Re: CGI client auth by digital certificate

Either I was unclear or I am confused. I want to look at the client certificate. Do I need to turn on SSL for that? I'm really just looking to authenticate the client. I found this in Net::SSLeay, but I'm not sure how to use it in a script:

Net::SSLeay::set_verify(ssl, Net::SSLeay::VERIFY_PEER, 0);
[download]

I want to check that the cert is good and I want to look at the issuer.

Thanks, --traveler

Comment on Re: CGI client auth by digital certificate Download Code

Replies are listed 'Best First'.
Re: Re: CGI client auth by digital certificate by mfriedman (Monk) on Sep 24, 2002 at 23:08 UTC
You'll definately need to be in SSL mode in order to check the client cert; I don't believe it would ever be sent to you in regular HTTP mode. I don't know of any way to get the cert information in a CGI. I think you'll probably have to use mod_perl to hook into Apache's authentication handlers.	[reply]
Re: Re: CGI client auth by digital certificate by BigJoe (Curate) on Sep 24, 2002 at 23:52 UTC
I have looked into this too but not very hard. Just enough to hit some dead ends. So if you find something please let me know. A suggestion to look at is StarWars Episode 1 CD. I think they did something like that where they put some sort of cert on a CD and used that to authenticate you to let you into the website to see Episode II previews. This might be a start. --BigJoe Learn patience, you must. Young PerlMonk, craves Not these things. Use the source Luke.	[reply]