httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Boyle Owen" <Owen.Bo...@swx.com>
Subject RE: [users@httpd] https to http proxy with Apache
Date Fri, 12 May 2006 07:00:55 GMT
> -----Original Message-----
> From: Bo Najdrovsky [mailto:httpd@najdrovsky.com] 
> Sent: Thursday, May 11, 2006 9:36 PM
> To: users@httpd.apache.org
> Subject: [users@httpd] https to http proxy with Apache
> 
> Hello, I have a problem I've been grappling with for the past 3 days 
> without much luck so I thought I'd come to the experts.   :-) 
>      I have 
> an Apache 2.0.x server, which acts as a load balancing gateway to 
> multiple Tomcat servlet containers behind it. This proxying/load 
> balancing is done using the combination of mod_rewrite and 
> mod_proxy.  
> It has been working very well for traffic over normal HTTP.  
> I now need 
> to make this work over HTTPS between the browsers and the Apache, and 
> that's where I'm having the problem.   I configured the 
> Apache server to 
> listen for HTTPS requests, and they forward correctly over 
> regular HTTP 
> to the Tomcats behind it, 

Let's focus on this bit:

> however whenever there is an incoming POST 
> from a form in the web application, the response from the 
> Tomcat causes 
> a switch to HTTP, where I need it to remain HTTPS.  

I'm not sure I completely understand.. When you say, "causes a switch to HTTP", I assume you
mean that after you submit the form, the browser address window changes to "http" (typically,
this would be the acknowledgement page). If so, then the browser must be getting a redirect
that tells it to do this.

If not, can you explain in more detail exactly what happens at this point.

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 

Here's what the 
> pertinent portion of the configuration looks like:
> 
> RewriteMap tomcats "rnd:/path/to/tomcat-workers.conf"
> ProxyPreserveHost On
> ProxyTimeout 8000
> 
> <Location ~ "/mywebapp">
> RewriteEngine On
> 
> RewriteCond "%{HTTP_COOKIE}"      
> "(^};\s*)jsessionid=\w*\.(\w+)($|;)" [NC]
> RewriteRule "(.*)"        
> "http://$(tomcats:%2)%{REQUEST_URI}" [P,L,NC]
> RewriteRule "^.*;jsessionid=\w*\.(\w+)($|;)"      
> "http://$(tomcats:$1)%{REQUEST_URI}" [P,L,NC]
> RewriteRule "(.*)"        
> "http://$(tomcats:all)%{REQUEST_URI}" [P,L,NC]
> 
> ProxyPassRevese http://andy:8012/
> ProxyPassRevese http://andy:8022/
> ProxyPassRevese http://andy:8032/
> ProxyPassRevese http://andy:8042/
> </Location>
> 
> I suspect that the problem lies somewhere in the 
> ProxyPassReverse, but 
> don't know what I could to remedy it. Any suggestions would 
> be welcome.  
> Thanks,
> 
> Bo
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen-
bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature.
It is not related to the exchange or business activities of the SWX Group. Le présent e-mail
est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX.
 
 
This message is for the named person's use only. It may contain confidential, proprietary
or legally privileged information. No confidentiality or privilege is waived or lost by any
mistransmission. If you receive this message in error, please notify the sender urgently and
then immediately delete the message and any copies of it from your system. Please also immediately
destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose,
distribute, print, or copy any part of this message if you are not the intended recipient.
The sender's company reserves the right to monitor all e-mail communications through their
networks. Any views expressed in this message are those of the individual sender, except where
the message states otherwise and the sender is authorised to state them to be the views of
the sender's company.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message