stackoom
  简体   繁体   中英

Accessing Akka HTTP client certificate for the current connection

 原文  2017-06-01 11:46:32       http/ ssl/ akka/ client-certificates/ akka-http

Question

I am current Apache Tomcat user designing an Akka HTTP based replacement for a HTTPS web service that uses client certificates for authentication and authorization. Using Tomcat I am accustomed to retrieving the client X509Certificate with a servlet request attribute

request.getAttribute("javax.servlet.request.X509Certificate")

I need the certificate for some additional authorization checks inside the handler for select routes. How would retrieve the client certificate in this way with Akka HTTP 10.0.x?

1 answers

solution1
 3 ACCPTED  2017-06-08 10:42:55

You need to enable decorating requests with TLS session info through the config settings for the server: 

akka.http.server.parsing.tls-session-info-header = on

And then extract the info for a specific request using the synthetic header akka.http.scaladsl.model.headers.Tls-Session-Info like so: 

headerValueByType[`Tls-Session-Info`]() { sessionInfo =>
  val sslSession = sessionInfo.getSession()
  sslSession.getPeerCertificates
  ... etc ...

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Basic akka http client post not working passing the Client certificate over HTTP HTTP or HTTPS according to current connection Reusing Client TCP Connection for HTTP Client certificate authentication over HTTP (without HTTPS) Http 1.1 connection and client port How to implement Akka HTTP Request Post Client Headers Authorization How to upload a very large file with Akka http client Java Spring as a client for Akka based REST HTTP call Accessing TWiki page with Python http.client
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM