tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Björn Raupach <raup...@me.com>
Subject Re: SSL and Virtual Hosting
Date Wed, 21 Oct 2015 18:44:16 GMT
Dear Jason,

> On 21 Oct 2015, at 19:18, Jason Britton <jbritton31@gmail.com> wrote:
> 
> Hi Björn -
> Look in tomcat/conf at the server.xml, you'd just define multiple host
> entries, one host entry would have a name of "alice.example.com" the other
> with "bob.example.com".  Each host entry would also have its own appBase
> (alice-webapps & bob-webapps), meaning both sites could be deployed using
> ROOT.war.  Update the DNS for alice and bob to point at the server your
> consolidated tomcat is on.  Inside tomcat/conf/Catalina/ I'm pretty sure
> you're going to need a directory for each host with that hosts config
> ROOT.xml etc).

thanks. Yes, I know how to do this part.

>  We use Apache HTTPD to proxy to our Tomcats and we
> terminate SSL at HTTPD so I'm not exactly sure on your SSL questions.  Our
> SSL is configured through Apache HTTPD Virtual Hosts.  Maybe you want to
> look into the cost for a wildcard SSL cert that would cover *.example.com
> rather than specific hosts?

Unfortunately that is the scenario I am trying to prevent.
I don’t want to add another layer of complexity.
Apache Tomcat works like a charm and if it supports Virtual Hosting I don’t need
another service running.

> 
> Jason
> 
> On Wed, Oct 21, 2015 at 8:27 AM, Björn Raupach <raupach@me.com> wrote:
> 
>> Dear group,
>> 
>> it would be nice if anyone knows, if my planned setup is going to work.
>> 
>> At the moment we are having two services (web apps) at two different
>> machines and hostnames. Lets say bob.example.com and alice.example.com
>> 
>> bob.example.com runs without SSL and deploys the web app at the root
>> context. We just throw a ROOT.war in /webapps.
>> 
>> alice.example.com needs SSL at all times. It currently does not run with
>> the root context but we would like to. So another ROOT.war. We have an SSL
>> cert for alice.example.com
>> 
>> I want both applications to run on a single Tomcat instance with Virtual
>> Hosting. Virtual Hosting with Tomcat that is. I am comfortable with setting
>> up Virtual Hosting, but I am just not sure about the SSL part. Does the
>> choice between IP-based or Hostname matter? bob.example.com might need
>> SSL support in the future.
>> 
>> We are using Amazon AWS if that is important. So I could get another
>> Elastic IP. We are working with the latest Apache Tomcat 8 and the latest
>> JDK on the server machines.
>> 
>> Sorry if this is not 100% Tomcat related.
>> 
>> Thanks for taking the time!
>> 
>> 
>> with kind regards,
>> Björn
>> 
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
>> For additional commands, e-mail: users-help@tomcat.apache.org
>> 
>> 


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message