File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Tomcat and the fly likes client cert authentication problem Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » Tomcat
Bookmark "client cert authentication problem" Watch "client cert authentication problem" New topic

client cert authentication problem

B Rook

Joined: Dec 27, 2003
Posts: 13
I've developed a webservice running in axis on jboss 3.2.6 / tomcat5.
Everything works fine. Our test server uses apache as the webserver.
When I put the application on the test server I get the following

(400)No client certificate chain in this request

I know that the client certificate code works, because it worked when I
was using the tomcat webserver alone. It seem s like apache is doing
something that keeps the client certificate information from being
passed to tomcat.

We are passing requests from apache to tomcat via virtual host proxy
<VirtualHost myserver:443>
SSLEngine on
SSLCertificateFile conf/ssl.crt/myserver.crt
SSLCertificateKeyFile conf/ssl.key/myserver.key
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
downgrade-1.0 force-response-1.0
ProxyRemote /* http://myserver:8080/
ProxyPass / http://myserver:8080/
ProxyPassReverse / http://myserver:8080/

ProxyRemote /* http://myserver:8080/
ProxyPass / http://myserver:8080/
ProxyPassReverse / http://myserver:8080/
RewriteEngine on
RewriteRule ^/siteuser/(.*) https://myserver/siteuser/$1 [R,L]

We are not using mod_jk (yet) and as far as I know we're not using
mod_ssl. What can I do to correct my problem with client_cert

I agree. Here's the link:
subject: client cert authentication problem
It's not a secret anymore!