This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes Tomcat and the fly likes Cannot retrieve client cert when requesting javax.net.ssl.peer_certificates Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Products » Tomcat
Bookmark "Cannot retrieve client cert when requesting javax.net.ssl.peer_certificates" Watch "Cannot retrieve client cert when requesting javax.net.ssl.peer_certificates" New topic
Author

Cannot retrieve client cert when requesting javax.net.ssl.peer_certificates

Bryan Pan
Greenhorn

Joined: Oct 14, 2011
Posts: 1
Hi all,

I am upgrading from Tomcat 6.0.18 to 7.0.21 (32-bit Win zip).

Previously, when requesting a client certificate I would use:

X509Certificate[] certs = (X509Certificate[])req.getAttribute("javax.net.ssl.peer_certificates");

However, after upgrading to 7.0.21 this no longer works. Instead it returns null.

However, I can retrieve the client certificate when I use:

X509Certificate[] certs = (X509Certificate[])req.getAttribute("javax.servlet.request.X509Certificate");

I'm curious as to why the javax.net.ssl.peer_certificates parameter no longer works in this case. Is it an issue cause by a Tomcat regression change?
Also I have only been able to find a reference to it in the 2.1 servlet specification. However, while using tomcat 6.0.18 I was using servlet 2.5.
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Cannot retrieve client cert when requesting javax.net.ssl.peer_certificates
 
Similar Threads
Read client certificate in a Servlet
Help with conversion of String to x509Certificate
Read client certificate in Tomcat Server
Web Service SSL Client
x509 certificate need to send to the client