I have set up a tomcat server with ssl that works fine as long as I go to the adress https://adress:8443 I want to get rid of the port number, is there any easy way to do this so that tomcat understands the https request that comes in?
If you change the port number here, you should also change the value specified for the redirectPort attribute on the non-SSL connector. This allows Tomcat to automatically redirect users who attempt to access a page with a security constraint specifying that SSL is required, as required by the Servlet 2.4 Specification.
hmm, don't really seem to understand what you mean. From what i understand it just tells me to change the redirect port in the non ssl connector so that it will redirect you directly to a https connector. This is what my non https connector looks like right now. And I can still go straight to the http://myadress without any hitches at all..
Originally posted by Christian Haugen: Alrighty, figured out the port number thing, just had to change the port number in server.xml from 8443 to 443. But still stuck on the http to https issue, anyone?
Are you trying to force the user into SSL? This is done with a security-constraint entry in your application's deployement descriptor (web.xml)
Look at section SRV.12.8.2 in the servlet spec for an example. There is a link to the servlet spec in my signature.
Yes, this is what my quote refers to. You have to set the redirect on the non-https port, and apply the security constraints as specified in the Servlet 2.4 Specification. You need to perform both configurations to make it work.
Joined: Jul 06, 2007
Hmm, I feel like I have already done that but I am sure some of my configuration is wrong.
I have experimented with various url-pattern without any luck. Is there something that I am missing? I run a deployment of cas (central authentication service) in the tomcats webapps folder. Do I need to include filters aswell? Thanks! [ July 09, 2007: Message edited by: Christian Haugen ]