Skip to main content
Skip table of contents

Cookie Authorizer

Cookies-based authentication.

AUTHTYPE=org.signserver.server.CookieAuthorizer

The Cookie Authorizer can be used to authorize clients when SignServer is sitting behind an Apache HTTP Server or an Airlock Web Application Firewall (WAF). The client HTTP request may then include custom cookies with a client set prefix and a signature. The Cookie Authorizer enables logging the client cookies to the SignServer log, which can later be used for statistical analysis. The cookies are extracted by the Cookie Authorizer based on client specific business logic, and then parsed, analyzed and logged.

Available Properties

Property

Description

ALLOW_ANY

Set to true to configure the Cookie Authorizer to accept all clients.

REQUEST_COOKIES_PREFIX

Specifies a prefix to display for incoming cookies in the SignServer log file.

Example: REQUEST_COOKIES_PREFIX = ABC_

If the same prefix is already present in the cookies coming from the client, no additional prefix will be added when logging the cookie. This avoids that the cookie name overwrites an existing log field and prevents increasing the log file.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close