tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From August Detlefsen <>
Subject Force Non-SSL
Date Thu, 26 May 2005 00:04:29 GMT
In my webapp I force clients to use SSL encryption for logins with a
security constraint and transport-guarantee elements like this: 



However, once a user hits the login page, every subsequent page also
uses https. Is there a way to force them back to regular http once they
leave the login section? 

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message