> import java.security.*;
> import javax.servlet.*;
> import javax.servlet.http.*;
> //import java.security.cert.X509Certificate;
> import sun.security.x509.*;
>
> String cipherSuite =
> (String)req.getAttribute("javax.net.ssl.cipher_suite");
>
> X509Cert[] certChain =
> (X509Cert[])req.getAttribute("javax.net.ssl.peer_certificates");
>
> for(int i = 0; i < certChain.length; ++i) {
> X509Cert cert = (X509Cert)certChain[i];
> Principal p = cert.getPrincipal();
> out.println("Principal for this certificate: " +
> p.getName());
> out.println("Looking for \"CN=Joe Doe\" ....");
> if(p.getName().indexOf("CN=joe doe") != -1)
> {
> out.println("joe doe has been authenticated
> SUCCESSFULLY !!!!");
> }
>
> Once you get the "X509Cert" object you can call a lot
> of different methods on it to get data and check it
> against whatever your security model is. I wrote this
> code awhile ago, so you may want to check it against
> newer classes, methods, etc.
>
> Good luck !
>
> --- BERWART Thierry <[EMAIL PROTECTED]> wrote:
> > Hello,
> >
> > I saw your message in "Java programming" forum.
> > And i have the same question/problem and i think you
> > can help me !!
> >
> > did you find any answers ??
> >
> > thanks !
> >
> > Thierry
> >
> >
> > >>Is it possible to request and read a digital
> > certificate from Java
> > (servlets) code ? I'd like to turn off the digital
> > certificate
> > >>authentication done by the Web server and from a
> > java servlet, request a
> > client certificate and read it.
> > >>Any help would be greatly appreciated.
> > >>P.S. My e-mail: [EMAIL PROTECTED]
>
> =====
> Traian Tirzaman
>
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Mail - Free email you can access from anywhere!
> http://mail.yahoo.com/
>
> ___________________________________________________________________________
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
> of the message "signoff SERVLET-INTEREST".
>
> Archives: http://archives.java.sun.com/archives/servlet-interest.html
> Resources: http://java.sun.com/products/servlet/external-resources.html
> LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
>
> ___________________________________________________________________________
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
> of the message "signoff SERVLET-INTEREST".
>
> Archives: http://archives.java.sun.com/archives/servlet-interest.html
> Resources: http://java.sun.com/products/servlet/external-resources.html
> LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
>
> --
> --------------------------------------------------------------
> Please read the FAQ! <http://java.apache.org/faq/>
> To subscribe: [EMAIL PROTECTED]
> To unsubscribe: [EMAIL PROTECTED]
> Search Archives:
> <http://www.mail-archive.com/java-apache-users%40list.working-dogs.com/>
> Problems?: [EMAIL PROTECTED]
--
* Linux Viruscan.....
Windows 95/98/NT/WIN2000 Found Remove it ? (Y/y)
*************************************************
Marcus Lachmanez
System Analyst
INTERNET PRODUCTS TEAM
Oracle Germany
*************************************************
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Search Archives:
<http://www.mail-archive.com/java-apache-users%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
