Re: Tomcat and Apache+SSL integration issues
Ouch, sorry. I don't have access to HPUX otherwise I'd build some binaries ;) Lajos Ing. Gustavo Edelstein wrote: Thanks for your promptly answer, Lajos. I've red those guides but my problem is compiling mod_jk in HPUX 11.00 Best regards, Ing. Gustavo A. Edelstein Tech. Mgr. Equiplus S.A. www.equiplus.com - Original Message - From: "Lajos" <[EMAIL PROTECTED]> To: "Tomcat Users List" <[EMAIL PROTECTED]> Sent: Wednesday, January 29, 2003 1:56 PM Subject: Re: Tomcat and Apache+SSL integration issues I've done it on Linux, Solaris and Windows. I have various guides on my site, www.galatea.com/flashguides, that detail my experiences. The biggest problem I've had was in some Tomcat 4.0.x versions that didn't correctly support authentication over SSL using mod_jk. But that seems to be cleared up in recent versions. Regards, Lajos Ing. Gustavo Edelstein wrote: Hi Lajos, Which is your platform ? Thanks, Ing. Gustavo A. Edelstein Tech. Mgr. Equiplus S.A. www.equiplus.com - Original Message - From: "Lajos" <[EMAIL PROTECTED]> To: "Tomcat Users List" <[EMAIL PROTECTED]> Sent: Wednesday, January 29, 2003 1:26 PM Subject: Re: Tomcat and Apache+SSL integration issues Maris - I have done this on several occasions with mod_jk without any problem. I can't compare it to mod_proxy, since I rarely use it, but I suggest you try mod_jk. Regards, Lajos Māris Orbidāns wrote: hello all We have finished a large project which was based on Tomcat and Struts farmework. Now our client wants to use SSL. Our architecture is as follows: Client<-ssl content->Apache (MOD_SLL) <-unencrypted content-> Tomcat We use Tomcat 4.1.18 (have tried also 4.0) and Apache HTTP server 1.3.27. SSL support is installed in Apache, and it uses mod_proxy (NOT mod_jk) to talk to Tomcat. It doesnt work very well , if I go to https:// and login succesfully, IE shows a warning message "you are gonna be redirected to a non-secure connection" and it goes back to http:// I have tried Tomcat+SSL without Apache HTTP server and all worked perfectly. Also I am not sure that mod_proxy (with ProxyPass and ProxyPassReverse in httpd.conf file) is enough, or should we use mod_jk ? Does anybody have some ideas how to solve it ? thanx Maris Orbidans app. architect - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Lajos Moczar Open Source Support, Consulting and Training Cocoon Developer's Handbook (www.amazon.com/exec/obidos/tg/detail/-/0672322579) _ _ / \ / /___\ / / \ / http://www.galatea.com -- powered by AzSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Lajos Moczar Open Source Support, Consulting and Training Cocoon Developer's Handbook (www.amazon.com/exec/obidos/tg/detail/-/0672322579) _ _ / \ / /___\ / / \ / http://www.galatea.com -- powered by AzSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Lajos Moczar Open Source Support, Consulting and Training Cocoon Developer's Handbook (www.amazon.com/exec/obidos/tg/detail/-/0672322579) _ _ / \ / /___\ / / \ / http://www.galatea.com -- powered by AzSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat and Apache+SSL integration issues
Thanks for your promptly answer, Lajos. I've red those guides but my problem is compiling mod_jk in HPUX 11.00 Best regards, Ing. Gustavo A. Edelstein Tech. Mgr. Equiplus S.A. www.equiplus.com - Original Message - From: "Lajos" <[EMAIL PROTECTED]> To: "Tomcat Users List" <[EMAIL PROTECTED]> Sent: Wednesday, January 29, 2003 1:56 PM Subject: Re: Tomcat and Apache+SSL integration issues > I've done it on Linux, Solaris and Windows. I have various guides on my > site, www.galatea.com/flashguides, that detail my experiences. The > biggest problem I've had was in some Tomcat 4.0.x versions that didn't > correctly support authentication over SSL using mod_jk. But that seems > to be cleared up in recent versions. > > Regards, > > Lajos > > > Ing. Gustavo Edelstein wrote: > > Hi Lajos, > > Which is your platform ? > > Thanks, > > > > Ing. Gustavo A. Edelstein > > Tech. Mgr. > > Equiplus S.A. > > www.equiplus.com > > - Original Message - > > From: "Lajos" <[EMAIL PROTECTED]> > > To: "Tomcat Users List" <[EMAIL PROTECTED]> > > Sent: Wednesday, January 29, 2003 1:26 PM > > Subject: Re: Tomcat and Apache+SSL integration issues > > > > > > > >>Maris - > >> > >>I have done this on several occasions with mod_jk without any problem. I > >>can't compare it to mod_proxy, since I rarely use it, but I suggest you > >>try mod_jk. > >> > >>Regards, > >> > >>Lajos > >> > >> > >>Māris Orbidāns wrote: > >> > >>>hello all > >>> > >>>We have finished a large project which was based on Tomcat and Struts > >> > > farmework. > > > >>>Now our client wants to use SSL. > >>> > >>>Our architecture is as follows: > >>> > >>>Client<-ssl content->Apache (MOD_SLL) <-unencrypted content-> > >> > > Tomcat > > > >>> > >>>We use Tomcat 4.1.18 (have tried also 4.0) and Apache HTTP server > >> > > 1.3.27. SSL support is installed in Apache, and it uses mod_proxy (NOT > > mod_jk) to talk to Tomcat. > > > >>>It doesnt work very well , if I go to https:// and login succesfully, IE > >> > > shows a warning message "you are gonna be redirected to a non-secure > > connection" and it goes back to http:// > > > >>>I have tried Tomcat+SSL without Apache HTTP server and all worked > >> > > perfectly. > > > >>>Also I am not sure that mod_proxy (with ProxyPass and ProxyPassReverse > >> > > in httpd.conf file) > > > >>>is enough, or should we use mod_jk ? > >>> > >>>Does anybody have some ideas how to solve it ? > >>> > >>>thanx > >>>Maris Orbidans > >>>app. architect > >>> > >>> > >>>- > >>>To unsubscribe, e-mail: [EMAIL PROTECTED] > >>>For additional commands, e-mail: [EMAIL PROTECTED] > >>> > >>> > >> > >> > >>-- > >> > >> > >> > >>Lajos Moczar > >> > >> Open Source Support, Consulting and Training > >> > >> Cocoon Developer's Handbook > >> (www.amazon.com/exec/obidos/tg/detail/-/0672322579) > >> > >>_ _ > >> / \ / > >> /___\ / > >> / \ / > >> > >> http://www.galatea.com -- powered by AzSSL > >> > >> > >>- > >>To unsubscribe, e-mail: [EMAIL PROTECTED] > >>For additional commands, e-mail: [EMAIL PROTECTED] > >> > > > > > > > > - > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > -- > > > > Lajos Moczar > > Open Source Support, Consulting and Training > > Cocoon Developer's Handbook > (www.amazon.com/exec/obidos/tg/detail/-/0672322579) > > _ _ >/ \ / > /___\ / > / \ / > > http://www.galatea.com -- powered by AzSSL > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat and Apache+SSL integration issues
Actually, I think you can dispense with the workers.tomcat_home setting. Just place workers.properties somewhere where httpd.conf can access it. Regards, Lajos Māris Orbidāns wrote: we have Tomcat and Apache on different hosts. Do we need to install Tomcat on Apache's host too ? Apache HTTP server needs config file workers.properties. It has a property Tomcat_home which points to Tomcat installation. Maris -Original Message- From: Lajos [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 29, 2003 6:26 PM To: Tomcat Users List Subject: Re: Tomcat and Apache+SSL integration issues Maris - I have done this on several occasions with mod_jk without any problem. I can't compare it to mod_proxy, since I rarely use it, but I suggest you try mod_jk. Regards, Lajos Māris Orbidāns wrote: hello all We have finished a large project which was based on Tomcat and Struts farmework. Now our client wants to use SSL. Our architecture is as follows: Client<-ssl content->Apache (MOD_SLL) <-unencrypted content-> Tomcat We use Tomcat 4.1.18 (have tried also 4.0) and Apache HTTP server 1.3.27. SSL support is installed in Apache, and it uses mod_proxy (NOT mod_jk) to talk to Tomcat. It doesnt work very well , if I go to https:// and login succesfully, IE shows a warning message "you are gonna be redirected to a non-secure connection" and it goes back to http:// I have tried Tomcat+SSL without Apache HTTP server and all worked perfectly. Also I am not sure that mod_proxy (with ProxyPass and ProxyPassReverse in httpd.conf file) is enough, or should we use mod_jk ? Does anybody have some ideas how to solve it ? thanx Maris Orbidans app. architect - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Lajos Moczar Open Source Support, Consulting and Training Cocoon Developer's Handbook (www.amazon.com/exec/obidos/tg/detail/-/0672322579) _ _ / \ / /___\ / / \ / http://www.galatea.com -- powered by AzSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Lajos Moczar Open Source Support, Consulting and Training Cocoon Developer's Handbook (www.amazon.com/exec/obidos/tg/detail/-/0672322579) _ _ / \ / /___\ / / \ / http://www.galatea.com -- powered by AzSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat and Apache+SSL integration issues
