# HG changeset patch
# User Alain Mazy <alain@mazy.be>
# Date 1572259726 -3600
# Node ID c0b95d74733757a147ed13f013d659cf55ccf20c
# Parent  23568e3f371c44b63d01b2c4e835de68a147d8ac
Fix support for client certificate authentication

diff -r 23568e3f371c -r c0b95d747337 NEWS
--- a/NEWS	Thu Oct 24 09:41:46 2019 +0200
+++ b/NEWS	Mon Oct 28 11:48:46 2019 +0100
@@ -13,6 +13,7 @@
 
 * Optimization of QIDO-RS for large studies/series
 * Fix handling of the "Forwarded" HTTP header
+* Fix support for client certificate authentication
 * Accept multiple MIME types in Accept header for WADO-RS "Retrieve Metadata"
 * Added explicit "Accept" header to avoid uncompressing DICOM files by Google cloud
   https://groups.google.com/d/msg/orthanc-users/w1Ekrsc6-U8/T2a_DoQ5CwAJ
diff -r 23568e3f371c -r c0b95d747337 Plugin/DicomWebServers.cpp
--- a/Plugin/DicomWebServers.cpp	Thu Oct 24 09:41:46 2019 +0200
+++ b/Plugin/DicomWebServers.cpp	Mon Oct 28 11:48:46 2019 +0100
@@ -134,10 +134,20 @@
       client.SetCredentials(parameters.GetUsername(), parameters.GetPassword());
     }
 
+    if (!parameters.GetCertificateFile().empty())
+    {
+      client.SetClientCertificate(
+        parameters.GetCertificateFile(),
+        parameters.GetCertificateKeyFile(),
+        parameters.GetCertificateKeyPassword());
+    }
+
+    client.SetPkcs11Enabled(parameters.IsPkcs11Enabled());
+
     // By default, enable chunked transfers
     client.SetChunkedTransfersAllowed(
       parameters.GetBooleanUserProperty(HAS_CHUNKED_TRANSFERS, true));
-  }    
+  }
 
 
   void DicomWebServers::DeleteServer(const std::string& name)