8.5. Using Programmatic Security with SSL
SSL can be used with security that is entirely servlet managed, just as it can be with container-managed security (see Section 7.1). As is typical with servlet-managed security, this approach is more portable but requires significantly more effort.
The use of SSL in programmatic security may require one or more of the following capabilities not needed in normal programmatic security.
Determining if SSL is in use.
Redirecting non-SSL requests.
Discovering the number of bits in the key.
Looking up the encryption algorithm.
Accessing client X509 certificates.
Details on these capabilities follow.
Determining If SSL Is in Use
The ServletRequest interface provides two methods that let you find out if SSL is ...
Get More Servlets and JavaServer Pages™ now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.