Re: Running servlet via SSL???
You will configure Apache to handle SSL. You will configure Apache to load mod_jk as a DSO. You will configure your SSL virtual host in httpd.conf to forward JSP and servlet requests to Tomcat via the AJP connector which, in a default Tomcat install, is enabled by default on port 8009. This is all covered extensively in the documentation and the archives, it comes up frequently. John Carlos Oliva wrote: Thank you very much for your reponse. Probably we will want to take advantage of Apache SSL and configure it to relay requests to Tomcat instead of using Tomcat as stand-alone. To do this, do I just need to configure Apache and add the appropriate mappings or must I also install the mod_jk (Apache 1.3 and Tomcat 4.0.x)? -Original Message- From: John Turner [mailto:[EMAIL PROTECTED] Sent: Thursday, August 14, 2003 1:24 PM To: Tomcat Users List Subject: Re: Running servlet via SSL??? Carlos Oliva wrote: However, I see the welcome screen of Tomcat if I use http://:8080 but not if I use https::8080 or any other combination of ports and http or https. Furthermore, servlets run via http://:8080/ , but not https://... Or http://:8443/... If anything, it would be https://...:8443 From this, I am concluding that Apache is set to run with http or https, that Tomcat is configured as stand alone -- not via ssl. Right, but Tomcat's SSL status is irrelevant if you're using Apache and a connector. Apache and Tomcat do not speak SSL when communicating with each other. If you're using SSL with Apache + Tomcat, the only SSL configuration is done on the Apache side. You have to remember to add the appropriate URI mappings for your connector to the SSL virtual host in httpd.conf. So, since I have JDK1.4.x installed, I am assuming that I just need to create the right certificates and configure the server.xml file for tomcat to enable Tomcat to work with ssl in stand alone mode. Right? Right, but again, this is not needed if you have Apache set to do SSL, unless you want to do testing using Tomcat alone. Tomcat SSL HOWTO: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/ssl-howto.html John - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Running servlet via SSL???
Thank you John, We are on the right track now. We found the documentation about JK and mod_jk -Original Message- From: John Turner [mailto:[EMAIL PROTECTED] Sent: Monday, August 18, 2003 8:16 AM To: Tomcat Users List Subject: Re: Running servlet via SSL??? You will configure Apache to handle SSL. You will configure Apache to load mod_jk as a DSO. You will configure your SSL virtual host in httpd.conf to forward JSP and servlet requests to Tomcat via the AJP connector which, in a default Tomcat install, is enabled by default on port 8009. This is all covered extensively in the documentation and the archives, it comes up frequently. John Carlos Oliva wrote: Thank you very much for your reponse. Probably we will want to take advantage of Apache SSL and configure it to relay requests to Tomcat instead of using Tomcat as stand-alone. To do this, do I just need to configure Apache and add the appropriate mappings or must I also install the mod_jk (Apache 1.3 and Tomcat 4.0.x)? -Original Message- From: John Turner [mailto:[EMAIL PROTECTED] Sent: Thursday, August 14, 2003 1:24 PM To: Tomcat Users List Subject: Re: Running servlet via SSL??? Carlos Oliva wrote: However, I see the welcome screen of Tomcat if I use http://:8080 but not if I use https::8080 or any other combination of ports and http or https. Furthermore, servlets run via http://:8080/ , but not https://... Or http://:8443/... If anything, it would be https://...:8443 From this, I am concluding that Apache is set to run with http or https, that Tomcat is configured as stand alone -- not via ssl. Right, but Tomcat's SSL status is irrelevant if you're using Apache and a connector. Apache and Tomcat do not speak SSL when communicating with each other. If you're using SSL with Apache + Tomcat, the only SSL configuration is done on the Apache side. You have to remember to add the appropriate URI mappings for your connector to the SSL virtual host in httpd.conf. So, since I have JDK1.4.x installed, I am assuming that I just need to create the right certificates and configure the server.xml file for tomcat to enable Tomcat to work with ssl in stand alone mode. Right? Right, but again, this is not needed if you have Apache set to do SSL, unless you want to do testing using Tomcat alone. Tomcat SSL HOWTO: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/ssl-howto.html John - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Running servlet via SSL???
Thank you very much for your reponse. Probably we will want to take advantage of Apache SSL and configure it to relay requests to Tomcat instead of using Tomcat as stand-alone. To do this, do I just need to configure Apache and add the appropriate mappings or must I also install the mod_jk (Apache 1.3 and Tomcat 4.0.x)? -Original Message- From: John Turner [mailto:[EMAIL PROTECTED] Sent: Thursday, August 14, 2003 1:24 PM To: Tomcat Users List Subject: Re: Running servlet via SSL??? Carlos Oliva wrote: However, I see the welcome screen of Tomcat if I use http://:8080 but not if I use https::8080 or any other combination of ports and http or https. Furthermore, servlets run via http://:8080/ , but not https://... Or http://:8443/... If anything, it would be https://...:8443 From this, I am concluding that Apache is set to run with http or https, that Tomcat is configured as stand alone -- not via ssl. Right, but Tomcat's SSL status is irrelevant if you're using Apache and a connector. Apache and Tomcat do not speak SSL when communicating with each other. If you're using SSL with Apache + Tomcat, the only SSL configuration is done on the Apache side. You have to remember to add the appropriate URI mappings for your connector to the SSL virtual host in httpd.conf. So, since I have JDK1.4.x installed, I am assuming that I just need to create the right certificates and configure the server.xml file for tomcat to enable Tomcat to work with ssl in stand alone mode. Right? Right, but again, this is not needed if you have Apache set to do SSL, unless you want to do testing using Tomcat alone. Tomcat SSL HOWTO: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/ssl-howto.html John - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Running servlet via SSL???
