This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes Sockets and Internet Protocols and the fly likes Read client certificate in Tomcat Server Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Java » Sockets and Internet Protocols
Bookmark "Read client certificate in Tomcat Server" Watch "Read client certificate in Tomcat Server" New topic
Author

Read client certificate in Tomcat Server

Roberto Ruiz
Greenhorn

Joined: Mar 31, 2009
Posts: 5
I have an app in a tomcat server, and I'm trying to read a client certificate. It's the first time I work with SSL, so probably I am doing something wrong. I don't want client validation, I just need to read the certificate content and send it to a webservice for validation and info retrieval. The problem is that I am unable to read the certificate content.

I already created a keystore and self-signed certificate for the server. The user certificate is on the browser (The user certificate is a valid one, not self-signed). The ssl connector configuration in server.xml is:



If I try to get the cipher suite : , I get the value TLS_DHE_DSS_WITH_AES_128_CBC_SHA

But when I try to read the certificates with , I just get a null value.

I have googled a little, and I read things such as that an Apache server is needed to retrieve the certificate, and then send it to Tomcat server. Is the Apache server really needed, or is Tomcat enough? In any case, what should I do to read the client certificates?


Manuel apellido
Greenhorn

Joined: Apr 28, 2009
Posts: 1
Hi Roberto,
I don't have any problem getting the certificate chain with:

Maybe is because a missconfiguration. Have you tried changing clientAuth="true" instead of clientAuth="want" in your server.xml
Regards, Manu
 
It is sorta covered in the JavaRanch Style Guide.
 
subject: Read client certificate in Tomcat Server
 
Similar Threads
Read client certificate in a Servlet
Tomcat SSL .Enabling Client authentication with tomcat
how to use keytool for self-signed cert for Apache
connect to a SOAP webservice using SSL
Struts app on JRUN over HTTP/HTTPs in Apache