Dave,
On 2/1/23 06:17, Dave Breeze wrote:
Chris
thanks for your mail
Apologies for confusion. Yes I am requesting certificates
- sslCon.setProperty("clientAuth", "required") and a user can only connect
by supplying a valid certificate.
I removed constraints from the web.xml as I did not want ac
Hello Dave,
> -Ursprüngliche Nachricht-
> Von: Dave Breeze
> Gesendet: Mittwoch, 1. Februar 2023 12:17
> An: Tomcat Users List
> Betreff: Re: Tomcat client certicate authentication
>
> Chris
> thanks for your mail
> Apologies for confusion. Yes I
Chris
thanks for your mail
Apologies for confusion. Yes I am requesting certificates
- sslCon.setProperty("clientAuth", "required") and a user can only connect
by supplying a valid certificate.
I removed constraints from the web.xml as I did not want access to a
servlet restricted to a role - I ne
Dave,
On 1/30/23 04:21, Dave Breeze wrote:
Thanks Chris
the application is requesting certificate authentication - and this is
working - it is just the mapping of users to roles that is not
happening
No, the server is requesting the certificate information; the
application is not. From your
Thanks Chris
the application is requesting certificate authentication - and this is
working - it is just the mapping of users to roles that is not
happening
I implemented an org.apache.catalina.realm.X509UsernameRetriever and
configured using X509UsernameRetrieverClassName but it was never
called
Dave,
On 1/28/23 09:28, Dave Breeze wrote:
this is Tomcat 9.0 running embedded
I am trying to authorize access by client certificate. I want the
servlet response to be tailored to the user's role. In other words I
am not looking to deny access by role.
The connector has sslCon.setProperty("cli
hi
this is Tomcat 9.0 running embedded
I am trying to authorize access by client certificate. I want the
servlet response to be tailored to the user's role. In other words I
am not looking to deny access by role.
The connector has sslCon.setProperty("clientAuth", "required");
The context has a co
