This week's giveaway is in the EJB and other Java EE Technologies forum. We're giving away four copies of EJB 3 in Action and have Debu Panda, Reza Rahman, Ryan Cuprak, and Michael Remijan on-line! See this thread for details.
One of the web.xml files: <?xml version="1.0" encoding="ISO-8859-1"?> <web-app xmlns="http://java.sun.com/xml/ns/j2ee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd" version="2.4">
<!--DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 1.2//EN" "http://java.sun.com/j2ee/dtds/web-app_2_2.dtd"-->
<display-name>TissueMetrix Web Application</display-name> <description> TissueMetrix Web Application </description> <welcome-file-list> <welcome-file>login.jsp</welcome-file> </welcome-file-list>
<security-constraint> <web-resource-collection> <web-resource-name>Entire Application</web-resource-name> <url-pattern>/*</url-pattern> </web-resource-collection> <user-data-constraint> <description>Constrain the entire application to force use of HTTPS</description> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint>
<security-constraint> <web-resource-collection> <web-resource-name>Stylesheets</web-resource-name> <url-pattern>/styles/*</url-pattern> </web-resource-collection> <user-data-constraint> <description>Constrain the /styles folder to force use of HTTP</description> <transport-guarantee>NONE</transport-guarantee> </user-data-constraint> </security-constraint>
I've already tried having the sites initial port at 80, with redirect to 443 scheme https and secure = true, but what I get is nothing. The page is displayed as encrypted characters (4), but won't redirect to https.
Mind you, this is the Catalina Service with only one HTTP and one HTTPS. Maybe with multiple sites I can't.
Please set my mind at ease - I need to know.
[ September 11, 2008: Message edited by: Wade Trenholm ]
OK, here is the solution - so silly of me. In each of the Service items, there needs to be two connectors, one for the http (port 80) which redirectPort=443 and then the https connector on 443 which has all of the scheme = https, secure = true, etc items.
Thank you though. [ September 11, 2008: Message edited by: Wade Trenholm ]