RE: [PROPOSAL AJP14] AJP13 Evolution

Thu, 10 May 2001 05:34:24 -0700 

That's present in AJP14 description about 
negociation flags :)

- Negociations Flags -

AJP14_CONTEXT_INFO_NEG   0x80000000     /* web-server want context info
after login */
AJP14_CONTEXT_UPDATE_NEG 0x40000000 /* web-server want context updates */
AJP14_GZIP_STREAM_NEG    0x20000000 /* web-server want compressed stream */
AJP14_DES56_STREAM_NEG   0x10000000 /* web-server want crypted DES56 stream
with secret key */
AJP14_SSL_VSERVER_NEG    0x08000000 /* Extended info on server SSL vars */
AJP14_SSL_VCLIENT_NEG    0x04000000 /* Extended info on client SSL vars */
AJP14_SSL_VCRYPTO_NEG    0x02000000 /* Extended info on crypto SSL vars */
AJP14_SSL_VMISC_NEG      0x01000000 /* Extended info on misc SSL vars */

AJP14_SSL_VCRYPTO_NEG flag !)



-
Henri Gomez                 ___[_]____
EMAIL : [EMAIL PROTECTED]        (. .)                     
PGP KEY : 697ECEDD    ...oOOo..(_)..oOOo...
PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 



>-----Original Message-----
>From: Craig R. McClanahan [mailto:[EMAIL PROTECTED]]
>Sent: Wednesday, May 09, 2001 1:59 AM
>To: [EMAIL PROTECTED]
>Subject: RE: [PROPOSAL AJP14] AJP13 Evolution
>
>
>Just as a note, if you want AJP14 to be usable in a Servlet 2.3
>environment, you *must* expose the cipher suite and key size 
>(which might
>be implied from the cipher suite name) to Tomcat, because 
>Tomcat must in
>turn expose them as request attributes to servlets processing SSL
>requests.
>
>In addition, if there is a client certificate included with 
>the request,
>it also needs to be exposed, but I believe that is already being done,
>isn't it?
>
>Craig
>
>
>On Wed, 9 May 2001, GOMEZ Henri wrote:
>
>> Many users have asked for more web-server env vars
>> they like to use also in Tomcat.
>> 
>> May be something to add to AJP14 will be the
>> ability to define a list of env vars to be forwarded
>> to Tomcat, the same way the SSL web-server vars are 
>> defined :
>> 
>> # What is the indicator for SSL session (default is SSL_SESSION_ID)
>> JkSESSIONIndicator SSL_SESSION_ID
>> # What is the indicator for client SSL cipher suit (default 
>is SSL_CIPHER)
>> JkCIPHERIndicator SSL_CIPHER
>> # What is the indicator for the client SSL certificated (default is
>> SSL_CLIENT_CERT)
>> JkCERTSIndicator SSL_CLIENT_CERT
>> 
>> May be with the directive 
>> 
>> JkEnvVars MYVAR1 MYVAR2 MYVAR3 MYVAR4...
>> 
>> 
>> The traffic will be more important but these informations
>> will be usefull for some...
>> 
>> What about that ?
>> 
>> 
>> -
>> Henri Gomez                 ___[_]____
>> EMAIL : [EMAIL PROTECTED]        (. .)                     
>> PGP KEY : 697ECEDD    ...oOOo..(_)..oOOo...
>> PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6 
>> 
>

Reply via email to