as craig and bill barker have said if you want to force the browser to transmit your cert set your <Connector clientAuth="true" M- This e-mail communication and any attachments may contain confidential and privileged information for the use of the designated recipients named above. If you are not the intended recipient, you are hereby notified that you have received this communication in error and that any review, disclosure, dissemination, distribution or copying of it or its conte ----- Original Message ----- From: "Сергей Ковтун" <[EMAIL PROTECTED]> To: <users@tomcat.apache.org> Sent: Tuesday, October 24, 2006 7:23 AM Subject: give X509Certificate from ssl connection
Dear friends! I only start to work with tomcat, and already asked about it but have not received the answer. Working with tomcat without ARP I could receive from request the information necessary to me The following code: ============================================================ public synchronized void doPost (HttpServletRequest request, HttpServletResponse response) throws ServletException, OException { if (request.isSecure()) X509Certificate[]cr = (X509Certificate[]) request.getAttribute ("javax.servlet.request.X509Certificate"); ... ============================================================ If work goes with ARP (tcnative-1.dll) I cannot receive this information any more. Probably this information can be received a different way, but I do not know as. Here a fragment of mine server.xml: ============================================================ <Connector port = "8443" maxHttpHeaderSize = "8192" maxThreads = "150" minSpareThreads = "25" maxSpareThreads = "75" enableLookups = "false" disableUploadTimeout = "true" acceptCount = "100" scheme = "https" secure = "true" SSLEngine = "on" SSLProtocol = "all" SSLCipherSuite = "ALL" SSLPassword = "pass" SSLVerifyClient = "require" SSLCertificateFile = " $ {catalina.base}/conf/localhost.crt " SSLCertificateKeyFile = " $ {catalina.base}/conf/localhost.key " SSLCACertificateFile = "${catalina.base}/conf/ca-bundle-client.crt" /> ============================================================ Thus connection with the client occurs without mistakes, and the necessary data from servlet I receive (i.e. the identification of the client works) but given SSL are necessary for me Connections. Beforehand I thank all answered to me! -- Best regards, Sergey Kowtoon. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]