Hi there. I am running apache 2.4.43 with a tomcat 7.0.103 as backend server. I have tried to implement proxy configuration to tomcat backend with ajp and secret. It works fine when using ProxyPass or BalancerMemeber, just like documented at https://httpd.apache.org/docs/trunk/mod/mod_proxy_ajp.html: The secret is sent when the secret=secret_keyword parameter is used in ProxyPass<https://httpd.apache.org/docs/trunk/mod/mod_proxy.html#proxypass> or BalancerMember<https://httpd.apache.org/docs/trunk/mod/mod_proxy.html#balancermember> directives. The backend needs to support secret and the values must match. request.secret or requiredSecret are documented in the AJP configuration of the Apache Tomcat.
But there are several context based RewriteRules like this: RewriteRule (.*) ajp://IP:PORT$1 [QSA,P,L] I haven't found any solution to get secret parameter passed in RewriteRules. I have tried this one: RewriteRule (.*) ajp:// IP:PORT$1?secret=my_secret This isn´t working and secrets value should not appear in tomcat access logfile. Is there any solution for RewriteRules with ajp and secret? Mit freundlichen Grüßen Christian Unnering DEUTSCHE TELEKOM IT GMBH Digital Transformation and Operations Telekom IT Central Operation Services Team COS 3 Telefon: (0521) 92 15-54 29 Telefax: (0521) 92 15-57 99 Email: christian.unner...@t-systems.com<mailto:christian.unner...@t-systems.com> Internet: http://www.t-systems.de<http://www.t-systems.de/> Die gesetzlichen Pflichtangaben finden Sie unter: https://www.telekom.com/pflichtangaben-dtit