httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject Re: [users@httpd] Apache and client certs
Date Tue, 02 Jan 2007 12:01:02 GMT
Thanks a lot!
I've just tested WebSphere PlugIn, but the result is the same as using 
reverse proxy for contact the backend server. It desn't work!!!!

I think that the only solution in a short time for me is to modify my 
I can made my application asking for client cetificate in the web.xml but 
I don't like it very much!!!!

Is there something else could you suggest me?

If, for example, I could using Tomcat instead of WebSphere, are you sure I 
will be able to pass client certificate information to the application 
server only using mod_ssl and mod_proxy or....... have I to add mod_jk 

Please let me know.



"Serge Dubrouski" <> 
30/12/2006 16.32
Please respond to


Re: [users@httpd] Apache and client certs

On 12/30/06, toadie D <> wrote:
> It is possible to use reverse proxy to pass a PEM Encoded Certificate as 
> HTTP header to a backend server.
> Make sure you have this directive in your config file
> SSLOptions +ExportCertData
> Then use mod_headers to  set the header
> You can find more info here
> and
> here
> One caveat, depending on which version of apache you use (2.0.x or 
> the PEM encoded Certificate may across a bit strange (ie.  not 
conforming to
> multiline HTTP header).

And not recognizable by backend application.

> So you may see your header looking like this
> MY_CLIENT_CERT: ----- BEGIN CERTIFICATE -----[blanks no CRLF] [First 
line of
> base64 encoded data] [ blanks no CRLF ] [Second line of base64 encoded 
> .....  ---- END CERTIFICATE -----

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message