I've done it on Linux, Solaris and Windows. I have various guides on my site, www.galatea.com/flashguides, that detail my experiences. The biggest problem I've had was in some Tomcat 4.0.x versions that didn't correctly support authentication over SSL using mod_jk. But that seems to be cleared up in recent versions. Regards, Lajos Ing. Gustavo Edelstein wrote: Hi Lajos, Which is your platform ? Thanks, Ing. Gustavo A. Edelstein Tech. Mgr. Equiplus S.A. www.equiplus.com - Original Message - From: "Lajos" <[EMAIL PROTECTED]> To: "Tomcat Users List" <[EMAIL PROTECTED]> Sent: Wednesday, January 29, 2003 1:26 PM Subject: Re: Tomcat and Apache+SSL integration issues Maris - I have done this on several occasions with mod_jk without any problem. I can't compare it to mod_proxy, since I rarely use it, but I suggest you try mod_jk. Regards, Lajos Māris Orbidāns wrote: hello all We have finished a large project which was based on Tomcat and Struts farmework. Now our client wants to use SSL. Our architecture is as follows: Client<-ssl content->Apache (MOD_SLL) <-unencrypted content-> Tomcat We use Tomcat 4.1.18 (have tried also 4.0) and Apache HTTP server 1.3.27. SSL support is installed in Apache, and it uses mod_proxy (NOT mod_jk) to talk to Tomcat. It doesnt work very well , if I go to https:// and login succesfully, IE shows a warning message "you are gonna be redirected to a non-secure connection" and it goes back to http:// I have tried Tomcat+SSL without Apache HTTP server and all worked perfectly. Also I am not sure that mod_proxy (with ProxyPass and ProxyPassReverse in httpd.conf file) is enough, or should we use mod_jk ? Does anybody have some ideas how to solve it ? thanx Maris Orbidans app. architect - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Lajos Moczar Open Source Support, Consulting and Training Cocoon Developer's Handbook (www.amazon.com/exec/obidos/tg/detail/-/0672322579) _ _ / \ / /___\ / / \ / http://www.galatea.com -- powered by AzSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Lajos Moczar Open Source Support, Consulting and Training Cocoon Developer's Handbook (www.amazon.com/exec/obidos/tg/detail/-/0672322579) _ _ / \ / /___\ / / \ / http://www.galatea.com -- powered by AzSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Tomcat and Apache+SSL integration issues
we have Tomcat and Apache on different hosts. Do we need to install Tomcat on Apache's host too ? Apache HTTP server needs config file workers.properties. It has a property Tomcat_home which points to Tomcat installation. Maris > -Original Message- > From: Lajos [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, January 29, 2003 6:26 PM > To: Tomcat Users List > Subject: Re: Tomcat and Apache+SSL integration issues > > > Maris - > > I have done this on several occasions with mod_jk without any > problem. I > can't compare it to mod_proxy, since I rarely use it, but I > suggest you > try mod_jk. > > Regards, > > Lajos > > > Māris Orbidāns wrote: > > hello all > > > > We have finished a large project which was based on Tomcat > and Struts farmework. > > Now our client wants to use SSL. > > > > Our architecture is as follows: > > > > Client<-ssl content->Apache (MOD_SLL) > <-unencrypted content-> Tomcat > > > > > > We use Tomcat 4.1.18 (have tried also 4.0) and Apache HTTP > server 1.3.27. SSL support is installed in Apache, and it > uses mod_proxy (NOT mod_jk) to talk to Tomcat. > > > > It doesnt work very well , if I go to https:// and login > succesfully, IE shows