Professional Web Applications Themes

WebRick/HTTPS client authentication - Ruby

Hi all, i am trying to use webrick as a http-server with client authentification. Does anybody know how to set up the server with HTTPS so that the client must authentificate with a certificate? All i found i the docs/google is how to set up the server to use HTTPS. Thanks, Roland...

  1. #1

    Default WebRick/HTTPS client authentication

    Hi all,

    i am trying to use webrick as a http-server with client authentification.
    Does anybody know how to set up the server with HTTPS so that the client must authentificate with a certificate?

    All i found i the docs/google is how to set up the server to use HTTPS.

    Thanks,
    Roland


    SchmittR@t-systems.com Guest

  2. #2

    Default Re: WebRick/HTTPS client authentication

    Hi,
     
     

    Test suite of http-access2 has the server.
    http://www.ruby-lang.org/cgi-bin/cvsweb.cgi/lib/http-access2/test/
    See the :SSLVerifyClient option in sslsvr.rb.

    Regards,
    // NaHi


    NAKAMURA, Guest

  3. #3

    Default Re: WebRick/HTTPS client authentication

    Hi,
     
     

    These options are just for your purpose.
    See NOTES section of
    http://www.openssl.org/docs/ssl/SSL_CTX_set_verify.html
     

    sslsvr.rb with above options should work as you expected.
    Run sslsvr.rb and hit https://localhost:17171/hello with browser.
    sslsvr.rb should deny the access.
    Then, import client.cert and client.key into your browser and
    hit the URL again.

    In do_hello block, you can get the client certificate which is
    verified in a session with req.meta_vars['SSL_CLIENT_CERT']

    Regards,
    // NaHi


    NAKAMURA, Guest

  4. #4

    Default Re: WebRick/HTTPS client authentication

    Hi,
     
     

    There is another way to know who is the client.
    req.client_cert is an instance of OpenSSL::X509::Certificate.
    See req.client_cert.subject to see who is the authenticated client.

    Regards,
    // NaHi


    NAKAMURA, Guest

Similar Threads

  1. #39094 [NEW]: Soap client on https
    By webmaster at realtime dot ro in forum PHP Bugs
    Replies: 1
    Last Post: October 9th, 03:40 PM
  2. Replies: 11
    Last Post: October 12th, 03:02 PM
  3. Replies: 4
    Last Post: August 5th, 12:44 PM
  4. Forms Authentication with http/https
    By Holysmoke in forum ASP.NET Security
    Replies: 6
    Last Post: October 5th, 03:55 PM
  5. [PATCH] Bug fix for WEBrick/HTTPS
    By Christian Neukirchen in forum Ruby
    Replies: 1
    Last Post: August 13th, 11:43 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139