Forum Discussion
hooleylist
Aug 14, 2009Cirrostratus
I think you could start with something like this:
when CLIENTSSL_HANDSHAKE {
if { [SSL::cert count] > 0 } {
HTTP::release
}
}
when HTTP_REQUEST {
if {not ([HTTP::uri] starts_with "/abc/") } {
if {[SSL::cert count] == 0} {
HTTP::collect
SSL::authenticate always
SSL::authenticate depth 9
SSL::cert mode require
SSL::renegotiate
}
}
}
Aaron