tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: https & j_security_check apparently Solved :P
Date Thu, 14 Aug 2008 16:29:38 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Julio,

Julio César Chaves Fernández wrote:
> I was testing somethings within the login page that is configured in
> the web.xml file... and there was a piece of code doing a redirection
> to assure that the page is loaded over https... first i proved with a
> simple login page over https with no more than the login form ...and
> it worked as it supossed to ... then instead of insert the code to
> redirect the page over https I opened it with a url specifying https
> instead of http ... it worked ... so I changed back the form-login
> param in web.xml ... removed the redirection ... an tried again the
> same way i did with the simple login form ... and it worked ... now i
> have to ask ... did the redirection had something to do with this
> problem or do anyone know of a possible problem that can be raised
> when this is done?TIA,

Honestly, I'm having a hard time understanding what you are doing. What
is the additional redirection for? Why not simply use
<transport-guarantee> in web.xml and let the container handle any HTTPS
requirements?

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkikXXIACgkQ9CaO5/Lv0PC1wgCgtUNuWDBsTqIPIjAfH64OPgv+
wf4An1rHKW4HmO15pAwckdz0msxOmLd2
=LSxR
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message