[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [iaik-ssl] ssl and servlets

As I said, the code you posted is the best shot at a portable solution
you can get. Whether or not that works with whatever servlet engine you
are using is something I cannot answer. You should contact your servlet
engine manufacturer about that.


 Andreas Sterbenz              mailto:Andreas.Sterbenz@iaik.tu-graz.ac.at

-----Ursprüngliche Nachricht-----
Von: Colin Chalmers <Colin.Chalmers@maxware.nl>
An: <iaik-ssl@iaik.tu-graz.ac.at>
Gesendet: Dienstag, 14. September 1999 09:54
Betreff: Re: [iaik-ssl] ssl and servlets

> Andreas,
> I already understood that I was "Barking up the wrong tree" with the
> that I had, I knew it was specific to the "JWS". As I'm trying to right
> which should be server independant I was hoping for an answer (a couple
> lines???) on how you guys read in the certificate using the standard
> is it all so servlet engine specific that there's no common way of
> this?
> colin
> ----- Original Message -----
> From: Andreas Sterbenz <Andreas.Sterbenz@iaik.tu-graz.ac.at>
> To: Colin Chalmers <collie@dds.nl>; <iaik-ssl@iaik.tu-graz.ac.at>
> Sent: Thursday, May 13, 1999 6:40 PM
> Subject: Re: [iaik-ssl] ssl and servlets
> I am sorry, but I cannot help you with that. Our servlets do not use
> the Web server's SSL at all and initiate all SSL connections themselves
> using the IAIK API calls.
> JavaSoft has defined the way you quote to access the SSL client
> certificate chain from a servlet, but I don't think this is widely
> implemented. If it does not work on your server, your servlet engine
> likely does not set these parameters. You should contact the developers
> of your servlet runner to find out if and how SSL session information
> be accessed.
>  Andreas Sterbenz
> -----Ursprüngliche Nachricht-----
> Von: Colin Chalmers <Colin.Chalmers@maxware.nl>
> An: <iaik-ssl@iaik.tu-graz.ac.at>
> Gesendet: Montag, 13. September 1999 17:55
> Betreff: Re: [iaik-ssl] ssl and servlets
> > Once again thank-you for the swift reply. I understand I should be
> patient
> > and wait on the next beta release but perhaps you could give me a
> pointer in
> > the right direction. In my servlet book I have an example for reading
> the
> > attributes of a certificate, however I understand from the author
> the
> > code is specific to th Java Web Server. Could you give me a tip on
> to
> > change this code so that I can at least read the certificates?  I
> be
> > most grateful.
> --
> Mailinglist-archive at
> To unsubscribe send an email to listserv@iaik.tu-graz.ac.at with the
folowing content: UNSUBSCRIBE iaik-ssl