[jbossws-issues] [JBoss JIRA] (JBWS-3461) HTTPS / TLS Client certificate authentication does not give client certificate to server side

Thursday, 15 March 2012

Tomas Gustavsson created JBWS-3461:
--------------------------------------

             Summary: HTTPS / TLS Client certificate authentication does not give client
certificate to server side
                 Key: JBWS-3461
                 URL: https://issues.jboss.org/browse/JBWS-3461
             Project: JBoss Web Services
          Issue Type: Bug
      Security Level: Public (Everyone can see)
         Environment: JBoss AS 7.1.0.GA
            Reporter: Tomas Gustavsson

We use client certificate authentication (TLS) for our webservice (JAX-WS annotated EJB).

In JBoss 5 and 6 the following code worked to fetch the client certificate in the session
bean.

MessageContext msgContext = wsContext.getMessageContext();
HttpServletRequest request = (HttpServletRequest)
msgContext.get(MessageContext.SERVLET_REQUEST);
X509Certificate[] certificates = (X509Certificate[])
request.getAttribute("javax.servlet.request.X509Certificate");

In JBoss AS 7.1.0.GA no certificate is retrieved.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jbossws-issues] [JBoss JIRA] (JBWS-3461) HTTPS / TLS Client certificate authentication does not give client certificate to server side