Verify-client
From CauchoWiki
<verify-client> sets the client-certificate configuration for <openssl> and <jsse-ssl>.
If the certificate is available, it will be put in the javax.servlet.request.X509Certificate request attribute.
| value | description |
|---|---|
| none | do not ask for a client certificate (default) |
| required | require a client certificate to access the page |
| optional | ask for a client certificate if availiable |
| optional-no-ca | ask for a client certificate, but do not validate the Certificate Authority |
[edit] resin-web.xml
<http port="443">
<openssl>
<certificate-file>keys/gryffindor.crt</certificate-file>
<certificate-key-file>keys/gryffindor.key</certificate-file>
<password>changeme</password>
<verify-client>required</verify-client>
</openssl>
</http>
