Home/ Questions/Q 8636659
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-12T10:17:06+00:00

I am planning to use certificate-based authentication of client in web application. Now I

  • 0

I am planning to use certificate-based authentication of client in web application. Now I need a way to get information from certificate supplied by client.

How do I do that on server-side? I think that servlet container (Tomcat) whould validate certificates and fill out Principal in HttpServletRequest.getUserPrincipal

Is there something else to consider?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    I do this with Apache + Tomcat. Apache can create CGI variables for the cert data with the SSLOptions:

    SSLOptions +ExportCertData

    Tomcat adds that data to all request attributes, you can obtain it using:

    X509Certificate x509[] = (X509Certificate[]) 
    request.getAttribute("javax.servlet.request.X509Certificate");

    I don’t know how Tomcat handles client certs on its own, but this way it works reliable.

    • 0