I have a web app with declarative security setup in the deployment descriptor in a way to force ssl with client authentication. If I insert an apache node in the middle talking AJP1.3 with the server, do the deployment descriptors have to change in any way to maintain the same behavior regarding the identity validation and access control enforcement ?
( Note that I'm describing an arrangement where the apache server would make client authentication (mod-ssl) and transfer that info to JBoss via AJP1.3 (mod_jk) ) Thank you View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3914429#3914429 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3914429 ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
