On Thursday, August 24, 2017 at 7:04:19 AM UTC-4, Vinay Sharma wrote: > > We have configured Dspace 4.2 on apache-tomcat-7.0.54. Now, we want to > make it SSL enable, in this reference we bought the necessary certificate > and key. The URL is working fine with https:// but each time we have to > type it https:// it is not forcefully redirecting from http to https. > > I have search many documentation on web and accordingly made changes in > tomcat server.xml file but no result. > >
Supposing that your users are going directly to Tomcat: if you could upgrade to at least Tomcat 7.0.63, you could use the HttpHeaderSecurityFilter's HSTS options. https://tomcat.apache.org/tomcat-7.0-doc/config/filter.html#HTTP_Header_Security_Filter If your Tomcat instance is behind Apache HTTPD, then HTTPD also implements HSTS and Tomcat won't care. Or you could add a few RewriteRule directives to send a permanent redirect. Other general-purpose web servers that can proxy for Tomcat probably also have such options. -- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/dspace-tech. For more options, visit https://groups.google.com/d/optout.
