Another option with the httpd/Tomcat configuration is to use AJP.
server.xml:
<Connector port="8009"
protocol="AJP/1.3"
address="127.0.0.1"
tomcatAuthentication="false"
... />
httpd config (TLS-protected virtual host):
ProxyPass /cas/ ajp://localhost:8009/cas/
Depending on the amount of traffic, some tuning may be necessary wrt number of
httpd servers/threads and Tomcat connector threads.
Tom.
> On Feb 9, 2016, at 5:59 AM, Christopher Myers <[email protected]>
> wrote:
>
> What we do is:
>
> internet(https) -> (https)load balancer(http) -> tomcat (http)
>
> Basically, the load balancer talks https to the internet and http to tomcat,
> doing the SSL offloading.
>
> This is what the connector in our server.xml file looks like:
>
> <Connector port="8080" protocol="HTTP/1.1"
> maxThreads="500"
> compression="on"
> URIEncoding="UTF-8"
> proxyPort="443"
> secure="true"
> scheme="https"
> SSLEnabled="false"
> />
>
> the important parts are the secure=true and scheme=https parts. We're on CAS
> 4.0.x.
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
