This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes Security and the fly likes Web Application with certificates Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Web Application with certificates" Watch "Web Application with certificates" New topic

Web Application with certificates

Aleks V. Pascoal
Ranch Hand

Joined: Apr 21, 2002
Posts: 73
Hi guys!

I want to implement something in my web application that allows me to check credentials (user / password ) entered on the system login page with a certificate in a token.

I'm guessing that I must do something like that:

1) Configure JBoss to use SSL
2) Once someone entered user/pass, extract data from the certificate to verify against the info on the database

I don't know how to extract the info from the certify and neither how to load the certifiy info. I mean, just by using SSL the browser will load the certify from the token?

Best regards!
William P O'Sullivan
Ranch Hand

Joined: Mar 28, 2012
Posts: 860

You could in theory do it, but why would you want do?

What type of information are you trying to extract?

If the user has authenticated, one would normally look up data in a DB or LDAP/Active Directory.

I agree. Here's the link:
subject: Web Application with certificates
Similar Threads
Keystore was tampered with, or password was incorrect
Non SSL based Flex application access to SSL Webservice
connect to a SOAP webservice using SSL
overide security behavior in j2me and avoid re-authentiaction in webservice