On Fri, Jul 23, 1999, Michael Bartlett wrote:
> I need to do login authentication using information stored in a class 2
> certificate. Basically the directory of the web site (apache) requires a
> class 2 cert. The certs are Verisign Onsite certificates which have 3 custom
> fields in them.
>
> So what I need to do is probe the cert that is presented to the server using
> PHP and take the uid from the cert and authenticate against a mysql database
> and log the user on.
>
> I've done this before using IIS and ASP *shudder* using source code that
> looks like this :
>
> <%
> response.write(Request.ClientCertificate("SUBJECTO") & "<br>")
> response.write(Request.ClientCertificate("SUBJECTOU"))
> %>
>
> But nobody on the php lists seems to know anything about certs, nor the
> people on the apache lists.
These stuff is provided by mod_ssl in the SSL_CLIENT_CERT_XX environment
variables. See the mod_ssl documentation for details.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]