I found the right information on how to configure tomcat with client certificates on stackoverflow, configured my tomcat, deployed a grails application and searched within the grails application for the client certificate. I found it in the property
request.request.request.attributes['javax.servlet.request.X509Certificate']
Is this the right way to access the certificate? Is looks a bit wrong :-)
