tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Stephen Bacon <>
Subject How to prevent non-ssl access to an app?
Date Mon, 05 Nov 2001 21:35:42 GMT
   I have just installed RedHat Linux 7.1 with Apache (v 1.3.19 r5) and 
Tomcat (v 3.2.3 r1)
I have enabled SSL and installed certificates and it's all working fine.
my jsp app can be reached via both http://blah_blah_blah and 
https://blah_blah_blah (i.e. encrypted and non-encrypted)
I would like to restrict it to only being served via SSL.
I cannot figure out how to do this, so any guidance would be appreciated.
   -Steve Bacon

the only change I've made to my server.xml is the addition of (at the 
bottom of the <ContextManager> section):

         <Context path="/stbapp"
                  reloadable="true" >

my web.xml is similarly basic:

<?xml version="1.0" encoding="ISO-8859-1"?>

<!DOCTYPE web-app
     PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.2//EN"


To unsubscribe:   <>
For additional commands: <>
Troubles with the list: <>

View raw message