Mantis - Resin
Viewing Issue Advanced Details
ID: Category: Severity: Reproducibility: Date Submitted: Last Update:
4052 feature always 05-26-10 21:02 01-18-11 17:16
Reporter: adamknight Platform:  
Assigned To: ferg OS:  
Priority: normal OS Version:  
Status: closed Product Version: 3.1.10  
Product Build: Resolution: fixed  
Projection: none      
ETA: none Fixed in Version: 4.0.15  
Summary: 0004052: Optional JSSE verify-client setting not implemented
Description: In the resin documentation it lists the verify-client setting for Open SSL based certificate authentication. A little experimentation lead me to discover that this setting worked for JSSE connections as well. Well, sort of works - required will require a certificate correctly, but Optional isn't implemented.

This would be easy to add - insert this snippet:

    
      if ("optional".equals(_verifyClient))
          sslServerSocket.setWantClientAuth(true);

on line 265 of com.caucho.vfs.JsseSSLFactory.java (just above the "required" section) and Resin will request certificates from the browser but will carry on if none is supplied.
Steps To Reproduce:
Additional Information:
Relationships
Attached Files:

Notes
(0004613)
adamknight   
05-26-10 21:03   
My licence # is 1011956
(0004964)
ferg   
01-18-11 17:11   
network/0405