Caldarale, Charles R wrote: >> From: Christopher Schultz [mailto:ch...@christopherschultz.net] >> Subject: Re: Renegotiate SSL connection in servlet >> >> Your only other option for Tomcat is to configure another <Connector> >> which would require a different IP or port number, which makes it ... >> inconvenient at best. > > Using a different port may not work at all with many versions of IE, which > "know" that all HTTPS traffic is on 443 and ignore the port on the URL. > > "Standards? What standards? We don't need no stinkin' standards!"
What happens if you define multiple security constraints? ie 1. Requires SSL for whole app 2. Requires CLIENT-CERT auth for part of the app. Mark > > - Chuck > > > THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY > MATERIAL and is thus for use only by the intended recipient. If you received > this in error, please contact the sender and delete the e-mail and its > attachments from all computers. > --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org