So far, apache is the only server I have found that supports ssl
client authentication. Pound can forward the client certificate so I
could verify it myself. I couldn’t find any information on client
auth with lighttpd. Litespeed evidently doesnt’ support it. I’ve
been trying to use apache for the ssl connection and then pass the ssl
env back to mongrel or lighttpd, without any luck.
Right now using pound and verifying the certificate inside rails seems
like the best choice. I want to stay away from apache and fastcgi if
at all possible.
Any other ideas?