On Fri, 14 Sep 2001, GOMEZ Henri wrote:
> Date: Fri, 14 Sep 2001 10:37:47 +0200
> From: GOMEZ Henri <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> To: [EMAIL PROTECTED]
> Subject: RE: mod_webapp/SSL and TC 4.0
>
> >> It should works at least for Apache 1.3/2.0.
> >> To follow the Servlet 2.3, take a look at
> >> jk in J-T-C since it also handle the SSL_KEY_SIZE.
> >
> >Yes, will do... Check out # 3510...
>
> You'll have also to grab other information
> like cipher suite used and bit size of the algorithm
>
> SPEC 2.3 : SRV.4.7 SSL Attributes
>
> Nota: the key size and cipher suite used are not allways
> available in web-server (IIS for example)
>
>
In fact the key size isn't directly available from JSSE, either. I had to
infer it from the cipher suite to set this attribute - see the expose()
method in org.apache.catalina.valves.CertificatesValve, which uses pattern
matching on the cipher suite name.
Craig
