Is it possible, to force apache to ask for password only if user don't have client-certificate installed?
I'm almost sure, that this is possible, but I'm not able to find any confirmation anywhere.
Is it possible to configure apache to act like this:
If user will have client-certificate – apache will allow connection to webpage without any problem or question.
If user-certificate on the client-side will not be available, it will ask for basic auth authentication – so it will ask for password?
How to configure it?
I'm fighting this since morning without any solution even to just stick to it.
Best Answer
Here is a script to get the entries for the password file from the certificates: (see also https://serverfault.com/posts/747107)
In the .fakehttpsauth you need to put entries like:
Here is a script to create such entries from your certificates: