-
1. Re: CLIENT-CERT authantication in Jetty
shorero Oct 17, 2002 8:45 AM (in response to tomasg)I've got the same problem. Any progress?
-
2. Re: CLIENT-CERT authantication in Jetty
tomasg Oct 22, 2002 8:31 AM (in response to tomasg)Nope, though I can see several people have the same problem.
-
3. Re: CLIENT-CERT authantication in Jetty
shorero Oct 22, 2002 3:06 PM (in response to tomasg)I posted a similar query on the jetty support mailing list run thru yahoo. The reply was words to the effect that the problem shouldn't happen (mine is a hang trying to establish the SSL session with client-cert authentication turned on). Anyway, I think we're going to have to hack into the Jetty code to get this to work. If I have time to make some progress, I'll let you know.
-
4. Re: CLIENT-CERT authantication in Jetty
shorero Oct 28, 2002 7:46 AM (in response to tomasg)OK, the fix turns out to be sort of a duh... Simply add
true
to the SSL listener configuration in jboss-service.xml. That causes Jetty (probably JSSE, actually) to request the client certificate. However, you can't specify <auth-method>CLIENT-CERT</auth-method> in your web.xml file. That's going to require a JBoss code change. I'm trying to figure out just what to modify.