> From: Yuval Perlov [mailto:[EMAIL PROTECTED]
> Is anyone aware of a way to programatically decide which SSL
> certificate to use?
> I am exploring the option of letting the user upload her own
> certificate. Of course
> I only want that user to use the newly uploaded certificate.
Do you mean the server certificate, or a client certificate? If you mean the
server certificate, this is prevented by the SSL spec. SSL negotiation happens
at connection time - before the HTTP request containing the URL, host header or
any authentication information is transmitted. So the server certificate that
is used cannot depend on which user is present or which URL (or even site) they
are requesting. You know the IP address requesting the connection, but that
may be a multi-user system and cannot be used to distinguish users.
- Peter
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
