tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Julie Moore" <>
Subject With tomcat 5 redirects to a secure port fails
Date Tue, 30 Aug 2005 13:31:21 GMT
I have been looking al over for an explanation to what I am seeing. If I
hit my site with https I get my secure page displayed if I hit it with
http it is set up to redirect to https. The problem is the redirect is
trying to use the internal IP address in the URL
( not the URL with the "www." defined. 

We had this set up in tomcat 4 and the external users who where
redirected were able to get the secure page from "http://www." but now
this does not work.

I have looked at all the Tomcat 5 SSL sites that have come up on a
number of searches but I do not see this problem addressed.


-----Original Message-----
From: Julie Moore [] 
Sent: Monday, August 29, 2005 1:50 PM
Subject: With tomcat 5 redirects to a secure port the connection fails


I have updated a site from tomcat 4 to tomcat 5 and my link that used to
redirect to a secure site now fails. I see the webpage tying to connect
with my internal IP address instead of the external URL that the request
came in one. If I connect to and hit the link to the
secure page my page displays correctly. But if I hit it from <>  the secure page does not display.


The page that displays has not changed. It has a relative link to the
webapp that I want to have as secure.


I have the server.xml connectors defined:


    <Connector port="80"     minThreads="150" maxSpareThreads="75"

               enableLookups="true" redirectPort="443"

               acceptCount="100" debug="0" connectionTimeout="20000"

               disableUploadTimeout="true" />



    <!-- Define a SSL Coyote HTTP/1.1 Connector on port 443 -->



       <Connector port="443" maxHttpHeaderSize="8192"

               maxThreads="150" minSpareThreads="25"

               enableLookups="false" disableUploadTimeout="true"

               acceptCount="100" scheme="https" secure="true"

               clientAuth="false" sslProtocol="TLS"
keystoreFile="c:\tomcat\conf\keystore.ks" />


and the following in  the web.xml of my application I wish to have
available only as secure:


             <web-resource-name>Entire Application</web-resource-name>
What have I missed?




To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message