tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Doctor Khumalo <doctortec...@hotmail.com>
Subject RE: SSL/Apache and Proxy
Date Mon, 08 Dec 2008 16:33:55 GMT

OK, thanks.
 
If I remove Tomcat from the equation, I can get HTTPS to work with Apache but when I try to
start Tomcat and proxy the HTTPS request to Tomcat, it fails.  So, enabling HTTPS on Tomcat
8443 like the following still fails:
 
<Connector           port="8443" minSpareThreads="5" maxSpareThreads="75"           proxyName="local3"
          enableLookups="true" disableUploadTimeout="true"           acceptCount="100"  maxThreads="200"
          scheme="https" secure="true" SSLEnabled="true"           SSLCertificateFile="/usr/local/apache2/conf/ssl.key/local3.crt"
          SSLCertificateKeyFile="/usr/local/apache2/conf/ssl.key/server.key"           clientAuth="false"
sslProtocol="TLS"/>
 
> Date: Mon, 8 Dec 2008 15:53:04 +0100> From: rainer.jung@kippdata.de> To: users@tomcat.apache.org>
Subject: Re: SSL/Apache and Proxy> > Your configuration doesn't look like you are speaking
HTTPS on Tomcat> port 8443, but your Apache error looks like you configured httpd to>
proxy to an HTTPS port. So either enable HTTPS on Tomcat 8443 or tell> Apache to talk HTTP
to the backend. See also> > http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html>
> Regards,> > Rainer> > > Doctor Khumalo schrieb:> > Anyone know anything
about this or will my post be ignored?> > > > > > > >> From: doctortechie@hotmail.com>
>> To: users@tomcat.apache.org> >> Subject: RE: SSL/Apache and Proxy> >>
Date: Fri, 5 Dec 2008 14:18:12 +0000> >>> >>> >> Here is my server.xml
config.> >>> >> I can see the main localhost but whenever I try to type
https://local3, it gives me a 503 Error> >>> >>> >> ############################>
>>> >>> >>> >> <?xml> >> version='1.0' encoding='utf-8'?>>
>>> >> <Server> >> port="8005" shutdown="SHUTDOWN">> >>>
>> <Listener> >> className="org.apache.catalina.core.AprLifecycleListener">
>> SSLEngine="on" />> >>> >> <Listener> >> className="org.apache.catalina.core.JasperListener"
/>> >>> >> <Listener> >> className="org.apache.catalina.mbeans.ServerLifecycleListener"
/>> >>> >> <Listener> >> className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener">
>> />> >>> >> <GlobalNamingResources>> >>> >>
<Resource name="UserDatabase"> >> auth="Container"> >>> >> type="org.apache.catalina.UserDatabase">
>>> >> description="User database> >> that can be updated and saved">
>>> >> > >> factory="org.apache.catalina.users.MemoryUserDatabaseFactory">
>>> >> > >> pathname="conf/tomcat-users.xml" />> >>>
>> </GlobalNamingResources>> >>> >> <Service name="Catalina">>
>>> >> <Connector port="80"> >> protocol="HTTP/1.1"> >>>
>> > >> connectionTimeout="20000"> >>> >> redirectPort="8443">
>> />> >>> >> > >>> >> <!-- Define a SSL HTTP/1.1
Connector on> >> port 8443> >>> >> This connector uses the JSSE
configuration,> >> when using APR, the> >>> >> connector should
be using the OpenSSL> >> style configuration> >>> >> described
in the APR documentation> >> -->> >>> >> > >>> >>
<Connector port="8443"> >> proxyPort="443" proxyName="local3" />> >>>
>> > >>> >> <Connector port="8009"> >> protocol="AJP/1.3"
redirectPort="8443" />> >>> >> <Engine name="Catalina"> >>
defaultHost="localhost">> >>> >> <Realm> >> className="org.apache.catalina.realm.UserDatabaseRealm">
>>> >> > >> resourceName="UserDatabase"/>> >>> >>
> >>> >> <Host name="localhost"> >> appBase="webapps"> >>>
>> unpackWARs="true"> >> autoDeploy="true"> >>> >> xmlValidation="false">
>> xmlNamespaceAware="false">> >>> >> > >>> >>
</Host>> >>> >> > >>> >> <Host name="local2">
>> debug="1" appBase="webapps/local2"> >> unpackWARs="true">> >>>
>> <Logger> >> className="org.apache.catalina.logger.FileLogger"> >>
directory="logs"> >>> >> prefix="projects."> >> suffix=".txt" timestamp="true"/>>
>>> >> <Context path=""> >> docBase="" debug="1" reloadable="true">
>> crossContext="true" />> >>> >> <Alias>local2</Alias>>
>>> >> </Host>> >>> >> > >>> >> <Host
name="local3"> >> debug="1" appBase="webapps/local3”> >> unpackWARs="true">>
>>> >> <Logger> >> className="org.apache.catalina.logger.FileLogger">
>> directory="logs"> >>> >> prefix="projects."> >> suffix=".txt"
timestamp="true"/>> >>> >> <Context path=""> >> docBase=""
debug="1" reloadable="true"> >> crossContext="true" />> >>> >>
<Alias>local3</Alias>> >>> >> </Host>> >>>
>> > >>> >> </Engine>> >>> >> </Service>>
>>> >> </Server>> >>> >> ######################################>
>>> >>> >>> From: doctortechie@hotmail.com> >>> To:
users@tomcat.apache.org> >>> Subject: SSL/Apache and Proxy> >>> Date:
Fri, 5 Dec 2008 02:31:34 +0000> >>>> >>>> >>> How do I
configure server.xml on Tomcat? I have> >>> configured SSL through Apache and
the proxy part works, however, I get> >>> this error in the ssl log > >>>>
>>>> >>> [Thu Dec 04 15:06:12 2008] [error] (111)Connection refused:
proxy: HTTPS: attempt to connect to 165.112.28.126:8443 (localhost) failed> >>>
[Thu Dec 04 15:06:12 2008] [error] ap_proxy_connect_backend disabling worker for (localhost)>
> ---------------------------------------------------------------------> To unsubscribe,
e-mail: users-unsubscribe@tomcat.apache.org> For additional commands, e-mail: users-help@tomcat.apache.org>

_________________________________________________________________
Send e-mail faster without improving your typing skills.
http://windowslive.com/Explore/hotmail?ocid=TXT_TAGLM_WL_hotmail_acq_speed_122008
Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message