Did you do the full SSL setup on Apache? You can't just switch from http to https without doing all the configuration and having a SSL virtual host setup. RE: your question, yes, it is possible to use SSL, many people are doing so. If you can be more specific about what you've done and what error you're getting, perhaps we can be of more help. John Carlos wrote: Hi Forum, Is it possible to run/navigate to a servlet via an SSL connection? I have Apache and Tomcat 4.x installed in RedHat 7.x and I can navigate (with IExplorer) to a test servlet (which sends a hello message to standard output) with the following call: http://server http://server ip:8080/context/servlet/name of class But if I use https instead of http the servlet does not run. I have tried to change the port to 43 and 8443 without success. Apache and Tomcat were installed with their defaults settings so I am not sure if Tomcat is running as stand alone or not. Thanks in advance for your response. Carlos Oliva - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Running servlet via SSL???
Carlos Oliva wrote: However, I see the welcome screen of Tomcat if I use http://:8080 but not if I use https::8080 or any other combination of ports and http or https. Furthermore, servlets run via http://:8080/ , but not https://... Or http://:8443/... If anything, it would be https://...:8443 From this, I am concluding that Apache is set to run with http or https, that Tomcat is configured as stand alone -- not via ssl. Right, but Tomcat's SSL status is irrelevant if you're using Apache and a connector. Apache and Tomcat do not speak SSL when communicating with each other. If you're using SSL with Apache + Tomcat, the only SSL configuration is done on the Apache side. You have to remember to add the appropriate URI mappings for your connector to the SSL virtual host in httpd.conf. So, since I have JDK1.4.x installed, I am assuming that I just need to create the right certificates and configure the server.xml file for tomcat to enable Tomcat to work with ssl in stand alone mode. Right? Right, but again, this is not needed if you have Apache set to do SSL, unless you want to do testing using Tomcat alone. Tomcat SSL HOWTO: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/ssl-howto.html John - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Running servlet via SSL???
Hi John, Thank you for your response. Apache seems to be able to work with either http or https. For instance, I can navigate to Apache's welcome screen via http:// or https:// Through Webmin, I can see that Apache Webserver has two virtual servers, namely: Default Server(Address any, ports any) and Virtual Server (address any, port 443) However, I see the welcome screen of Tomcat if I use http://:8080 but not if I use https::8080 or any other combination of ports and http or https. Furthermore, servlets run via http://:8080/ , but not https://... Or http://:8443/... Looking at the server.xml file, I see the following lines: !-- Define the Tomcat Stand-Alone Service -- Service name=Tomcat-Standalone . . . , !-- Define a non-SSL HTTP/1.1 Connector on port 8080 -- Connector className=org.apache.catalina.connector.http.HttpConnector . . . And !-- Define an SSL HTTP/1.1 Connector on port 8443 -- !-- Connector className=org.apache.catalina.connector.http.HttpConnector From this, I am concluding that Apache is set to run with http or https, that Tomcat is configured as stand alone -- not via ssl. So, since I have JDK1.4.x installed, I am assuming that I just need to create the right certificates and configure the server.xml file for tomcat to enable Tomcat to work with ssl in stand alone mode. Right? Thanks in advance for your response. -Original Message- From: John Turner [mailto:[EMAIL PROTECTED] Sent: Thursday, August 14, 2003 10:06 AM To: Tomcat Users List Subject: Re: Running servlet via SSL??? Did you do the full SSL setup on Apache? You can't just switch from http to https without doing all the configuration and having a SSL virtual host setup. RE: your question, yes, it is possible to use SSL, many people are doing so. If you can be more specific about what you've done and what error you're getting, perhaps we can be of more help. John Carlos wrote: Hi Forum, Is it possible to run/navigate to a servlet via an SSL connection? I have Apache and Tomcat 4.x installed in RedHat 7.x and I can navigate (with IExplorer) to a test servlet (which sends a hello message to standard output) with the following call: http://server http://server ip:8080/context/servlet/name of class But if I use https instead of http the servlet does not run. I have tried to change the port to 43 and 8443 without success. Apache and Tomcat were installed with their defaults settings so I am not sure if Tomcat is running as stand alone or not. Thanks in advance for your response. Carlos Oliva - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]