OK
I enabled JK1 debug level logging and can see that IIS6 *is* relaying the
client authenticated SSL details in the AJP stream.
I see attributes called:
CERT_ISSUER
CERT_SUBJECT
CERT_COOKIE
HTTPS_SERVER_SUBJECT
CERT_FLAGS
HTTPS_SECRETKEYSIZE
CERT_SERIALNUMBER
HTTPS_SERVER_ISSUER
HTTPS_KEYSIZE
JK1 appears to ignore them!
So is this a defect in JK 1.2.23 or something I need to 'switch-on'?
- Simon Temple
21 June 2007 15:38
To: users@tomcat.apache.org
cc:
From: [EMAIL PROTECTED]
Subject: No X509Certificate Attribute In IIS Redirected Request
Hi,
I'm using:
IIS V6.0
JK 1.2.23
Tomcat 6.0.13
No X509Certificate attribute is present in the request header received by
my servlet when using Client Authenticated SLL with IIS6 and JK1.
If I use Apache 2.2 with the mod_proxy modules it works fine.
Is this a bug? If so, in what... IIS or JK1?
Does anyone know of a workaround? Will JK2 fix my problem?
My customer must use IIS... so replacing with Apache is not an option. :-(
TIA
Simon Temple
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
