2. It seems me that checking of revocation of client certificate is done
via "static" crl files located in APR's SSLCARevocationPath or JSSE's
crlFile. If I write a cron task that periodically downloads crl list(s),
will the Tomcat react on this change of CRL file(s)? I've found in
org.apache.ht
On 10/07/2013 12:25, Jan Vávra wrote:
> Hi all.
> I've studied the documentation at
> http://tomcat.apache.org/tomcat-7.0-doc/config/http.html#SSL_Support and
> I have several questions on it.
>
> 1. While the APR/Native has config option SSLCACertificateFile that
> defines the set of allowed clie
