iTP Secure WebServer System Administrator's Guide (iTPWebSvr 6.0+)
Using Common Gateway Interface (CGI) Programs
iTP Secure WebServer System Administrator’s Guide—523346-002
8-16
Passing CGI Environment Variables
HTTPS_SERVER_ISSUER Contains the name of the issuer of this server’s certificate.
Example:
CN=Capulet, O=Capulet’s House of Keys,
C=Italy
HTTPS_SERVER_SUBJECT Contains the DN for this server’s certificate.
Example:
CN=Juliet, O=Capulet’s House of Keys,
C=Italy
HTTPS Indicates whether this request is using SSL and/or PCT.
The values are: ON, OFF
Example: off
HTTPS_CLIENT_CERT If SSL or PCT client authentication was used, this variable
contains the certificate as presented by the web client. It is
encoded in ASCII using radix-64.
If SSL 3.0 was used, the value stored in this variable is the
web client’s certificate, extracted from the certificate chain
that was received from the web client.
HTTPS_CLIENT_CERTTYPE If SSL or PCT client authentication was used, this variable
contains the type of certificate used. Possible values are
X509 and X509V3.
Example:
X509V3
HTTPS_CLIENT_ERROR_DN If SSL or PCT client authentication was used with the
-requestauth option, and the iTP Secure WebServer
discovers an error while verifying the client certificate, this
variable contains the DN of the certificate in error.
HTTPS_CLIENT_ISSUER If SSL or PCT client authentication was used, this variable
contains the DN of the direct issuer of the client certificate.
The DN is taken from the issuer field within the client
certificate.
Example:
OU=PersonalCertificate,0="RSA Data
Security,Inc.",C=US
HTTPS_CLIENT_STATUS If SSL or PCT client authentication was used, this variable
contains the verification status of the client certificate.
For descriptions of possible status values, refer to Using
the -requestauth Option on page 4-26.
Example:
VALID
Table 8-1. Environment Variables (page 6 of 7)
Environment Variable Description