How can I allow only clients who have certificates to access a particular URL?

andre,

I’m not sure what “certificates” you’re talking about but either issue another password to them OR use SESSIONs. I’ve found them to be particularly powerful as you can assign “levels” to the data you store in their sessions (via login) which can be used as passkeys to various scripts.

Regards,

DK