tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Christopher Watson" <>
Subject ISAPI Redirector SSL Help Please
Date Thu, 19 Sep 2002 11:43:15 GMT
Can anyone offer some advice

I am using - successfully - ISAPI redirector to serve JSP/servlet resources
through IIS

I would like some contexts to _require_ SSL (https) to be used, and leave
others free to use http.

I can see how to require _all_ contexts to use SSL by setting 'require
secure channel'
for the jakarta virtual directory under IIS. (And it works!)

But is there anyway I can achieve the same thing at a _context_ level
using or or the like?

Or will I have to test isSecure() at every page in the context that I want
the constraint applied to?

An idea I had was to have more than one 'jakarta' virtual directory, one
requiring SSL, the other not,
but then I'm guessing the ISAPI filter uses the same Registry entry,
so I couldn't specify a different extension_uri to get to it ??
Is this the right thinking?? Is there a way round this?

Any other general advice - except "don't use IIS" (I have no choice for this
project!) - would be welcome.


To unsubscribe, e-mail:   <>
For additional commands, e-mail: <>

View raw message