1. 基础知识
CA证书:https://blog.csdn.net/yangyuge1987/article/details/79209473
SSL双向认证原理:https://blog.csdn.net/ustccw/article/details/76691248
OpenSSL命令详解:https://blog.csdn.net/scuyxi/article/details/54884976
Nginx教程:https://www.yiibai.com/nginx
2. 操作参考
Java nginx https 双向认证:https://blog.csdn.net/qq315737546/article/details/52864220
3. nginx与tomcat参数传递
nginx配置请求头参数:
location / { proxy_pass http://local_tomcat; proxy_set_header Host $host:$server_port; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-SSL-Client-S-DN $ssl_client_s_dn; proxy_set_header X-CLIENT-VERIFY $ssl_client_verify; }
jsp获取请求头:
<%= request.getHeader("X-Real-IP") %>