Verify-client
From Resin 3.0
(Difference between revisions)
Line 14: | Line 14: | ||
|| optional-no-ca || ask for a client certificate, but do not validate the [[Certificate Authority]] | || optional-no-ca || ask for a client certificate, but do not validate the [[Certificate Authority]] | ||
|} | |} | ||
+ | |||
+ | ==== resin-web.xml === | ||
+ | |||
+ | <http port="443"> | ||
+ | <openssl> | ||
+ | <certificate-file>keys/gryffindor.crt</certificate-file> | ||
+ | <certificate-key-file>keys/gryffindor.key</certificate-file> | ||
+ | <password>changeme</password> | ||
+ | |||
+ | <verify-client>required</verify-client> | ||
+ | </openssl> | ||
+ | </http> |
Revision as of 17:58, 10 January 2006
<verify-client> sets the client-certificate configuration for <openssl> and <jsse-ssl>.
value | description |
---|---|
none | do not ask for a client certificate (default) |
required | require a client certificate to access the page |
optional | ask for a client certificate if availiable |
optional-no-ca | ask for a client certificate, but do not validate the Certificate Authority |
= resin-web.xml
<http port="443"> <openssl> <certificate-file>keys/gryffindor.crt</certificate-file> <certificate-key-file>keys/gryffindor.key</certificate-file> <password>changeme</password> <verify-client>required</verify-client> </openssl> </http>