iTP Secure WebServer System Administrator's Guide (iTPWebSvr 6.0+)
Using Common Gateway Interface (CGI) Programs
iTP Secure WebServer System Administrator’s Guide—523346-002
8-15
Passing CGI Environment Variables
SHTTP_NONCE_ECHO Contains a list of nonces separated by commas. A nonce
is a string that the server sends to a client as part of a
secure hyperlink. The client returns this nonce when the
user selects the link.
Because the client always returns the nonce in a link,
nonces are useful for tracking secure sessions.
Example: 3cd7a0db76ff9dca48979e24c39b408c
SHTTP_PROCESS Contains the privacy enhancements used by the client to
transmit the request to the server. The values can be:
SIGNED - the client signed the document digitally.
ENCRYPTED - the client encrypted the document.
NONE - the client sent an unsigned document without
encrypting it.
AUTHENTICATED - the client sent a user name and
password that was in the server key database.
If more than one of the above privacy enhancements is
used, they are separated with _AND_.
Format: value [ _and_ value]
SIGNED_AND_ENCRYPTED_AND_AUTHENTICATED
SHTTP_SIGNER Contains a string containing the DN of the signer. For
example:
CN=Open Market Test Client 102,OU=Persona
Certificate,O="RSA Data Security, Inc.",C=US
SHTTP_SIGNER_
CERT_CHAIN
Contains the certificate chain of the signer (if applicable).
Example: see examples following table
SHTTP_SIGNER_
CHAIN_LEN
Contains the length of the certificate chain of the signer (if
applicable).
Example: 2
SHTTP_VERSION Contains the Secure HTTP version used by the client.
Example: 1.1
The following SSL and PCT environment variables are request specific.
HTTPS_KEYSIZE Contains the number of bits in the session key used to
encrypt this session.
Example:
40
Table 8-1. Environment Variables (page 5 of 7)
Environment Variable Description