I think I see how that would work for standard security - the part of the
problem that I am struggling with is that we are doing 2-way SSL.
I have clientauth="true" in the connector configuration in Tomcat's server.xml.
Basically, that has made it so that everyone who connects to the site has t
Hello all,
I am working on a project that would like to do something that I don't know how
to accomplish.
Is it possible to configure a site where certain contexts/directories on that
site require client authentication while others do not? (All communications
must be done via SSL on port 443
