Hi there.
I am running apache 2.4.43 with a tomcat 7.0.103 as backend server.
I have tried to implement proxy configuration to tomcat backend with ajp and
secret.
It works fine when using ProxyPass or BalancerMemeber, just like documented at
https://httpd.apache.org/docs/trunk/mod/mod_proxy_ajp.html:
The secret is sent when the secret=secret_keyword parameter is used in
ProxyPass<https://httpd.apache.org/docs/trunk/mod/mod_proxy.html#proxypass> or
BalancerMember<https://httpd.apache.org/docs/trunk/mod/mod_proxy.html#balancermember>
directives. The backend needs to support secret and the values must match.
request.secret or requiredSecret are documented in the AJP configuration of the
Apache Tomcat.
But there are several context based RewriteRules like this:
RewriteRule (.*) ajp://IP:PORT$1 [QSA,P,L]
I haven't found any solution to get secret parameter passed in RewriteRules.
I have tried this one:
RewriteRule (.*) ajp:// IP:PORT$1?secret=my_secret
This isn´t working and secrets value should not appear in tomcat access logfile.
Is there any solution for RewriteRules with ajp and secret?
Mit freundlichen Grüßen
Christian Unnering
DEUTSCHE TELEKOM IT GMBH
Digital Transformation and Operations Telekom IT
Central Operation Services
Team COS 3
Telefon: (0521) 92 15-54 29
Telefax: (0521) 92 15-57 99
Email: christian.unner...@t-systems.com<mailto:christian.unner...@t-systems.com>
Internet: http://www.t-systems.de<http://www.t-systems.de/>
Die gesetzlichen Pflichtangaben finden Sie unter:
https://www.telekom.com/pflichtangaben-dtit
