Hi Tom, Thanks for the suggestions. For option 1, how do I disable 8080? Through server.xml? Sorry for such a basic question. I have never set up http server before.
Thanks again for the help. Yonggang From: [email protected] [mailto:[email protected]] On Behalf Of Tom Desair Sent: Thursday, September 21, 2017 5:04 PM To: Cui, Yonggang <[email protected]> Cc: [email protected] Subject: Re: [dspace-tech] RE: enabling https Hi, You have two options: 1. Disable port 8080 and only use port 8443. You then have to connect to DSpace using port 8443, thus https://localhost:8443/xmlui/. In this case, all traffic will use https. 2. Add this snippet to the web.xml file of the XMLUI webapp: <security-constraint> <web-resource-collection> <web-resource-name>DSpace REST API</web-resource-name> <url-pattern>/password-login</url-pattern> </web-resource-collection> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint> This will only force traffic to the "/password-login" login page to go over https. The recommended option here is option 1. [Image removed by sender. logo] Tom Desair 250-B Suite 3A, Lucius Gordon Drive, West Henrietta, NY 14586 Gaston Geenslaan 14, Leuven 3001, Belgium www.atmire.com<http://atmire.com/website/?q=services&utm_source=emailfooter&utm_medium=email&utm_campaign=tomdesair> 2017-09-21 21:50 GMT+02:00 Cui, Yonggang <[email protected]<mailto:[email protected]>>: And, here is the server.xml configuration file. From: Cui, Yonggang Sent: Thursday, September 21, 2017 2:17 PM To: Cui, Yonggang <[email protected]<mailto:[email protected]>>; [email protected]<mailto:[email protected]> Subject: RE: enabling https A comment on my post. I used “Quick-and-dirty Procedure for Testing” option when setting up https. From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Cui, Yonggang Sent: Thursday, September 21, 2017 2:13 PM To: [email protected]<mailto:[email protected]> Subject: [dspace-tech] enabling https Hi, I am trying to set up DSpace for testing. I followed the instructions on https://wiki.duraspace.org/display/DSDOC6x/Installing+DSpace#InstallingDSpace-OverviewofInstallOptions to install DSpace. The process was smooth and successful until I tried to enable https. I did follow up the instructions on this page and also stopped and restarted tomcat after that. However, when I click login on the DSpace webpage, the address bar shows “Not secure” followed by address …/xmlui/password-login. It seems to me that it is still using http instead of https. I am new to both http and DSpace. I appreciate any suggestion that can help me probe the issue. Thanks, Yonggang -- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. To post to this group, send email to [email protected]<mailto:[email protected]>. Visit this group at https://groups.google.com/group/dspace-tech. For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. To post to this group, send email to [email protected]<mailto:[email protected]>. Visit this group at https://groups.google.com/group/dspace-tech. For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. To post to this group, send email to [email protected]<mailto:[email protected]>. Visit this group at https://groups.google.com/group/dspace-tech. For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/dspace-tech. For more options, visit https://groups.google.com/d/optout.
