$Web Cert Levels: Difference between revisions

From m204wiki
Jump to navigation Jump to search
m (add link)
m (link repair)
 
(2 intermediate revisions by the same user not shown)
Line 10: Line 10:
==Usage notes==
==Usage notes==
<ul>
<ul>
<li>For a non-SSL connection or a connection in which the client certificates are optional (SSLCLCERT set on the JANUS DEFINE as opposed to SSLCLCERTR) and the client chose not to send a certificate, <var>$Web_Cert_Levels</var> returns a 0.  
<li>For a non-SSL connection or a connection in which the client certificates are optional (<var>SSLCLCERT</var> set on the <var>[[JANUS DEFINE]]</var> as opposed to <var>SSLCLCERTR</var>) and the client chose not to send a certificate, <var>$Web_Cert_Levels</var> returns a 0.  


<li>For an SSL connection where the client sent a certificate, <var>$Web_Cert_Levels</var> will return a number greater than 0. Level 0 of a certificate always contains the client information. Level 1 contains the information for the "signer" of the client certificate. Level 2 would contain information for the "signer" of the level 1 signer's certificate, and so on.  
<li>For an SSL connection where the client sent a certificate, <var>$Web_Cert_Levels</var> will return a number greater than 0. Level 0 of a certificate always contains the client information. Level 1 contains the information for the "signer" of the client certificate. Level 2 would contain information for the "signer" of the level 1 signer's certificate, and so on.  


<li>Since all certificates accepted by <var class="product">[[Media:JansslrNew.pdf|Janus Network Security]]</var> must be signed, <var>$Web_Cert_Levels</var> will always be greater than or equal to 2 if non-zero. Level 3 would indicate a certificate that includes an intermediate certificate.  
<li>Since all certificates accepted by <var class="product">[[Janus Network Security]]</var> must be signed, <var>$Web_Cert_Levels</var> will always be greater than or equal to 2 if non-zero. Level 3 would indicate a certificate that includes an intermediate certificate.  


<li>For information on the data that can be retrieved for each certificate level see <var>[[$Web_Cert_Info]]</var>. To learn more about client certificates see the <var class="book">[[Media:JansslrNew.pdf|Janus Network Security Reference Manual]]</var>.
<li>For information on the data that can be retrieved for each certificate level see <var>[[$Web_Cert_Info]]</var>. To learn more about client certificates see the <var class="product">[[Janus Network Security]]</var> pages.
</ul>
</ul>


[[Category:Janus Web Server $functions|$Web_Cert_Levels]]
[[Category:Janus Web Server $functions|$Web_Cert_Levels]]

Latest revision as of 22:44, 29 August 2016

Determine number of client certificate levels

$Web_Cert_Levels retrieves the number of certificate levels in a received client certificate.

Syntax

%levels = $Web_Cert_Levels

Usage notes

  • For a non-SSL connection or a connection in which the client certificates are optional (SSLCLCERT set on the JANUS DEFINE as opposed to SSLCLCERTR) and the client chose not to send a certificate, $Web_Cert_Levels returns a 0.
  • For an SSL connection where the client sent a certificate, $Web_Cert_Levels will return a number greater than 0. Level 0 of a certificate always contains the client information. Level 1 contains the information for the "signer" of the client certificate. Level 2 would contain information for the "signer" of the level 1 signer's certificate, and so on.
  • Since all certificates accepted by Janus Network Security must be signed, $Web_Cert_Levels will always be greater than or equal to 2 if non-zero. Level 3 would indicate a certificate that includes an intermediate certificate.
  • For information on the data that can be retrieved for each certificate level see $Web_Cert_Info. To learn more about client certificates see the Janus Network Security pages.