Following Zach's notes on How to setup 2 way TLS I am unable to setup it properly. User is not requested by browser for specifying client certificate and get access to application without certificate.
In log you there is:
1. Server send request for certificate
2. And client responds with empty certificate chain. Without asking for certificate
I am attaching:
- server.log - server log with -Djavax.net.debug=all turn on.
- 2wayTLS.pcap - wireshark recording of port 8443
- secured-app - tested application