granicus.if.org Git - apache/commit

author	Martin Kraemer <martin@apache.org>
	Fri, 22 Jul 2005 12:11:55 +0000 (12:11 +0000)
committer	Martin Kraemer <martin@apache.org>
	Fri, 22 Jul 2005 12:11:55 +0000 (12:11 +0000)
commit	4c8c57327534587c0b56f007e24616d373cb0963
tree	6d1fb8664ea9318ca0f5c2116e2de4e4968f7c92	tree \| snapshot
parent	a8bce20460c2a5fc8f5b8f9412e8c663c7dcaf01	commit \| diff

Allow extraction of the values of SSL certificate extensions into
environment variables, so that their value can be used by any
module that is aware of environment variables, as in:

  SetEnvIf OID("2.16.840.1.113730.1.13") "(.*) Generated (Certificate)" ca=$1
sets
  ca=TinyCA
if the cert was issued by TinyCA.

Similarly,
  SetenvIf OID("2.16.840.1.113730.1.13") "(.*)" NetscapeComment=$1
will set $NetscapeComment to the whole string.

It is technically allowed to have multiple instances of an extension
field, all with the same oid. In this case, the environment variable
will be set to the list of all fields, separated by commas.

The [PATCH] uses a cross-module call from mod_setenvif to
mod_ssl (the latter may also be missing: in this case the
variable will never be set). It calls a common function
in the ssl module that is also used for the SSLRequire
directive's test.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@220307 13f79535-47bb-0310-9956-ffa450edef68

modules/metadata/mod_setenvif.c		diff \| blob \| history
modules/ssl/mod_ssl.c		diff \| blob \| history
modules/ssl/mod_ssl.h		diff \| blob \| history
modules/ssl/ssl_expr_eval.c		diff \| blob \| history