Anonymous | Login | Signup for a new account | 12-17-2024 08:38 PST |
Main | My View | View Issues | Change Log | Docs |
Viewing Issue Simple Details [ Jump to Notes ] | [ View Advanced ] [ Issue History ] [ Print ] | ||||||||
ID | Category | Severity | Reproducibility | Date Submitted | Last Update | ||||
0004052 | [Resin] | feature | always | 05-26-10 21:02 | 01-18-11 17:16 | ||||
Reporter | adamknight | View Status | public | ||||||
Assigned To | ferg | ||||||||
Priority | normal | Resolution | fixed | ||||||
Status | closed | Product Version | 3.1.10 | ||||||
Summary | 0004052: Optional JSSE verify-client setting not implemented | ||||||||
Description |
In the resin documentation it lists the verify-client setting for Open SSL based certificate authentication. A little experimentation lead me to discover that this setting worked for JSSE connections as well. Well, sort of works - required will require a certificate correctly, but Optional isn't implemented. This would be easy to add - insert this snippet: if ("optional".equals(_verifyClient)) sslServerSocket.setWantClientAuth(true); on line 265 of com.caucho.vfs.JsseSSLFactory.java (just above the "required" section) and Resin will request certificates from the browser but will carry on if none is supplied. |
||||||||
Additional Information | |||||||||
Attached Files | |||||||||
|
Notes | |
(0004613) adamknight 05-26-10 21:03 |
My licence # is 1011956 |
(0004964) ferg 01-18-11 17:11 |
network/0405 |
Mantis 1.0.0rc3[^]
Copyright © 2000 - 2005 Mantis Group
31 total queries executed. 27 unique queries executed. |