Return-Path: Delivered-To: apmail-jakarta-tomcat-user-archive@www.apache.org Received: (qmail 72304 invoked from network); 11 Jan 2005 10:39:07 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur-2.apache.org with SMTP; 11 Jan 2005 10:39:07 -0000 Received: (qmail 79647 invoked by uid 500); 11 Jan 2005 10:38:28 -0000 Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org Received: (qmail 79626 invoked by uid 500); 11 Jan 2005 10:38:28 -0000 Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Users List" Reply-To: "Tomcat Users List" Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 79594 invoked by uid 99); 11 Jan 2005 10:38:27 -0000 X-ASF-Spam-Status: No, hits=0.5 required=10.0 tests=WEIRD_PORT X-Spam-Check-By: apache.org Received-SPF: pass (hermes.apache.org: local policy) Received: from mysparekey.co.uk (HELO mysparekey.co.uk) (82.112.100.226) by apache.org (qpsmtpd/0.28) with ESMTP; Tue, 11 Jan 2005 02:38:26 -0800 Received: from homepc ([84.12.25.121]) (authenticated bits=0) by mysparekey.co.uk (8.13.1/8.13.1) with ESMTP id j0BAcK5H021402 for ; Tue, 11 Jan 2005 10:38:22 GMT From: "James_sys" To: "Tomcat Users List" Subject: RE: Problem getting http redirected to https Date: Tue, 11 Jan 2005 10:41:44 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) Importance: Normal In-Reply-To: <41E335D2.9000608@mitre.org> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Virus-Checked: Checked X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N Thanks, Mark - good point. I've attached relevant snippets from web.xml & server.xml below. I've also tried an equivalent configuration on Tomcat 5, jdk 1.4, Win 2k. Interestingly, this worked fine. My on-going quest for a solution under Tomcat 4.1, jdk 1.3, FreeBSD 4.7 threw up a couple of interesting comments from people on other groups: - One observation was that upgrading the jdk from 1.3 to 1.4 solved the problem (alas, not a practical option for me - I'm constrained by the Production environment operating system, locked at FreeBSD v4.7 which can't take jdk 1.4). - Another observation (which I intend to investigate further today) was that including some extra code in the web application worked around the problem. Code snippet was: System.setProperty("java.protocol.handler.pkgs","com.sun.net.ssl.internal.ww w.protocol"); Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider()) These observations, coupled with things working as expected with newer product versions, is beginning to suggest some version compatibility problem with Tomcat 4.1 and jdk 1.3. Finally, I tried switching the ports to their defaults of 80 and 443, and running the Tomcat service under root. The problem remained the same. server.xml snippet: web.xml snippet (example here is for a single page - I've also tried url-patterns for directories, e.g. /pages/*): Secure /ssl_test2.html CONFIDENTIAL -----Original Message----- From: Mark Anderson [mailto:anderson@mitre.org] Sent: 11 January 2005 02:12 To: Tomcat Users List Subject: Re: Problem getting http redirected to https Since it's not working right, it would help if you showed us what you did when you "configured a security-constraint in web.xml for testPage.html". did you do: CONFIDENTIAL In CATALINA_HOME/conf/server.xml, you need to configure the HTTP conector to redirect HTTPS to the HTTPS connector. Do you have an HTTP connector configured in server.xml? There are examples in the server.xml that shipped with Tomcat. - Mark James_sys wrote: > Hi, > > I've been wrestling with SSL on Tomcat for a while now. Hope you can offer > some useful pointers. > > My problem is around getting http requests auto-redirected to return an > https response. > > I can request https://exampleServer.com:8443/testPage.html and get an > encrypted response. > > However, if I request http://exampleServer.com:8080/testPage.html I see an > HTTP 500 "internal error" message. I was expecting the server to internally > redirect the request to https://... and return an encrypted response. > > I've configured a security-constraint in web.xml for testPage.html. I've > checked the servlet and catalina logs but don't see any errors or warnings. > > I'm working with Tomcat 4.1.30 on a FreeBSD v4.7 platform. I know these are > old versions, but I'm constrained by other dependencies in the Production > environment. > > Apologies if this is a common problem - I have checked the archives but > didn't find what I need. > > Thanks for any help. > > Regards, > > James. > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org > For additional commands, e-mail: tomcat-user-help@jakarta.apache.org > -- Mark Anderson voice:703-883-6508 Networking & Distributed Systems Engineer fax :703-883-5864 The MITRE Corporation email:anderson@mitre.org --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-user-help@jakarta.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-user-help@jakarta.apache.org