----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
>Mike Engelhart:
>>
>> Mike Engelhart wrote:
>>
>>> Two servers:
>>> ssl.earthtrip.com
>>> unsecure.earthtrip.com
>>>
>>>
>>> Everything is working *except* sessions are being created. This is
>>> probably a configuration issue but I'm not sure.
>>
>> Yep. cookies are host-restricted, not domain restricted.
>>
>> Don't know if it is useful to change this. Opinions ?
>>
>> (you can use round-robin DNS or specific hw to balance the load betwwen
>> Apache front-ends)
>>
>> Jean-Luc
>Hi Jean-Luc,
>
>OK - so a solution then would be to build a mod_ssl/mod_jserv apache server
>and then moving between ssl and non-ssl on the same host would allow me to
>keep the same session?
>
>Thanks,
>
>Mike
Mike,
I can vouch for that solution. We have an apache server set up to serve both http and
https
requests for the same VirtualHost and the cookies are passed perfectly from one request
to another, switching from secure to non-secure.
We just have something like:
Listen prodwww:80
Listen prodwww:443
<VirtualHost prodwww>
Servername ourserver.us.be
ApJServMount /servlets ajpv11://127.0.0.1:8007/servlet-prod
</VirtualHost>
<IfDefine SSL>
<VirtualHost prodwww:443>
Servername ourserver.us.be
ApJServMount /servlets ajpv11://127.0.0.1:8007/servlet-prod
</VirtualHost>
</IfDefine>
in our httpd.conf
regards,
Johan Philippe
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html>
Problems?: [EMAIL PROTECTED]
