Just as a note, if you want AJP14 to be usable in a Servlet 2.3
environment, you *must* expose the cipher suite and key size (which might
be implied from the cipher suite name) to Tomcat, because Tomcat must in
turn expose them as request attributes to servlets processing SSL
requests.
In addition, if there is a client certificate included with the request,
it also needs to be exposed, but I believe that is already being done,
isn't it?
Craig
On Wed, 9 May 2001, GOMEZ Henri wrote:
> Many users have asked for more web-server env vars
> they like to use also in Tomcat.
>
> May be something to add to AJP14 will be the
> ability to define a list of env vars to be forwarded
> to Tomcat, the same way the SSL web-server vars are
> defined :
>
> # What is the indicator for SSL session (default is SSL_SESSION_ID)
> JkSESSIONIndicator SSL_SESSION_ID
> # What is the indicator for client SSL cipher suit (default is SSL_CIPHER)
> JkCIPHERIndicator SSL_CIPHER
> # What is the indicator for the client SSL certificated (default is
> SSL_CLIENT_CERT)
> JkCERTSIndicator SSL_CLIENT_CERT
>
> May be with the directive
>
> JkEnvVars MYVAR1 MYVAR2 MYVAR3 MYVAR4...
>
>
> The traffic will be more important but these informations
> will be usefull for some...
>
> What about that ?
>
>
> -
> Henri Gomez ___[_]____
> EMAIL : [EMAIL PROTECTED] (. .)
> PGP KEY : 697ECEDD ...oOOo..(_)..oOOo...
> PGP Fingerprint : 9DF8 1EA8 ED53 2F39 DC9B 904A 364F 80E6
>
