Databases
StackOverflow2013
Postsdbo
PO
Body
 

Note that there are some explanatory texts on larger screens.

plurals
  1. PO
    text
    copied!<p>For a while, until <a href="http://simpleweb.svn.sourceforge.net/viewvc/simpleweb/trunk/src/main/java/org/simpleframework/transport/Handshake.java?r1=1743&amp;r2=1785&amp;pathrev=1785" rel="nofollow">this patch in the Simple Framework (rev. 1785)</a>, Simple was always using "want client authentication", without any way to configure it either way ("need" or "nothing").</p> <p>For this reason, the <code>needClientAuthentication</code> parameter of the Simple Restlet connector was never supported, because the Restlet connector itself had no way to change this behaviour.</p> <p>As far as I'm aware the change in Simple rev. 1785 only removes any form of client authentication (no "need" or "want"). I'm not sure whether Restlet 2.0.8 uses a release of Simple that was before before or after this patch, but to date, there doesn't seem to be anything to provide this support.</p> <p>There were discussions on the Simple mailing list on this topic here:</p> <ul> <li><a href="http://sourceforge.net/mailarchive/message.php?msg_id=24865296" rel="nofollow">http://sourceforge.net/mailarchive/message.php?msg_id=24865296</a></li> <li><a href="http://sourceforge.net/mailarchive/message.php?msg_id=25704572" rel="nofollow">http://sourceforge.net/mailarchive/message.php?msg_id=25704572</a></li> </ul> <p>There are a few workarounds:</p> <ul> <li>Use a different connector than Simple for your Restlet application. The other ones should support <code>needClientAuthentication</code>.</li> <li>Keep using <code>wantClientAuthentication</code> (providing it's the pre-patched version Simple) and check whether there is indeed a certificate, otherwise forbid the request. (I think this is the way IIS does it, even when it "requires" a certificate.)</li> </ul> <p>As a side note, looking at your code, I'm not sure why you'd want to insist on the client presenting both a client-certificate and HTTP basic authentication credentials. Basic auth. on top of client-cert seems a bit overkill.</p>
 

Querying!

 
Guidance
An individual column

Larger individual text columns get their own page to allow for proper reading.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload