Re: give X509Certificate from ssl connection

[Martin Gainty]

as craig and bill barker have said if you want to force the browser to transmit 
your cert set your <Connector 
 clientAuth="true"
M-
This e-mail communication and any attachments may contain confidential and 
privileged information for the use of the 
designated recipients named above. If you are not the intended recipient, you 
are hereby notified that you have received
this communication in error and that any review, disclosure, dissemination, 
distribution or copying of it or its 
conte
----- Original Message ----- 
From: "Сергей Ковтун" <[EMAIL PROTECTED]>
To: <users@tomcat.apache.org>
Sent: Tuesday, October 24, 2006 7:23 AM
Subject: give X509Certificate from ssl connection


Dear friends!

I only start to work with tomcat, and already asked about it but have not  
received the answer.
Working with tomcat without ARP I could receive from request the  
information necessary to me
The following code:
============================================================
public synchronized void doPost (HttpServletRequest request,  
HttpServletResponse response)
  throws ServletException, OException {
  if (request.isSecure())
X509Certificate[]cr = (X509Certificate[]) request.getAttribute  
("javax.servlet.request.X509Certificate");
   ...
============================================================
If work goes with ARP (tcnative-1.dll) I cannot receive this information  
any more.
Probably this information can be received a different way, but I do not  
know as.
Here a fragment of mine server.xml:
============================================================
<Connector port = "8443" maxHttpHeaderSize = "8192"
maxThreads = "150" minSpareThreads = "25" maxSpareThreads = "75"
enableLookups = "false" disableUploadTimeout = "true"
acceptCount = "100" scheme = "https" secure = "true"
SSLEngine = "on"
SSLProtocol = "all"
SSLCipherSuite = "ALL"
SSLPassword = "pass"
SSLVerifyClient = "require"
SSLCertificateFile = " $ {catalina.base}/conf/localhost.crt "
SSLCertificateKeyFile = " $ {catalina.base}/conf/localhost.key "
SSLCACertificateFile = "${catalina.base}/conf/ca-bundle-client.crt"
/>
============================================================
Thus connection with the client occurs without mistakes, and the necessary  
data from
servlet I receive (i.e. the identification of the client works) but given  
SSL are necessary for me
Connections. Beforehand I thank all answered to me!


-- 
   Best regards,
   Sergey Kowtoon.

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]