My way of doing this has always been to put the path to config files in
the web.xml and then pull the path into the application through the
context.
It's very configurable as the code is moved up, and leaves the developer
free to access the file without caring where it is.
I realize there may be r
f matching certs to users, then you'll
probably
need to create your own custom Realm to do it.
"Steinberger, Richard" <[EMAIL PROTECTED]> wrote in
message
news:[EMAIL PROTECTED]
.
Hello All!
I am trying to setup client certificate authentication in 5.5.12 on
win
As a follow-up, the CAs are in the jre/.../cacerts store as well as
being in the .truststore
Rick
-Original Message-
From: Steinberger, Richard [mailto:[EMAIL PROTECTED]
Sent: Thursday, November 03, 2005 12:06 PM
To: users@tomcat.apache.org
Subject: Client Certificate Authentication
Hello All!
I am trying to setup client certificate authentication in 5.5.12 on
windows.
I am getting the following error page
HTTP Status 401 - Cannot authenticate with the provided credentials
type Status report
message Cannot authent
Hello!
I have 2 way SSL running, and all is well until I try to get the
certificate off of the request...
java.security.cert.X509Certificate[] certs =
(java.security.cert.X509Certificate[])request.getAttribute("java.securit
y.cert.X509Certificate");
isSecure is true.
sslID is provided.
Thanks Jim,
You nailed it, this was the missing link.
Rick
-Original Message-
From: James Rome [mailto:[EMAIL PROTECTED]
Sent: Thursday, October 27, 2005 4:14 PM
To: Steinberger, Richard
Subject: Two-way SSL
The client browser only presents certificates signed by a CA that the
Server
I have installed Apache Tomcat Version 5.5.9 on a Windows platform, and
have one-way SSL running.
However, when I turn on client authentication for two-way SSL, and the
client browser presents the certificate list, it is empty.
Even though there are certs registered.
Does the server certifica