, February 01, 2016 2:17 AM
To: Tomcat Users List
Subject: Re: client ssl renegotiation after invalidating session
Thank you very much for your reply,
I tried your solution on APR, NIO and BIO connectors but it seems my problem
comes from somewhere else.
From what I could gather, it is a matter of
; Sent: Friday, January 29, 2016 10:33 AM
> To: Tomcat Users List
> Subject: client ssl renegotiation after invalidating session
>
> I want to invalidate the client ssl cert authentication after the user
> logs out of my application.
>
> There is nothing about it in the docs and
-Original Message-
From: Gael Abadin [mailto:gael.aba...@imatia.com]
Sent: Friday, January 29, 2016 10:33 AM
To: Tomcat Users List
Subject: client ssl renegotiation after invalidating session
I want to invalidate the client ssl cert authentication after the user logs out
of my
I want to invalidate the client ssl cert authentication after the user logs
out of my application.
There is nothing about it in the docs and google just digs out this
unanswered old thread from this users list in 2007:
https://mail-archives.apache.org/mod_mbox/tomcat-users/200706.mbox/%3c306958.8
Is there a way in tomcat to re-negotiate client certificate after the http
session has been invalidated (it had been successfully authenticated once
before) in the app. i.e. without closing and starting a new client browser.
I tried accessing request attributes javax.servlet.request.X509Certifica
