The Perl and Raku Conference 2025: Greenville, South Carolina - June 27-29 Learn more

OPI / Apache2-ModSSL-0.10 / lib / Apache2 / ModSSL.pm 

            

              
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152

              
package Apache2::ModSSL;
use strict;
use warnings FATAL => 'all';
use XSLoader ();
our $VERSION = '0.10';
XSLoader::load __PACKAGE__, $VERSION
  if( exists $ENV{MOD_PERL} and $ENV{MOD_PERL}=~/mod_perl/ );
1;
__END__
=head1 NAME
Apache2::ModSSL - a Perl Interface to mod_ssl functions
=head1 SYNOPSIS
 use Apache2::ModSSL;
 my $c=$r->connection;
 if( $c->is_https ) {
   $dn=$c->ssl_var_lookup('SSL_SERVER_S_DN');
   $nsComment=$c->ssl_ext_lookup(0, '2.16.840.1.113730.1.13');
 }
=head1 ABSTRACT
C<Apache2::ModSSL> adds a few functions that are exported from C<mod_ssl>
to the C<Apache2::Connection> class.
=head1 METHODS
=over 4
=item B<$c-E<gt>is_https>
C<is_https()> returns 1 if the connection is SSL-encrypted, 0 if it
is not encrypted but mod_ssl is available in the apache binary or
C<undef> if mod_ssl is not loaded.
=item B<$c-E<gt>ssl_var_lookup(NAME)>
C<ssl_var_lookup()> returns the value of an SSL variable. If mod_ssl
is not loaded C<undef> is returned. A query for an unknown variable
returns an empty string.
For a list of known variables please refer to the mod_ssl documentation
or mod_ssl source code (C<httpd-2.0.52/modules/ssl/ssl_engine_vars.c>).
At the time of this writing this list includes (not complete):
=over 4
=item B<HTTPS>
=item B<API_VERSION>
=item B<SSL_VERSION_PRODUCT>
=item B<SSL_VERSION_INTERFACE>
=item B<SSL_VERSION_LIBRARY>
=item B<SSL_PROTOCOL>
=item B<SSL_SESSION_ID>
=item B<SSL_CIPHER>
=item B<SSL_CLIENT_CERT_CHAIN_n> (where n is a number)
=item B<SSL_CLIENT_VERIFY>
=item B<SSL_(CLIENT|SERVER)_M_VERSION>
=item B<SSL_(CLIENT|SERVER)_M_SERIAL>
=item B<SSL_(CLIENT|SERVER)_V_START>
=item B<SSL_(CLIENT|SERVER)_V_END>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_C>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_ST>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_SP>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_L>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_O>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_OU>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_CN>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_T>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_I>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_G>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_S>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_D>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_UID>
=item B<SSL_(CLIENT|SERVER)_(S|I)_DN_Email>
=item B<SSL_(CLIENT|SERVER)_A_SIG>
=item B<SSL_(CLIENT|SERVER)_A_KEY>
=item B<SSL_(CLIENT|SERVER)_CERT>
=back
=item B<$c-E<gt>ssl_ext_lookup(WHERE, OID)>
C<ssl_ext_lookup()> returns the value of an SSL certificate extension.
C<WHERE> specifies whether to look in the WEB server certificate (C<WHERE==0>)
or in the client certificate (C<WHERE==1>). C<OID> is the Object Identifier
for the extension in dotted notation, e.g. C<2.16.840.1.11330.1.13> for
C<Netscape Comment> or C<2.5.29.19> for C<X509v3 Basic Constraints>.
=back
=head1 EXPORTS
none.
=head1 SEE ALSO
L<http://perl.apache.org/docs/2.0/api/Apache2/Connection.html>,
L<http://httpd.apache.org/docs-2.0/mod/mod_ssl.html>
=head1 AUTHOR
Torsten Foertsch, E<lt>torsten.foertsch@gmx.netE<gt>
=head1 COPYRIGHT AND LICENSE
Copyright (C) 2004-2008 by Torsten Foertsch
This library is free software; you can redistribute it and/or modify
it under the same terms as Perl itself.
=cut