tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Brian Briggman" <b.brigg...@attbi.com>
Subject RE: Apache-Tomcat-mod_jk-SSL
Date Tue, 29 Apr 2003 18:01:32 GMT
Try taking a look at your auto-generated mod_jk.conf file - it sounds like
you have a problem with your auto-generated virtual hosts (from Tomcat)
stepping on your Apache virtual hosts.  Your listener under the host (in
server.xml) becomes a virtualhost in mod_jk.conf, which is the likely
culprit.  And in looking through your specific files, it looks like you're
manually modifying httpd.conf to do the JkMounts that are also getting
generated in mod_jk.conf, so you may choose to just remove the Include for
mod_jk.conf if you're not using any of those generated definitions...

Good luck,
Brian

-----Original Message-----
From: Lars Nielsen Lind [mailto:moonie@worldonline.dk]
Sent: Tuesday, April 29, 2003 11:33 AM
To: Tomcat Users List
Subject: Apache-Tomcat-mod_jk-SSL


Hi.

I can't access *.html files from my secure area - but I can access *.jsp
files?

What am I doing wrong?

Here is my configuration files - are there someone that wants to check
them out and comment?



----------
server.xml
----------

<Server port="8005" shutdown="SHUTDOWN" debug="0">

        <Listener className="org.apache.ajp.tomcat4.config.ApacheConfig"
modJk="/usr/local/apache-2.0.45/modules/mod_jk.so" jkDebug="info"
workersConfig="/usr/local/jakarta-tomcat-4.1.24/conf/jk/workers.properties"
jkLog="/usr/local/jakarta-tomcat-4.1.24/logs/mod_jk.log" />

  <Service name="Tomcat-Standalone">

    <Connector className="org.apache.ajp.tomcat4.Ajp13Connector"
               port="8009" minProcessors="5" maxProcessors="75"
               acceptCount="10" debug="0"/>

    <Engine name="Standalone" defaultHost="192.168.1.201" debug="0">

      <Logger className="org.apache.catalina.logger.FileLogger"
              prefix="catalina_log." suffix=".txt"
              timestamp="true"/>

      <Host name="192.168.1.201" debug="0" appBase="webapps"
       unpackWARs="true" autoDeploy="true">

        <Listener className="org.apache.ajp.tomcat4.config.ApacheConfig"
append="true" />

        <Valve className="org.apache.catalina.valves.AccessLogValve"
                 directory="logs"  prefix="localhost_access_log."
suffix=".txt"
                 pattern="common" resolveHosts="false"/>

        <Logger className="org.apache.catalina.logger.FileLogger"
                 directory="logs"  prefix="localhost_log." suffix=".txt"
                timestamp="true"/>

          <!-- /usr/local/jakarta-tomcat-4.1.24/webapps/testapp -->
          <Context path="" docBase="testapp" debug="0"/>

      </Host>

    </Engine>

  </Service>

</Server>


------------------
workers.properties
------------------

workers.tomcat_home=/usr/local/jakarta-tomcat-4.1.24
workers.java_home=/usr/java/j2sdk1.4.1_02
ps=/

worker.list=worker1
worker.worker1.port=8009
worker.worker1.host=192.168.1.201
worker.worker1.type=ajp13


-------------------------------------
httpd.conf - SSL and VirtualHost part
-------------------------------------

<IfDefine SSL>


Listen 443

AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl    .crl

SSLPassPhraseDialog  builtin

SSLSessionCache         dbm:logs/ssl_scache
SSLSessionCacheTimeout  300

SSLMutex  file:logs/ssl_mutex

SSLRandomSeed startup builtin
SSLRandomSeed connect builtin


<VirtualHost 192.168.1.201:80>

        ServerName 192.168.1.201:80
        ServerAdmin moonie@worldonline.dk

        JkMount /*.jsp worker1
        JkMount /servlet/* worker1

        DocumentRoot "/usr/local/jakarta-tomcat-4.1.24/webapps/testapp"

        SSLEngine off

        <Directory />
                Options FollowSymLinks
                AllowOverride None
        </Directory>

        <Directory "/usr/local/jakarta-tomcat-4.1.24/webapps/testapp">
                Options -Indexes Includes FollowSymLinks
                AllowOverride None
                Order allow,deny
                Allow from all
        </Directory>



        DirectoryIndex index.html

</VirtualHost>


<VirtualHost 192.168.1.201:443>

        ServerName 192.168.1.201:443
        ServerAdmin moonie@worldonline.dk

        JkMount /*.jsp worker1
        JkMount /servlet/* worker1

        DocumentRoot
"/usr/local/jakarta-tomcat-4.1.24/webapps/testapp/secure"

        SSLEngine on

        SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL

        SSLCertificateFile
/usr/local/apache-2.0.45/conf/ssl/192.168.1.201.crt
        SSLCertificateKeyFile
/usr/local/apache-2.0.45/conf/ssl/192.168.1.201.key


        SetEnvIf User-Agent ".*MSIE.*" \
         nokeepalive ssl-unclean-shutdown \
         downgrade-1.0 force-response-1.0

        CustomLog logs/ssl_request_log \
          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

        <Directory />
                Options FollowSymLinks
                AllowOverride None
        </Directory>

        <Directory "/usr/local/jakarta-tomcat-4.1.24/webapps/testapp">
                Options -Indexes Includes FollowSymLinks
                AllowOverride None
                Order allow,deny
                Allow from all
        </Directory>



        DirectoryIndex index.html
</VirtualHost>

Include
/usr/local/jakarta-tomcat-4.1.24/conf/auto/mod_jk.conf

</IfDefine>



Best regards,

Lars Nielsen Lind


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message