Perl, Apache and Certificates

Discussion in 'Perl Misc' started by am500803@gmail.com, Mar 4, 2008.

  1. Guest

    Hi !

    I am using Apache2 with self-signed certificates. I also made client
    certificates and everything is cool.
    Of course, i am also using mod_ssl.
    But somehow I cannot get DN of the certificate into perl CGI code. It
    ought to be in an SSL... environment variables, but its not. If I set
    SSLOptions in apache config to FakeAuth, I can see full certificate
    description in access file, but yet not in a perl script. Do i need to
    'use' some special library ?
    No direct documentation provided nowwhere, so any hint is appreciable.
     
    , Mar 4, 2008
    #1
    1. Advertising

  2. smallpond Guest

    On Mar 4, 5:05 pm, wrote:
    > Hi !
    >
    > I am using Apache2 with self-signed certificates. I also made client
    > certificates and everything is cool.
    > Of course, i am also using mod_ssl.
    > But somehow I cannot get DN of the certificate into perl CGI code. It
    > ought to be in an SSL... environment variables, but its not. If I set
    > SSLOptions in apache config to FakeAuth, I can see full certificate
    > description in access file, but yet not in a perl script. Do i need to
    > 'use' some special library ?
    > No direct documentation provided nowwhere, so any hint is appreciable.



    In http.conf you should have:
    SSLVerifyClient require (or 2)
    SSLOptions +StdEnvVars


    In the CGI check
    $ENV{'SSL_CLIENT_DN'}
     
    smallpond, Mar 4, 2008
    #2
    1. Advertising

  3. Guest

    On Mar 5, 12:07 am, smallpond <> wrote:
    > On Mar 4, 5:05 pm, wrote:
    >
    > > Hi !

    >
    > > I am using Apache2 with self-signed certificates. I also made client
    > > certificates and everything is cool.
    > > Of course, i am also using mod_ssl.
    > > But somehow I cannot get DN of the certificate into perl CGI code. It
    > > ought to be in an SSL... environment variables, but its not. If I set
    > > SSLOptions in apache config to FakeAuth, I can see full certificate
    > > description in access file, but yet not in a perl script. Do i need to
    > > 'use' some special library ?
    > > No direct documentation provided nowwhere, so any hint is appreciable.

    >
    > In http.conf you should have:
    > SSLVerifyClient require  (or 2)
    > SSLOptions +StdEnvVars
    >
    > In the CGI check
    >   $ENV{'SSL_CLIENT_DN'}


    Thx. I didnt have +StdEnvVars :)
     
    , Mar 8, 2008
    #3
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Replies:
    0
    Views:
    936
  2. n33470

    Are SSL certificates and x.509 certificates the same?

    n33470, Dec 14, 2005, in forum: ASP .Net Web Services
    Replies:
    0
    Views:
    185
    n33470
    Dec 14, 2005
  3. The Poor
    Replies:
    2
    Views:
    236
    Gregory Toomey
    Sep 27, 2003
  4. Kostas Hatzikokolakis

    Use perl in apache without #!/path/to/perl

    Kostas Hatzikokolakis, Oct 18, 2003, in forum: Perl Misc
    Replies:
    2
    Views:
    163
    Ron Savage
    Oct 19, 2003
  5. joe
    Replies:
    8
    Views:
    196
    Matthias Weckman
    Nov 14, 2003
Loading...

Share This Page