Second try: any input? A workaround would seem to be to not configure the ssl connector till it is needed, but doing that requires a restart of tomcat (right?) which is too disruptive in my environment.
--- On Thu, 9/3/09, Roger David Powers <prog...@yahoo.com> wrote: > From: Roger David Powers <prog...@yahoo.com> > Subject: Change redirect to SSL behavior? > To: "Tomcat Users List" <users@tomcat.apache.org> > Date: Thursday, September 3, 2009, 3:18 PM > The description of redirectPort for > HTTP connector says: > > If this Connector is supporting non-SSL requests, and a > request is received for which a matching > <security-constraint> requires SSL transport, Catalina > will automatically redirect the request to the port number > specified here. > > The default is specified as port 443 which is of course the > default SSL > port. > > In Tomcat 3, there was a way to disable this behavior, i.e. > if the end user > connects to http://webapps and not use https for the given webapp, > that was > supported. If the user explicitly went to https://webapp > they'd still get > TlS/SSL as desired. > > I'm not seeing how to do this with Tomcat 6. If I > take redirectPort out of the http connector, I still get the > redirect, to the default 443 port. > > Having the ability to not get redirected to SSL/TLS avoids > the users see > issues with incorrect certificates, which unfortunately > happens more > often than I'd like. > > Is there a config or a workaround for this? > > Thanks, > RP > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > > --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
