$Web Cert Levels: Difference between revisions
Jump to navigation
Jump to search
m (add link) |
m (link repair) |
||
(2 intermediate revisions by the same user not shown) | |||
Line 10: | Line 10: | ||
==Usage notes== | ==Usage notes== | ||
<ul> | <ul> | ||
<li>For a non-SSL connection or a connection in which the client certificates are optional (SSLCLCERT set on the JANUS DEFINE as opposed to SSLCLCERTR) and the client chose not to send a certificate, <var>$Web_Cert_Levels</var> returns a 0. | <li>For a non-SSL connection or a connection in which the client certificates are optional (<var>SSLCLCERT</var> set on the <var>[[JANUS DEFINE]]</var> as opposed to <var>SSLCLCERTR</var>) and the client chose not to send a certificate, <var>$Web_Cert_Levels</var> returns a 0. | ||
<li>For an SSL connection where the client sent a certificate, <var>$Web_Cert_Levels</var> will return a number greater than 0. Level 0 of a certificate always contains the client information. Level 1 contains the information for the "signer" of the client certificate. Level 2 would contain information for the "signer" of the level 1 signer's certificate, and so on. | <li>For an SSL connection where the client sent a certificate, <var>$Web_Cert_Levels</var> will return a number greater than 0. Level 0 of a certificate always contains the client information. Level 1 contains the information for the "signer" of the client certificate. Level 2 would contain information for the "signer" of the level 1 signer's certificate, and so on. | ||
<li>Since all certificates accepted by <var class="product">[[ | <li>Since all certificates accepted by <var class="product">[[Janus Network Security]]</var> must be signed, <var>$Web_Cert_Levels</var> will always be greater than or equal to 2 if non-zero. Level 3 would indicate a certificate that includes an intermediate certificate. | ||
<li>For information on the data that can be retrieved for each certificate level see <var>[[$Web_Cert_Info]]</var>. To learn more about client certificates see the <var class=" | <li>For information on the data that can be retrieved for each certificate level see <var>[[$Web_Cert_Info]]</var>. To learn more about client certificates see the <var class="product">[[Janus Network Security]]</var> pages. | ||
</ul> | </ul> | ||
[[Category:Janus Web Server $functions|$Web_Cert_Levels]] | [[Category:Janus Web Server $functions|$Web_Cert_Levels]] |
Latest revision as of 22:44, 29 August 2016
Determine number of client certificate levels
$Web_Cert_Levels retrieves the number of certificate levels in a received client certificate.
Syntax
%levels = $Web_Cert_Levels
Usage notes
- For a non-SSL connection or a connection in which the client certificates are optional (SSLCLCERT set on the JANUS DEFINE as opposed to SSLCLCERTR) and the client chose not to send a certificate, $Web_Cert_Levels returns a 0.
- For an SSL connection where the client sent a certificate, $Web_Cert_Levels will return a number greater than 0. Level 0 of a certificate always contains the client information. Level 1 contains the information for the "signer" of the client certificate. Level 2 would contain information for the "signer" of the level 1 signer's certificate, and so on.
- Since all certificates accepted by Janus Network Security must be signed, $Web_Cert_Levels will always be greater than or equal to 2 if non-zero. Level 3 would indicate a certificate that includes an intermediate certificate.
- For information on the data that can be retrieved for each certificate level see $Web_Cert_Info. To learn more about client certificates see the Janus Network Security pages.