Return-Path: Delivered-To: apmail-jakarta-tomcat-user-archive@apache.org Received: (qmail 37975 invoked from network); 1 Apr 2002 06:42:08 -0000 Received: from unknown (HELO nagoya.betaversion.org) (192.18.49.131) by daedalus.apache.org with SMTP; 1 Apr 2002 06:42:08 -0000 Received: (qmail 26934 invoked by uid 97); 1 Apr 2002 06:42:00 -0000 Delivered-To: qmlist-jakarta-archive-tomcat-user@jakarta.apache.org Received: (qmail 26918 invoked by uid 97); 1 Apr 2002 06:42:00 -0000 Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Users List" Reply-To: "Tomcat Users List" Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 26907 invoked from network); 1 Apr 2002 06:41:59 -0000 Date: Sun, 31 Mar 2002 22:41:59 -0800 From: Aditya To: tomcat-user@jakarta.apache.org Subject: mod_webapp/SSL and Message-ID: <20020401064159.GA34061@mighty.grot.org> Reply-To: Aditya Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-PGP-Key: http://www.grot.org/pubkey.asc X-PGP-Key-ID: 0x6405D8D5 X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N I'm trying to use apache/mod_ssl as an SSL front-end to tomcat 4. I have a few issues: - Is there anyway to get apache to forward all requests to tomcat? Apache with mod_ssl is quite a bit faster than the standalone SSL container... - Can I use single-sign-on with FORMs? How is the hostname in the session cookie constructed? - Since only SSL access will be allowed, tomcat shouldn't try any redirects and isSecure() calls should always return true. Likewise, security-constraints like: CONFIDENTIAL should be always true. Is there any special way of doing this? If anyone has a better way of designing this or tips, I would really appreciate the advice. Thanks, Adi -- To unsubscribe: For additional commands: Troubles with the list: