RE: SSL setup Apache - Tomcat
We have a number of Apache/Tomcat webapps that run through SSL with the certificate only on the apache side. However we are using the warp connector and if you are using mod_jk you may have a different behavior. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:02 PM To: 'Tomcat Users List' Subject: SSL setup Apache - Tomcat Ok, I have been reading through the archives of this list and this is not good I have one registered domain for which I purchased a certificate for. Apache is set up to use this certificate, and I can access my Apache app through https://. Now I added some JSP to my site, and I need this JSP to be secure as well. I've seen this mentioned a number of times, and as you guess when I try to access https://mydomain.com/mywebapps the server infinitely hangs. I just finished reading how SSL from Apache to Tomcat is not implemented... Is this true? Is the scenario I want not possible? Can I set up my certificate separately in the Tomcat config files? Will this work? The Apache app processes a server side transaction and on the last page the connection to my backend system is ended as the last page is loaded. This last page has a link that when clicked, only sends 2 non-critical variables to my JSP. But as I mentioned I need this JSP to be secure. ... so even if the SSL connection is broken, then renewed on the Tomcat side, that would be sufficient (both are under same domain name, and on same physical box)... Any suggestions? Thanks! Btw...where is everyone today? Does the whole world besides me get off early on Friday's?? ; ) Denise Mangano -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: SSL setup Apache - Tomcat
Can you fill me in a little on what you had to do, if anything, to get your webapps to come up with the https:// protocol. Am I going to have to use the warp connector instead? If so, could someone fill me in on how to get started with that? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:29 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat We have a number of Apache/Tomcat webapps that run through SSL with the certificate only on the apache side. However we are using the warp connector and if you are using mod_jk you may have a different behavior. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:02 PM To: 'Tomcat Users List' Subject: SSL setup Apache - Tomcat Ok, I have been reading through the archives of this list and this is not good I have one registered domain for which I purchased a certificate for. Apache is set up to use this certificate, and I can access my Apache app through https://. Now I added some JSP to my site, and I need this JSP to be secure as well. I've seen this mentioned a number of times, and as you guess when I try to access https://mydomain.com/mywebapps the server infinitely hangs. I just finished reading how SSL from Apache to Tomcat is not implemented... Is this true? Is the scenario I want not possible? Can I set up my certificate separately in the Tomcat config files? Will this work? The Apache app processes a server side transaction and on the last page the connection to my backend system is ended as the last page is loaded. This last page has a link that when clicked, only sends 2 non-critical variables to my JSP. But as I mentioned I need this JSP to be secure. ... so even if the SSL connection is broken, then renewed on the Tomcat side, that would be sufficient (both are under same domain name, and on same physical box)... Any suggestions? Thanks! Btw...where is everyone today? Does the whole world besides me get off early on Friday's?? ; ) Denise Mangano -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: SSL setup Apache - Tomcat
I would imagine you do not need to switch to warp and the majority of the list would say not to use warp. I only use it due to the fact it is not currently convenient for me to upgrade the perl on my HP-UX box to 5.05. The only thing I had to do was to place the warp equivalent of JKMount in the virtual host for the 443 port and I was off and running. Do you place the JKMount directive in each virtual host or do place them outside of all virtual hosts so that the directive apply to all hosts? I do know for JRUN 2.3.3, the placement of the mapping directive relative to the virtual hosts makes a diference of operation. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:36 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat Can you fill me in a little on what you had to do, if anything, to get your webapps to come up with the https:// protocol. Am I going to have to use the warp connector instead? If so, could someone fill me in on how to get started with that? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:29 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat We have a number of Apache/Tomcat webapps that run through SSL with the certificate only on the apache side. However we are using the warp connector and if you are using mod_jk you may have a different behavior. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:02 PM To: 'Tomcat Users List' Subject: SSL setup Apache - Tomcat Ok, I have been reading through the archives of this list and this is not good I have one registered domain for which I purchased a certificate for. Apache is set up to use this certificate, and I can access my Apache app through https://. Now I added some JSP to my site, and I need this JSP to be secure as well. I've seen this mentioned a number of times, and as you guess when I try to access https://mydomain.com/mywebapps the server infinitely hangs. I just finished reading how SSL from Apache to Tomcat is not implemented... Is this true? Is the scenario I want not possible? Can I set up my certificate separately in the Tomcat config files? Will this work? The Apache app processes a server side transaction and on the last page the connection to my backend system is ended as the last page is loaded. This last page has a link that when clicked, only sends 2 non-critical variables to my JSP. But as I mentioned I need this JSP to be secure. ... so even if the SSL connection is broken, then renewed on the Tomcat side, that would be sufficient (both are under same domain name, and on same physical box)... Any suggestions? Thanks! Btw...where is everyone today? Does the whole world besides me get off early on Friday's?? ; ) Denise Mangano -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: SSL setup Apache - Tomcat
The other JkMount statements that I have specified have al been placed outside of the Virtual hosts directives, but I do not have one specified for SSL. Everything in the Tomcat documentation seems to discuss setting up SSL on Tomcat acting as a standalone, which is not my situation. I'm trying to find something telling me how to formulate such a JkMount statement, but can't seem to find anything. Any suggestions? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:43 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat I would imagine you do not need to switch to warp and the majority of the list would say not to use warp. I only use it due to the fact it is not currently convenient for me to upgrade the perl on my HP-UX box to 5.05. The only thing I had to do was to place the warp equivalent of JKMount in the virtual host for the 443 port and I was off and running. Do you place the JKMount directive in each virtual host or do place them outside of all virtual hosts so that the directive apply to all hosts? I do know for JRUN 2.3.3, the placement of the mapping directive relative to the virtual hosts makes a diference of operation. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:36 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat Can you fill me in a little on what you had to do, if anything, to get your webapps to come up with the https:// protocol. Am I going to have to use the warp connector instead? If so, could someone fill me in on how to get started with that? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:29 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat We have a number of Apache/Tomcat webapps that run through SSL with the certificate only on the apache side. However we are using the warp connector and if you are using mod_jk you may have a different behavior. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:02 PM To: 'Tomcat Users List' Subject: SSL setup Apache - Tomcat Ok, I have been reading through the archives of this list and this is not good I have one registered domain for which I purchased a certificate for. Apache is set up to use this certificate, and I can access my Apache app through https://. Now I added some JSP to my site, and I need this JSP to be secure as well. I've seen this mentioned a number of times, and as you guess when I try to access https://mydomain.com/mywebapps the server infinitely hangs. I just finished reading how SSL from Apache to Tomcat is not implemented... Is this true? Is the scenario I want not possible? Can I set up my certificate separately in the Tomcat config files? Will this work? The Apache app processes a server side transaction and on the last page the connection to my backend system is ended as the last page is loaded. This last page has a link that when clicked, only sends 2 non-critical variables to my JSP. But as I mentioned I need this JSP to be secure. ... so even if the SSL connection is broken, then renewed on the Tomcat side, that would be sufficient (both are under same domain name, and on same physical box)... Any suggestions? Thanks! Btw...where is everyone today? Does the whole world besides me get off early on Friday's?? ; ) Denise Mangano -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: SSL setup Apache - Tomcat
The JKmount statement formulation will be the same regardless of protocol so I would try placing the one in which you are interested in the 443 virtual host If you scroll down to the bottom of this doc they show it in a 443 host http://jakarta.apache.org/tomcat/tomcat-4.1-doc/config/jk.html -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:53 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat The other JkMount statements that I have specified have al been placed outside of the Virtual hosts directives, but I do not have one specified for SSL. Everything in the Tomcat documentation seems to discuss setting up SSL on Tomcat acting as a standalone, which is not my situation. I'm trying to find something telling me how to formulate such a JkMount statement, but can't seem to find anything. Any suggestions? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:43 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat I would imagine you do not need to switch to warp and the majority of the list would say not to use warp. I only use it due to the fact it is not currently convenient for me to upgrade the perl on my HP-UX box to 5.05. The only thing I had to do was to place the warp equivalent of JKMount in the virtual host for the 443 port and I was off and running. Do you place the JKMount directive in each virtual host or do place them outside of all virtual hosts so that the directive apply to all hosts? I do know for JRUN 2.3.3, the placement of the mapping directive relative to the virtual hosts makes a diference of operation. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:36 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat Can you fill me in a little on what you had to do, if anything, to get your webapps to come up with the https:// protocol. Am I going to have to use the warp connector instead? If so, could someone fill me in on how to get started with that? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:29 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat We have a number of Apache/Tomcat webapps that run through SSL with the certificate only on the apache side. However we are using the warp connector and if you are using mod_jk you may have a different behavior. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:02 PM To: 'Tomcat Users List' Subject: SSL setup Apache - Tomcat Ok, I have been reading through the archives of this list and this is not good I have one registered domain for which I purchased a certificate for. Apache is set up to use this certificate, and I can access my Apache app through https://. Now I added some JSP to my site, and I need this JSP to be secure as well. I've seen this mentioned a number of times, and as you guess when I try to access https://mydomain.com/mywebapps the server infinitely hangs. I just finished reading how SSL from Apache to Tomcat is not implemented... Is this true? Is the scenario I want not possible? Can I set up my certificate separately in the Tomcat config files? Will this work? The Apache app processes a server side transaction and on the last page the connection to my backend system is ended as the last page is loaded. This last page has a link that when clicked, only sends 2 non-critical variables to my JSP. But as I mentioned I need this JSP to be secure. ... so even if the SSL connection is broken, then renewed on the Tomcat side, that would be sufficient (both are under same domain name, and on same physical box)... Any suggestions? Thanks! Btw...where is everyone today? Does the whole world besides me get off early on Friday's?? ; ) Denise Mangano -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: SSL setup Apache - Tomcat
I'm assuming that you are using mod_ssl with Apache, and not running a separate SSL webserver like Stronghold, right??? I've not setup ApacheSSL/Tomcat before except with mod_webapp, but I have setup Apache/Tomcat with mod_jk as well (just not with ssl support). Here's my 2 cents anyway: The JkMount statements can go inside or outside a VirtualHost Block. Outside - they will apply to all virtualhosts Inside - they will apply to just that virtualhost (mod_webapp and most other apache mods work this way) So, if you have something like this: JkMount /examples/*.jsp ajp13 You should be able to place that inside your SSL VirtualHosts too. VirtualHost xx.xx.xx.xx:443 SSL. JkMount /examples/*.jsp ajp13 /VirtualHost Ken A. Denise Mangano wrote: The other JkMount statements that I have specified have al been placed outside of the Virtual hosts directives, but I do not have one specified for SSL. Everything in the Tomcat documentation seems to discuss setting up SSL on Tomcat acting as a standalone, which is not my situation. I'm trying to find something telling me how to formulate such a JkMount statement, but can't seem to find anything. Any suggestions? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:43 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat I would imagine you do not need to switch to warp and the majority of the list would say not to use warp. I only use it due to the fact it is not currently convenient for me to upgrade the perl on my HP-UX box to 5.05. The only thing I had to do was to place the warp equivalent of JKMount in the virtual host for the 443 port and I was off and running. Do you place the JKMount directive in each virtual host or do place them outside of all virtual hosts so that the directive apply to all hosts? I do know for JRUN 2.3.3, the placement of the mapping directive relative to the virtual hosts makes a diference of operation. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:36 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat Can you fill me in a little on what you had to do, if anything, to get your webapps to come up with the https:// protocol. Am I going to have to use the warp connector instead? If so, could someone fill me in on how to get started with that? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:29 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat We have a number of Apache/Tomcat webapps that run through SSL with the certificate only on the apache side. However we are using the warp connector and if you are using mod_jk you may have a different behavior. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:02 PM To: 'Tomcat Users List' Subject: SSL setup Apache - Tomcat Ok, I have been reading through the archives of this list and this is not good I have one registered domain for which I purchased a certificate for. Apache is set up to use this certificate, and I can access my Apache app through https://. Now I added some JSP to my site, and I need this JSP to be secure as well. I've seen this mentioned a number of times, and as you guess when I try to access https://mydomain.com/mywebapps the server infinitely hangs. I just finished reading how SSL from Apache to Tomcat is not implemented... Is this true? Is the scenario I want not possible? Can I set up my certificate separately in the Tomcat config files? Will this work? The Apache app processes a server side transaction and on the last page the connection to my backend system is ended as the last page is loaded. This last page has a link that when clicked, only sends 2 non-critical variables to my JSP. But as I mentioned I need this JSP to be secure. ... so even if the SSL connection is broken, then renewed on the Tomcat side, that would be sufficient (both are under same domain name, and on same physical box)... Any suggestions? Thanks! Btw...where is everyone today? Does the whole world besides me get off early on Friday's?? ; ) Denise Mangano -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto
RE: SSL setup Apache - Tomcat
On Fri, 20 Dec 2002, Denise Mangano wrote: The other JkMount statements that I have specified have al been placed outside of the Virtual hosts directives, but I do not have one specified for SSL. As the previous poster suggested, this is most likely your problem. As with other directives, JkMount's are specific to the context in which you place them in your httpd.conf. If you want some to work under https, you need to place them in the section of your httpd.conf (probably a Virtual Host section) that applies to the https instance. Everything in the Tomcat documentation seems to discuss setting up SSL on Tomcat acting as a standalone, which is not my situation. Right. So none of that stuff is applicable to you. If you are using Tomcat standalone, then you need to set up SSL with Tomcat; if you are using Tomcat behind Apache (or some other web server), you set up SSL with Apache (or whatever web server you're using) and use that. I'm trying to find something telling me how to formulate such a JkMount statement, but can't seem to find anything. Any suggestions? See above. You can control which webapps (and perhaps the components thereof) are accessible via http and/or https by where you place the relevant JkMount directives. (Otherwise there is nothing different between the JkMount directives you use in the http and https sections of your httpd.conf.) -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:43 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat I would imagine you do not need to switch to warp and the majority of the list would say not to use warp. I only use it due to the fact it is not currently convenient for me to upgrade the perl on my HP-UX box to 5.05. The only thing I had to do was to place the warp equivalent of JKMount in the virtual host for the 443 port and I was off and running. Do you place the JKMount directive in each virtual host or do place them outside of all virtual hosts so that the directive apply to all hosts? I do know for JRUN 2.3.3, the placement of the mapping directive relative to the virtual hosts makes a diference of operation. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:36 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat Can you fill me in a little on what you had to do, if anything, to get your webapps to come up with the https:// protocol. Am I going to have to use the warp connector instead? If so, could someone fill me in on how to get started with that? Thanks. Denise Mangano Help Desk Analyst Complus Data Innovations, Inc. -Original Message- From: PELOQUIN,JEFFREY (HP-Boise,ex1) [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 3:29 PM To: 'Tomcat Users List' Subject: RE: SSL setup Apache - Tomcat We have a number of Apache/Tomcat webapps that run through SSL with the certificate only on the apache side. However we are using the warp connector and if you are using mod_jk you may have a different behavior. -Original Message- From: Denise Mangano [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:02 PM To: 'Tomcat Users List' Subject: SSL setup Apache - Tomcat Ok, I have been reading through the archives of this list and this is not good I have one registered domain for which I purchased a certificate for. Apache is set up to use this certificate, and I can access my Apache app through https://. Now I added some JSP to my site, and I need this JSP to be secure as well. I've seen this mentioned a number of times, and as you guess when I try to access https://mydomain.com/mywebapps the server infinitely hangs. I just finished reading how SSL from Apache to Tomcat is not implemented... Is this true? Is the scenario I want not possible? Can I set up my certificate separately in the Tomcat config files? Will this work? The Apache app processes a server side transaction and on the last page the connection to my backend system is ended as the last page is loaded. This last page has a link that when clicked, only sends 2 non-critical variables to my JSP. But as I mentioned I need this JSP to be secure. ... so even if the SSL connection is broken, then renewed on the Tomcat side, that would be sufficient (both are under same domain name, and on same physical box)... Any suggestions? Thanks! Btw...where is everyone today? Does the whole world besides me get off early on Friday's?? ; ) Denise Mangano -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e
Re: SSL setup Apache - Tomcat
You should be able to get Tomcat and Apache to work together with SSL by using the JK connector. In our experience, the JK connector is the only one that works. The webapp connector truncates pages, and the JK2 connector just does not work with https connections for some reason. Keep in mind that when using Tomcat, you have one of the following situations: Internet - Tomcat - Servlet or Internet - Apache - Tomcat - Servlet You only need SSL between the Internet and whatever is talking to it, so if you are using Apache, it is the only piece that needs to talk SSL unless your Apache - Tomcat connection also goes over the internet (unlikely). So don't worry about SSL within Tomcat. You should be able to put your JkMount and LoadModule statements at the top level of your httpd.conf file and have it work for both http and https connections. It seems to work that way for us anyway. Chris Denise Mangano wrote: Ok, I have been reading through the archives of this list and this is not good I have one registered domain for which I purchased a certificate for. Apache is set up to use this certificate, and I can access my Apache app through https://. Now I added some JSP to my site, and I need this JSP to be secure as well. I've seen this mentioned a number of times, and as you guess when I try to access https://mydomain.com/mywebapps the server infinitely hangs. I just finished reading how SSL from Apache to Tomcat is not implemented... Is this true? Is the scenario I want not possible? Can I set up my certificate separately in the Tomcat config files? Will this work? The Apache app processes a server side transaction and on the last page the connection to my backend system is ended as the last page is loaded. This last page has a link that when clicked, only sends 2 non-critical variables to my JSP. But as I mentioned I need this JSP to be secure. ... so even if the SSL connection is broken, then renewed on the Tomcat side, that would be sufficient (both are under same domain name, and on same physical box)... Any suggestions? Thanks! Btw...where is everyone today? Does the whole world besides me get off early on Friday's?? ; ) Denise Mangano -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- Chris P. McCabe - Principal Engineer Choice Hotels International - Information Technology [EMAIL PROTECTED] 602-953-4416 -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]