httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Bug 53098] mod_proxy_ajp: patch to set worker secret passed to tomcat
Date Tue, 12 Apr 2016 17:34:51 GMT

--- Comment #15 from Dmitry A. Bakshaev <> ---
this patch just adds lost functionality to mod_proxy_ajp, a lot of time working
in mod_jk+tomcat.

no new features.

a typical usage scenario:
client(browser) - https(internet) - apache httpd(ssl-termination-acceleration)
- mod_proxy_ajp - ajp - localhost(trusted area) - apache tomcat(application)

"secret" need to "bind" multiple url on apache httpd to multiple tomcat
instances or connectors one-to-one, to protect from fake ajp requests from
other application and users from same host(localhost).

"secret" works like "identification", not crypto-blablabla...

ssl,encryption&etc is separate question.

You are receiving this mail because:
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message