EldoS | Feel safer!

Software components for data protection, secure storage and transfer

HTTPS-Server with Indy and ElIndySSLServerIOHandler

Also by EldoS: MsgConnect
Cross-platform protocol-independent communication framework for building peer-to-peer and client-server applications and middleware components.
Posted: 10/29/2009 05:34:36
by Wolfgang Denz (Standard support level)
Joined: 09/24/2008
Posts: 17

Currently I'm working on a small emergency-server-application which will take over all http/https-traffic from several webservers in case of an emergency and will provide emergency-websites to the clients.
As we also have several https-servers with unique server-certificates I would like to analyze the requested host in the url-request and select the corresponding server-certificate for the ssl-connection.
Right now I'm stuck with this idea....

Do you know a way to select the appropriate server-certificate before the ssl-connection is established?

Posted: 10/29/2009 06:18:24
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

Normally, url-request is sent only after TLS/SSL session is established, and the only way to check it before establishing the actual session is to use ServerName TLS extension. However, it should be sent by client (and, as I know, not all clients support it).
To check it on the server side, you should use OnExtensionsReceived event of TElSecureServer, and property PeerExtensions of the same object.
Posted: 10/30/2009 02:32:34
by Wolfgang Denz (Standard support level)
Joined: 09/24/2008
Posts: 17

Thnx for your help, however I didn't succeed, so I now use several instances of an http(s)-Server with a corresponding IOhandler and different server-certificates




Topic viewed 901 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!