RE: With tomcat 5 redirects to a secure port the connection fails
Does anyone have a site that is running through a proxy? Could there be something I am missing because of that? -Original Message- From: Julie Moore [mailto:[EMAIL PROTECTED] Sent: Monday, August 29, 2005 1:50 PM To: tomcat-user@jakarta.apache.org Subject: With tomcat 5 redirects to a secure port the connection fails I have updated a site from tomcat 4 to tomcat 5 and my link that used to redirect to a secure site now fails. I see the webpage tying to connect with my internal IP address instead of the external URL that the request came in one. If I connect to https://www.x.com and hit the link to the secure page my page displays correctly. But if I hit it from http://www.x.com http://www.x.com/ the secure page does not display. The page that displays has not changed. It has a relative link to the webapp that I want to have as secure. I have the server.xml connectors defined: Connector port=80 minThreads=150 maxSpareThreads=75 minSpareThreads=25 enableLookups=true redirectPort=443 acceptCount=100 debug=0 connectionTimeout=2 disableUploadTimeout=true / !-- Define a SSL Coyote HTTP/1.1 Connector on port 443 -- Connector port=443 maxHttpHeaderSize=8192 maxThreads=150 minSpareThreads=25 maxSpareThreads=75 enableLookups=false disableUploadTimeout=true acceptCount=100 scheme=https secure=true clientAuth=false sslProtocol=TLS keystoreFile=c:\tomcat\conf\keystore.ks / and the following in the web.xml of my application I wish to have available only as secure: security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/*/url-pattern /web-resource-collection user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint What have I missed? Jmoore - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml
I believe this is new to tomcat 5 in the past the context was in the server.xml -Original Message- From: bachoo jahnkar [mailto:[EMAIL PROTECTED] Sent: Thursday, September 01, 2005 1:07 PM To: tomcat-user@jakarta.apache.org Subject: context.xml Hi, Can context.xml be used with tomcat 4.0.3? If yes can anyone please tell me what the contents should be for it and how to invoke it using the METAINF attribute of ant WAR task? thanks. - Start your day with Yahoo! - make it your home page - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
With tomcat 5 redirects to a secure port fails
I have been looking al over for an explanation to what I am seeing. If I hit my site with https I get my secure page displayed if I hit it with http it is set up to redirect to https. The problem is the redirect is trying to use the internal IP address in the URL (https://10.0.0.4/login.jsp) not the URL with the www. defined. We had this set up in tomcat 4 and the external users who where redirected were able to get the secure page from http://www.; but now this does not work. I have looked at all the Tomcat 5 SSL sites that have come up on a number of searches but I do not see this problem addressed. Julie -Original Message- From: Julie Moore [mailto:[EMAIL PROTECTED] Sent: Monday, August 29, 2005 1:50 PM To: tomcat-user@jakarta.apache.org Subject: With tomcat 5 redirects to a secure port the connection fails I have updated a site from tomcat 4 to tomcat 5 and my link that used to redirect to a secure site now fails. I see the webpage tying to connect with my internal IP address instead of the external URL that the request came in one. If I connect to https://www.x.com and hit the link to the secure page my page displays correctly. But if I hit it from http://www.x.com http://www.x.com/ the secure page does not display. The page that displays has not changed. It has a relative link to the webapp that I want to have as secure. I have the server.xml connectors defined: Connector port=80 minThreads=150 maxSpareThreads=75 minSpareThreads=25 enableLookups=true redirectPort=443 acceptCount=100 debug=0 connectionTimeout=2 disableUploadTimeout=true / !-- Define a SSL Coyote HTTP/1.1 Connector on port 443 -- Connector port=443 maxHttpHeaderSize=8192 maxThreads=150 minSpareThreads=25 maxSpareThreads=75 enableLookups=false disableUploadTimeout=true acceptCount=100 scheme=https secure=true clientAuth=false sslProtocol=TLS keystoreFile=c:\tomcat\conf\keystore.ks / and the following in the web.xml of my application I wish to have available only as secure: security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/*/url-pattern /web-resource-collection user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint What have I missed? Jmoore - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: ssl connections hanging
I usually put the sslProtocol=TSL' entry in my connector and have to had any problems. Julie -Original Message- From: Brian Moseley [mailto:[EMAIL PROTECTED] Sent: Tuesday, August 30, 2005 1:38 PM To: Tomcat Users List Subject: ssl connections hanging in my continuing quest to migrate my server app from 5.0.28 to 5.5.9, i now face a problem with ssl: secure connections hang for variable amounts of time, and then the server drops them. curl reports Unknown SSL protocol error in connection to localhost:8443. my connectors are defined as such: Connector port=8080 enableLookups=false/ Connector port=8443 enableLookups=false secure=true scheme=https clientAuth=want keystorePass=osafcosmo/ i generated a brand new keystore containing a self-signed cert with this command, specifying osafcosmo for both the keystore password and key password: keytool -genkey -alias osafcosmo -keyalg RSA i tried turning on debug logging for org.apache.catalina, but there was no additional log output. any ideas? thanks! - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
With tomcat 5 redirects to a secure port the connection fails
I have updated a site from tomcat 4 to tomcat 5 and my link that used to redirect to a secure site now fails. I see the webpage tying to connect with my internal IP address instead of the external URL that the request came in one. If I connect to https://www.x.com and hit the link to the secure page my page displays correctly. But if I hit it from http://www.x.com http://www.x.com/ the secure page does not display. The page that displays has not changed. It has a relative link to the webapp that I want to have as secure. I have the server.xml connectors defined: Connector port=80 minThreads=150 maxSpareThreads=75 minSpareThreads=25 enableLookups=true redirectPort=443 acceptCount=100 debug=0 connectionTimeout=2 disableUploadTimeout=true / !-- Define a SSL Coyote HTTP/1.1 Connector on port 443 -- Connector port=443 maxHttpHeaderSize=8192 maxThreads=150 minSpareThreads=25 maxSpareThreads=75 enableLookups=false disableUploadTimeout=true acceptCount=100 scheme=https secure=true clientAuth=false sslProtocol=TLS keystoreFile=c:\tomcat\conf\keystore.ks / and the following in the web.xml of my application I wish to have available only as secure: security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/*/url-pattern /web-resource-collection user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint What have I missed? Jmoore