I can only see flow variables 'virtualhost.ssl.enabled' and 'client.ssl.enabled' but there is no variable which can tell if client authorization is enabled or not on virtual host. is anyone aware of it?
Solved! Go to Solution.
EDIT
The original answer I posted here was incorrect. I wrote that "client.ssl.enabled" should give you what you want, and further that this variable isn't documented clearly. I now think both of these statements are wrong.
You can check "client.cn" - if it is null then the client has not authenticated. If it is non-null then the client has authenticated.
INCORRECT:
I think "client.ssl.enabled" gives you what you want.
EDIT
The original answer I posted here was incorrect. I wrote that "client.ssl.enabled" should give you what you want, and further that this variable isn't documented clearly. I now think both of these statements are wrong.
You can check "client.cn" - if it is null then the client has not authenticated. If it is non-null then the client has authenticated.
INCORRECT:
I think "client.ssl.enabled" gives you what you want.
I tried 'client.ssl.enabled' variable and its value was true for virtual hosts tls/ssl enabled and client auth disabled. for the time being i am using virtualhost.name to distinuguish.
After looking into this, I can suggest: try testing client.cn. If non-null, it means the client has authenticated with a cert.
yup, client.cn was empty in case client auth disabled
User | Count |
---|---|
1 | |
1 | |
1 | |
1 | |
1 |