extract the user principal from client certificate in vertx

Question

I am using Vertx framework for my API and have enabled https on it successfully.

For user authentication/authorization, I wan't to use client certificates i.e. who can access which APIs. The flow will:

When a client makes a API hit, it presents its certificate to Vertx server. This certificate should contain username as CN.
Vertx server should validate the client certificate and extract the Common name from it and then do the authorization based on this username.

How do I read the client certificate to extract cn i.e. user principal ?

score 2 · Answer 1 · answered Dec 13 '18 at 13:26

2

When you have an io.vertx.core.http.HttpConnection you can write:

connection.sslSession().getPeerPrincipal().getName()

answered Dec 13 '18 at 13:26

tsegismont

Thanks for the answer. I was able to do so. My complete scenario is that I want to do certificate authentication/authorization of my Vertx webapp i.e. the client certificate will be required and based on the cn in the client certificate, accordingly the role/authority will be decided. Any pointers for that, what will be best way to achieve this. – Sahil Dec 20 '18 at 11:52

1 Answers1