> Can you check that it's possible to force the secure flag with an HTTP
> connector? Some load-balancer-based setups need this (although direct
> HTTP connections from a browser will not work, obviously).
I can confirm you that is possible, you just have to add
'secure="true"' in the HTTP connector configuration.
This is the maintainer address of Debian's Java team
debian-j...@lists.debian.org for discussions and questions.