Martin,
if you're using 4.41, there's a section in httpd.conf that does
this for you, it looks like:
# SGD BEGIN AUTO-FORWARD TO HTTPS (don't delete this line!)
# <IfModule rewrite_module>
# RewriteEngine On
#RewriteCond %{SERVER_PORT} !^443$
#RewriteRule (/.*) https://%{SERVER_NAME}$1
#</IfModule>
# SGD END AUTO-FORWARD TO HTTPS (don't delete this line!)
Just uncomment the relevant bits. In previous versions of SGD (and
this, Apache), because of a vulnerability in mod_rewrite, this approach
isn't recommended. There are lots of alternatives, such as:
<VirtualHost *:80>
Redirect / https://sgd-server.yourdomain.com/
</VirtualHost>
or Redirect statements in .htaccess files, and many other variants (use
of the load balancing script with https targets is recommended by
support, even in single-server installations.) Just be aware that you
really should secure your SOAP connections if you haven't already, as
when the webservices endpoints connect to http://localhost and get
redirected, well, they, and you, aren't going to be happy.
Come to think of it, this is a topic in the Security checklist in
http://wikis.sun.com/display/SecureGlobalDesktop/Best+Practice+-+Secure+Deployment+Checklist
but should also be an FAQ entry - I'll get that done.
Rick
Martin Sapsed wrote:
Hello all,
When we started out with SGD (4.1?) we had http: and https: available
and people got used to just typing sgd_server.blahblah.blah.blah in
the address bar. Several upgrades and server migrations later we're
tightening up security and have thus disabled the http: route. Now our
"customers" are complaining that it doesn't work!
Is there a simple way of redirecting any requests for
http://sgd_server to https://sgd_server?
Thanks & Regards,
Martin
--
<http://www.java.com> *Rick Butland *
Global Software Practice - Desktop
*Sun Microsystems, Inc.*
Phone: (703) 579-1947 /x:53261
Mobile: (703) 328-8130
Email mailto: [EMAIL PROTECTED]
Secure Global Desktop:
http://www.sun.com/software/products/sgd/index.jsp
Sun Ray Server Software: http://www.sun.com/software/sunray/index.jsp
Virtual Desktop Solutions:
http://www.sun.com/datacenter/consolidation/virtualization/desktop/
begin:vcard
fn:Rick Butland
n:Butland;Rick
org:Sun Microsystems ;Global Desktop
email;internet:[EMAIL PROTECTED]
title:Technical Specialist
tel;work:(703) 579-1947
tel;cell:(703) 328-8130
x-mozilla-html:TRUE
version:2.1
end:vcard
_______________________________________________
SGD-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sgd-users
