Verify-client

From Resin 3.0

Jump to: navigation, search


<verify-client> sets the client-certificate configuration for <openssl> and <jsse-ssl>.

If the certificate is available, it will be put in the javax.servlet.request.X509Certificate request attribute.

value description
none do not ask for a client certificate (default)
required require a client certificate to access the page
optional ask for a client certificate if availiable
optional-no-ca ask for a client certificate, but do not validate the Certificate Authority

resin-web.xml

<http port="443">
  <openssl>
     <certificate-file>keys/gryffindor.crt</certificate-file>
     <certificate-key-file>keys/gryffindor.key</certificate-file>
     <password>changeme</password>

     <verify-client>required</verify-client>
 </openssl>
</http>
Personal tools