Currently, mod_ssl can only set req->user to the DN, and only if FakeBasicAuth is activated. This is insufficient if content handlers need to find out who the authenticated user was. For example, Subversion looks into req->user to log the author of a change upon commit. This patch adds a new option SSLUserName, which can be configured to a mod_ssl variable name. The option is a directory option, and it sets req->user if there is an SSL connection, and the variable is non-NULL. [Hoping I can attach the actual patch later]
Hmm. It appears I cannot attach the patch, so I publish it at http://www.dcl.hpi.uni-potsdam.de/home/loewis/username.diff
Created attachment 6915 [details] The patch
enabling the PatchAvailable keyword updated doc on submitting patches is at http://httpd.apache.org/dev/patches.html
Thanks for the patch and docs, Martin. Changed to allow using SSLUserName outside location context, and committed to HEAD, at last.
*** Bug 30173 has been marked as a duplicate of this bug. ***