tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: Form Based Authenticattion - j_security_check does not redirect from http to https
Date Tue, 09 Dec 2008 22:54:40 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SKantS,

SKantS wrote:
> Also, I have redirected all my requests for port-80 to port-443.

How did you do this?

> Except, when I open the http://localhost/<APP_NAME>/j_security_check page it
> does not get redirected and stays on http. This is the only page showing
> this deviation in behavior.

Are you entering that URL directly (by typing it into your browser), or
are you submitting your login.jsp to j_security_check? When the redirect
does not happen, does the URL in your browser show j_security_check, or
some other URL (presumably the URL you tried to access before being
challenged for your username and password).

> For example, the http://localhost/<APP_NAME>/security_check page gets
> redirected to https, and the same goes for my login page and all other pages
> in my app.
> 
> Is this a known issue or is there a configuration that I am unaware of.

I would highly recommend upgrading to the latest 5.5.x version of
Tomcat: lots and lots and lots of stuff has been fixed. Perhaps this is
one of them. You could always check the changelog:
http://tomcat.apache.org/tomcat-5.5-doc/changelog.html

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkk+9zAACgkQ9CaO5/Lv0PDDqACgsBdYCvei8hf0TaW40KF0OadW
RjEAnA/v4shDndKr/11Tm8OG8zbTgYos
=8iP4
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message