1
这是Apache虚拟主机配置的一部分,将匹配的传入请求转发到Apache Tomcat服务器。所有客户端都必须发送客户端证书以进行App1身份验证,但对于App2,它应该是可选的。在ReverseProxy上下文中切换SSLVerifyClient
SSLVerifyClient require
SSLVerifyDepth 2
SSLOptions +ExportCertData +StdEnvVars
ProxyRequests Off
ProxyPass /app1/services/App01 ajp://localhost:8307/app1/services/App01
ProxyPass /app1/services/App02 ajp://localhost:8307/app2/services/App02
<Location /app1/services/App01>
ProxyPassReverse ajp://localhost:8307/app2/services/App02
</Location>
<Location /app2/services/App02>
ProxyPassReverse ajp://localhost:8307/app2/services/App02
</Location>
那么是否有切换app2 SSLVerifyClient指令从必需到可选的可能性?