possible problem with CLIENT-CERT login and security constraint on TOMCAT 4.0

Hi, I try to configure TOMCAT server to authenticate client with certificate on HTTPS protocol. My connector is configure to accept request on 8443 port like this :                    port="8443" minProcessors="5" maxProcessors="75"                acceptCount="10" debug="0" scheme="https" sec

Réf. : Re: possible problem with CLIENT-CERT loginand security constraint on TOMCAT 4.0

I think I have clearly describe my problem but It's certainly because of my poor english Craig I have set up a user name's  "OID.0.9.2342.19200300.100.1.1=mvittel, CN=michel vittel, O=frec.bull.fr" in my $CATALINA_HOME/conf/tomcat-user file. That doesn't work better ! That I want to say it

Tomcat IPV6 Test

Just for informationand little question at this end. I'am testing TOMCAT with java API for IPV6 at the moment and my only problem with your product is about traitment of number port in request Header which raise an NumberFormatException exception ... Function parseHeaders() in class apache/

Réf. : RE: X509 client certificate

Hi Stefan I try to extract certicate to my request like you say in your mail but I have an exception because object return by request.getAttribute( "javax.servlet.request.X509Certificate" ) method wasn't type of java.security.cert.X509Certificate but [Ljava.security.cert.X509Certificate; log

Réf. : RE: X509 client certificate

hello stefan, I prefere having two answer than any, so thank you for you help but... when I try with tomcat 4.0-m5 to sniffe my https request, I obtain this Request attributes : Request attributes:   filters.ExampleFilter.SERVLET_MAPPED = InvokerFilter(ApplicationFilterConfig[name=Servlet Mapp

RE:RE: Réf. : RE: X509 client certificate (Mr. McClanahan, please take alook at this)

Excuse for my determination but my problem was not solve... After change my serveur.xml to clientAuth="true"  like Craig R. McClanahan said, I fall again on my first exception when I try to extract the certificate request because object associate with ùrequest attributes nameés 'javax.servlet.

stupid question on array return by javax.servlet.request.X509Certificateattribute

Why the attribute 'javax.servlet.request.X509Certificate' return an array of X509Certificate. I don't understand how it's possible because when my client choose an certificate, he chooses only one... For my test array contain always one element... so is it an specification to anticipate the futu

Question about CLIENT-CERT on web.xml file ?

Hello, I try to use the auth-method of web.xml to CLIENT-CERT value like it's precise on web.dtd So the fragment of web.xml file :               CLIENT-CERT       Example Form-Based Authentication Area               /jsp/security/login/login.jsp         /jsp/security/login/error.jsp      

Re: Re: Question about CLIENT-CERT on web.xml file ?

Yes I understand what you said about CLIENT-CERT and I add a new entry in my tomcat-usr.xml file :         Functions getSubjectDN().getName() return OID.0.9.2342.19200300.100.1.1=mvittel, CN=michel vittel, O=frec.bull.fr value for the first certificate chain, so I consider this value is t

Question about auth-method=CLIENT-CERT on web.xml file ?

Yes I understand what you said about CLIENT-CERT and I add a new entry in my tomcat-usr.xml file :         Functions getSubjectDN().getName() return "OID.0.9.2342.19200300.100.1.1=mvittel, CN=michel vittel, O=frec.bull.fr" value for the first certificate chain, so I consider this