We were seeing issues with Undertow 1.0.0 bundled in WildFly 8.0.0 properly handling a client certificate proxied from apache httpd over AJP (mod_proxy_ajp).  The application would seemingly randomly not be able to retrieve the cert from the request and so respond with a 403.

I’ve since tried Undertow 1.0.2 and everything seems to be working correctly now.  I noticed that in the Undertow change log there were changes to AJP parsing and handling of certificates when Apache doesn’t forward the session ID.

We prefer to not have to swap components from those provided in an official WildFly release.  Will WildFly 8.0.1 include Undertow 1.0.2?

Thanks,
Oliver