Java WebSocket get distinguished name of client

Question

I have a Java WebSocket server running on GlassFish, and users are to connect using client TLS certificates that we give them. The distinguished name from the certificate is what we used to identify the user. Once a connection has been made to a ServerEndpoint, my @OnOpen method is called and given a Session object.

I can tell if session.isSecure(), but nothing more than that. The Session object gives me no visibility into the properties of the TLS connection. How do I fetch the distinguished name of a client when they're connected via WebSocket?

score 0 · Answer 1 · edited May 23 '17 at 12:11

0

I believe you can only do that in the websocket handshake (see here for an idea).

Websocket are "upgraded" from a HTTP request and the details of the request are available only during that upgrade request. You could try to extract the user principal from the HandshakeRequest, which normally should get you a X500Principal.

edited May 23 '17 at 12:11

Community

1
1

answered Aug 01 '14 at 20:24

Bogdan

23,890
3
69
61

Java WebSocket get distinguished name of client

1 Answers1