a warning message "you are gonna be > redirected to a non-secure connection" and it goes back to http:// > > > > I have tried Tomcat+SSL without Apache HTTP server and all > worked perfectly. > > > > Also I am not sure that mod_proxy (with ProxyPass and > ProxyPassReverse in httpd.conf file) > > is enough, or should we use mod_jk ? > > > > Does anybody have some ideas how to solve it ? > > > > thanx > > Maris Orbidans > > app. architect > > > > > > > - > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > -- > > > > Lajos Moczar > > Open Source Support, Consulting and Training > > Cocoon Developer's Handbook > (www.amazon.com/exec/obidos/tg/detail/-/0672322579) > > _ _ >/ \ / > /___\ / > / \ / > > http://www.galatea.com -- powered by AzSSL > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat and Apache+SSL integration issues
Hi Lajos, Which is your platform ? Thanks, Ing. Gustavo A. Edelstein Tech. Mgr. Equiplus S.A. www.equiplus.com - Original Message - From: "Lajos" <[EMAIL PROTECTED]> To: "Tomcat Users List" <[EMAIL PROTECTED]> Sent: Wednesday, January 29, 2003 1:26 PM Subject: Re: Tomcat and Apache+SSL integration issues > Maris - > > I have done this on several occasions with mod_jk without any problem. I > can't compare it to mod_proxy, since I rarely use it, but I suggest you > try mod_jk. > > Regards, > > Lajos > > > Māris Orbidāns wrote: > > hello all > > > > We have finished a large project which was based on Tomcat and Struts farmework. > > Now our client wants to use SSL. > > > > Our architecture is as follows: > > > > Client<-ssl content->Apache (MOD_SLL) <-unencrypted content-> Tomcat > > > > > > We use Tomcat 4.1.18 (have tried also 4.0) and Apache HTTP server 1.3.27. SSL support is installed in Apache, and it uses mod_proxy (NOT mod_jk) to talk to Tomcat. > > > > It doesnt work very well , if I go to https:// and login succesfully, IE shows a warning message "you are gonna be redirected to a non-secure connection" and it goes back to http:// > > > > I have tried Tomcat+SSL without Apache HTTP server and all worked perfectly. > > > > Also I am not sure that mod_proxy (with ProxyPass and ProxyPassReverse in httpd.conf file) > > is enough, or should we use mod_jk ? > > > > Does anybody have some ideas how to solve it ? > > > > thanx > > Maris Orbidans > > app. architect > > > > > > - > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > -- > > > > Lajos Moczar > > Open Source Support, Consulting and Training > > Cocoon Developer's Handbook > (www.amazon.com/exec/obidos/tg/detail/-/0672322579) > > _ _ >/ \ / > /___\ / > / \ / > > http://www.galatea.com -- powered by AzSSL > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat and Apache+SSL integration issues
Maris - I have done this on several occasions with mod_jk without any problem. I can't compare it to mod_proxy, since I rarely use it, but I suggest you try mod_jk. Regards, Lajos Māris Orbidāns wrote: hello all We have finished a large project which was based on Tomcat and Struts farmework. Now our client wants to use SSL. Our architecture is as follows: Client<-ssl content->Apache (MOD_SLL) <-unencrypted content-> Tomcat We use Tomcat 4.1.18 (have tried also 4.0) and Apache HTTP server 1.3.27. SSL support is installed in Apache, and it uses mod_proxy (NOT mod_jk) to talk to Tomcat. It doesnt work very well , if I go to https:// and login succesfully, IE shows a warning message "you are gonna be redirected to a non-secure connection" and it goes back to http:// I have tried Tomcat+SSL without Apache HTTP server and all worked perfectly. Also I am not sure that mod_proxy (with ProxyPass and ProxyPassReverse in httpd.conf file) is enough, or should we use mod_jk ? Does anybody have some ideas how to solve it ? thanx Maris Orbidans app. architect - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Lajos Moczar Open Source Support, Consulting and Training Cocoon Developer's Handbook (www.amazon.com/exec/obidos/tg/detail/-/0672322579) _ _ / \ / /___\ / / \ / http://www.galatea.com -- powered by AzSSL - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
