Here's what I did to get it to work:
1) In struts config, add the attribute, type="org.apache.struts.config.SecureActionConfig" to the <action-mappings> element
2) For any secure action that you want to forward to, add <set-property property="secure" value="true"/> inside the action tag
3) Add <controller processorClass="org.apache.struts.action.SecureTilesRequestProcessor"/> right after the <action-mappings>
4) Add the following plugin to struts-config.xml: <plug-in className="org.apache.struts.action.SecurePlugIn"><set-property property="httpPort" value="8080"/><set-property property="httpsPort" value="8443"/> <set-property property="enable" value="true"/> </plug-in>
5) Add the �Struts SSL Plugin� library to the class path, this just points to sslext.jar
6) Add the sslext.tld to the WEB-INF folder
7) Add the taglibary entry for sslext.tld to the web.xml file
8) Import the sslext.tld tags into your
jsp pages
9) Use the sslext form, link, and rewrite tags instead of regular html and instead of regular Struts html tags. For example, the Struts html:form tag will cause the form entries to be added to the url when you forward to a https page. If you use the sslext:form tag, this won�t happen