Forum Discussion
What_Lies_Bene1
Sep 16, 2014Cirrostratus
Hmmm, I'm not sure about your logic here. What do you want to do? I'm guessing here;
- CLIENTSSL_HANDSHAKE: If the client presents a cert, log the fact and proceed. If no cert, proceed.
- HTTP_REQUEST: If a specific URI is requested, check a cert was presented. If not, force renegotiation. If so, proceed.
- HTTP_REQUEST_SEND: Use clientside context, insert SSL certificate used as a header.
Not sure why you are using HTTP::collect/release.
Why force renegotiation? If the client didn't present a certificate first time, why would this help?