On Tuesday, December 07, 2010 14:34:55 Aggarwal, Ajay wrote: > Aggarwal, Ajay wrote: > > My tomcat application (running on a linux host) has 2 types of clients. > > Local clients coming on localhost (127.0.0.1) > and external clients > > > coming on external interfaces. I want to enforce use of SSL only for > > external clients. How do I do that? If I use <security-constraint> I am > > assuming it will apply to both local as well as external clients.
Perhaps Url Rewrite Filter http://www.tuckey.org/urlrewrite can be set up to redirect all http requests to https with the same URL? Something like (not tested) <rule> <condition type="scheme" operator="equal">^http$</condition> <condition type="remote-addr" operator="notequal">127.0.0.1</condition> <from>/(.*)</from> <to type="permanent-redirect" last="true">https://%{server-name}/$1</to> </rule> Configure -- Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations Open Finance Aggregation eXchange <http://www.aggex.com>
smime.p7s
Description: S/MIME cryptographic signature
