On Sat, 23 Jan 1999 12:37:07 -0500, Robert Spector <[EMAIL PROTECTED]> wrote:
>I'm going to answer my own question in this forum, since it may save
>someone else a good deal of time. The problem was to get information
>about the client's digital certificate in JKD 1.1.6 servlets run by JRun
>(2.2.x) using Apache and SSL on a Solaris machine. The difficulty is
>that the information is made available in a webserver-dependent fashion,
>and so (barring future API changes), there is no standard way to get at
>it.
>
>When the webserver is Apache, it turns out that one can easily get
>certificate information from a request header. Apache puts the decoded
>information into the environment variable $SSL_CLIENT_DN (Where, by the
>way, do other servers put it?). It can be retrieved in a servlet by
>calling
>
> request.getHeader("SSL_CLIENT_DN");
>[......]
>
>So far JRun has no special, additional facilities for getting at the
>certificate information (I'm told that JServ does), but will be adding
>them in a future release. The essential information, however, is easily
>accessible under JRun or, I suppose, any servlet engine cooperating with
>Apache.
I'm using Apache (Stronghold) with JServ and is _very_ interested if someone could
please tell me how the digital certificate can be retrieved.
The header I suppose will be retrieved by the method shown in this post, but is there
a way I can get hold of the whole certificate?
Regards
Bjarte Kr�ger Engedal
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
