I think so. It is mentioned in the AJP Protocol Reference for AJP 1.3... http://tomcat.apache.org/connectors-doc/ajp/ajpv13a.html
hth, cheers _______________________ Siegfried Puchbauer http://siegfried.puchbauer.com/ On Thu, Jul 24, 2008 at 15:09, <[EMAIL PROTECTED]> wrote: > Thank you for you answers. > > As you are speaking about SSL, do you know if client certificats are > forwarded to CAS X509 handler when Tomecat is behind the Apache/mod_jk > or Apache/mod_proxy_ajp ? > > Stéphane > > On 7/24/08, Andrew Ralph Feller, afelle1 <[EMAIL PROTECTED]> wrote: > > For those who need to support Java applications along with PHP / Perl > > applications, they could host both from the same machine by having Apache > > httpd front-end Apache Tomcat. There is a another reason why some people > > use mod_jk + Tomcat: inexperience in managing Tomcat. When I was > starting > > out, I hated working with keystores as it wasn¹t nearly as straight > forward > > as Apache httpd¹s mod_ssl configuration. Once I found how to setup the > > Apache Portable Runtime in Tomcat, then I felt comfortable not having > Tomcat > > front-ended as the APR configuration is extremely similar to mod_ssl. > > > > On a tangential note, there is an alternative to mod_jk called > > mod_proxy_ajp, which comes with Apache httpd 2.2 and works in a similar > > manner. > > > > > > On 7/24/08 6:12 AM, "Siegfried Puchbauer" <[EMAIL PROTECTED] > > > > wrote: > > > >> You can gain a lot of flexibility when you choose to use Apache in front > >> of > >> your Tomcat backend. For example a very flexible way to perform > name-based > >> virtual hosting. Also mod_rewrite is great to perform dynamic redirects > >> using > >> regexes. And the reverse-proxy capabilities by mod_proxy are also very > >> useful > >> - especially when using other application in the same url-space. You can > >> also > >> use it to display a service unavailibilty information when you > >> upgrade/restart > >> you tomcat. If you do not have the need of rewriteing urls, perform > >> virtual-hosting there is IMHO no reason to not choose a standalone > tomcat. > >> > >> Cheers, sigi > >> _______________________ > >> Siegfried Puchbauer > >> http://siegfried.puchbauer.com/ > >> > >> On Thu, Jul 24, 2008 at 11:55, Stéphane Gully <[EMAIL PROTECTED] > > > >> wrote: > >>> Hello, > >>> > >>> This is a generic question, not directly related to CAS. I'm sorry for > >>> that. > >>> Google didn't helped me so I try here. > >>> > >>> When I installed CAS, I had the choice to deploy it directly in Tomcat > >>> or in Apache/mod_jk+Tomcat. I chosed to deploy it directly in Tomcat > >>> because I needed X509 authentication handler and it just looked more > >>> easy to configure directly in Tomcat. > >>> > >>> I often read that mod_jk should be used but I never know why ? could > >>> someone tell me the reason(s) ? > >>> > >>> regards, > >>> -- > >>> Stéphane GULLY > >>> _______________________________________________ > >>> Yale CAS mailing list > >>> [email protected] > >>> http://tp.its.yale.edu/mailman/listinfo/cas > >> > >> > >> > >> _______________________________________________ > >> Yale CAS mailing list > >> [email protected] > >> http://tp.its.yale.edu/mailman/listinfo/cas > > > > -- > > Andrew R. Feller, Analyst > > Information Technology Services > > 200 Fred Frey Building > > Louisiana State University > > Baton Rouge, LA 70803 > > (225) 578-3737 (Office) > > (225) 578-6400 (Fax) > > > > > _______________________________________________ > Yale CAS mailing list > [email protected] > http://tp.its.yale.edu/mailman/listinfo/cas >
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
