tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject cvs commit: jakarta-tomcat/src/doc tomcat-ssl-howto.html
Date Mon, 11 Dec 2000 17:13:31 GMT
hgomez      00/12/11 09:13:30

  Modified:    src/doc  Tag: tomcat_32 tomcat-ssl-howto.html
  Updated documentation on SSL (SSLVars)
  Revision  Changes    Path
  No                   revision
  No                   revision   +14 -3     jakarta-tomcat/src/doc/tomcat-ssl-howto.html
  Index: tomcat-ssl-howto.html
  RCS file: /home/cvs/jakarta-tomcat/src/doc/tomcat-ssl-howto.html,v
  retrieving revision
  retrieving revision
  diff -u -r1.1.2.1 -r1.1.2.2
  --- tomcat-ssl-howto.html	2000/11/29 18:01:56
  +++ tomcat-ssl-howto.html	2000/12/11 17:13:30
  @@ -121,6 +121,10 @@
     # What is the indicator for the client SSL certificated (default is SSL_CLIENT_CERT)

     JkCERTSIndicator SSL_CLIENT_CERT </font></p>
  +<p>When using mod_jk with Apache & mod_ssl it is essential to specify "SSLOptions

  +  +StdEnvVars +ExportCertData" in the httpd.conf file.<br>
  +  Otherwise mod_ssl will not produce the neccessary environment variables for 
  +  mod_jk. (Tilo Christ &lt;;)</p>
   <p>Warning, even if mod_jk support both ajp12 (old version from ApacheJServ) and

     ajp13, only ajp13 could forward SSL informations to tomcat.</p>
  @@ -163,14 +167,21 @@
     and <a href="">ModSSL</a> (SSL support for Apache)</p>
   <h3><a name=s61><font size="+1">Verify tomcat server.xml configuration
  -  <p> <font face="Courier New, Courier, mono" size="-1">To use the HTTP with
  -    connector in tomcat, verify that it is activated in server.xml</font></p>
  +  <p> To use the HTTP with SSL connector in tomcat, verify that it is activated 
  +    in server.xml</p>
     <p><font face="Courier New, Courier, mono" size="-1">&lt;Connector className="org.apache.tomcat.service.PoolTcpConnector"&gt;<br>
       &lt;Parameter name="handler" value="org.apache.tomcat.service.http.HttpConnectionHandler"/&gt;<br>
       &lt;Parameter name="port" value="8443"/&gt;<br>
       &lt;Parameter name="socketFactory" value=""

  -    /&gt; <br>
  +    /&gt;<br>
  +    &lt;Parameter name="keystore" value="/var/tomcat/conf/keystore" /&gt;</font><font
face="Courier New, Courier, mono" size="-1"> 
  +    <br>
  +    &lt;Parameter name="keypass" value="changeit"/&gt;<br>
  +    &lt;Parameter name="clientAuth" value="true"/&gt; <br>
       &lt;/Connector&gt; </font></p>
  +  <p>In this example we indicate the keystore is file <b>/var/tomcat/conf/keystore</b>.

  +    The keystore password is <b>changeit</b> and we want client to authentificate.</p>
  +  <blockquote>&nbsp;</blockquote>
   <h3><a name=s62>Generate a SSL certificate (RSA) for tomcat</a></h3>

View raw message