httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Serge Dubrouski" <serge...@gmail.com>
Subject Re: [users@httpd] how to configure apache+ssl+mod_jk+tomcat
Date Mon, 30 Jun 2008 12:00:43 GMT
How does your Tomcat's server.xml file looks like? Does it have an AJP
listener on port 48333 like you configured in workers file?

On Mon, Jun 30, 2008 at 2:40 AM, Meir Yanovich <meiry242@gmail.com> wrote:
> Hello all
> im having problem on configuring apache 2.2 forward ssl requests to tomcat
> im using basic configuration that i collected on the web ( mostly
> using old apache )
> im can use ssl on the apache htdocs . but i can't make it forward to
> the tomcat .
> by the way with no ssl the http forwarding to tomcat works fine .
> here is my configuration :
> in the http-ssl.conf  i have the standard configuration i didn't
> change any thing beside
> SSLCertificateKeyFile and the SSLCertificateFile to the proper files
> and the mod_jk conf in the httpd.conf looks like this :
>
> #*****************************************************
> # Load mod_jk module
> # Update this path to match your modules location
> LoadModule    jk_module  modules/mod_jk.so
>
> # The workers that jk should create and work with
> # Define 1 real worker using ajp13
> JkWorkerProperty worker.list=Tomcat01
>
>  JkWorkerProperty worker.Tomcat01.type=ajp13
> JkWorkerProperty worker.Tomcat01.host=app1
> JkWorkerProperty worker.Tomcat01.port=48333
>
> # Should mod_jk send SSL information to Tomcat (default is On)
> JkExtractSSL off
> # What is the indicator for SSL (default is HTTPS)
> JkHTTPSIndicator HTTPS
> # What is the indicator for SSL session (default is SSL_SESSION_ID)
> JkSESSIONIndicator SSL_SESSION_ID
> # What is the indicator for client SSL cipher suit (default is SSL_CIPHER)
> JkCIPHERIndicator SSL_CIPHER
> # What is the indicator for the client SSL certificated (default is
> SSL_CLIENT_CERT)
> JkCERTSIndicator SSL_CLIENT_CERT
>
> # JkOptions indicate to send SSL KEY SIZE,
> JkOptions +ForwardKeySize +ForwardURICompat -ForwardDirectories
> # Where to put jk logs
> # Update this path to match your logs directory location (put
> mod_jk.log next to access_log)
> JkLogFile     logs/mod_jk.log
>
> # Set the jk log level [debug/error/info]
> JkLogLevel   debug
>
> # Select the timestamp log format
> JkLogStampFormat "[%a %b %d %H:%M:%S %Y] "
>
> # Set the request log format
> JkRequestLogFormat     "%w %V %T %b %H %s %m %U %q"
>
> # Send everything for context /examples to worker named worker1 (ajp13)
> JkMount /* Tomcat01
>
> # Serve html, jpg and gif using httpd
>  JkUnMount /*.html ajp13
>  JkUnMount /*.jpg  ajp13
>  JkUnMount /*.gif  ajp13
>
>
> only when i browse to the port that is in the Listen 8000 the
> forwarding to tomcat works but this is not ssl as i need
> what im doing wrong here ? can it be done ?
> thanks
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>   "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>



-- 
Serge Dubrouski.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message