I needed to switch some pages in my web application over to HTTPS mode
(login, data entry, etc.) then switch back to HTTP for pages that do not
require it. Using sslext I am able to do that and it works fairly well.
Except...I have run into one problem. My web application also has switching
ed to send over to Tomcat have to be redefined in that
file. Only that URL patterns though...not all of the stuff you have in the
mod_jk.conf file though.
Once I fixed that problem my sslext managed HTTPS links all started working
fine.
sonavor wrote:
>
> Some additional information -
>
d not HTTPS).
>
> Does anyone know why the Struts action path is not being found when HTTPS
> is turned on?
>
> Thanks,
> -sonavor
>
>
>
>
>
--
View this message in context:
http://www.nabble.com/Problem-adding-sslext-to-Struts-application-tp25756892p25757022.htm
://www.nabble.com/Problem-adding-sslext-to-Struts-application-tp25756892p25756892.html
Sent from the Struts - User mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: user-unsubscr...@struts.apache.org
For additional commands, e
On Monday 04 May 2009 11:49:02 am Andy Engle wrote:
> Hi all,
>
> I am using sslext in my Struts application to support http/https, and
> attempting to get all this to run on a Jetty server behind an Apache 2 web
> server. The application runs fine, but I am really running into tr
Hi all,
I am using sslext in my Struts application to support http/https, and
attempting to get all this to run on a Jetty server behind an Apache 2 web
server. The application runs fine, but I am really running into trouble with
my configuration, particularly since sslext forwards to the
r jsp. All the S2 tags respect the
existing protocol and port.
4. if you need redirect, implement a interceptor to do do this.
Item 4 is not essential unless you're sending request/post parameters
across protocols (sslext includes this functionality). An interceptor
is not shipped w
Hello,
Does anyone use http switch in struts2?
It seems nobody answers my question.
please help.
Thanks,
peter c.
peter lee <[EMAIL PROTECTED]> wrote:
Hello,
My struts1 app is using sslext for https switch. How to upgrade it to struts2?
Thanks,
Hello,
My struts1 app is using sslext for https switch. How to upgrade it to struts2?
Thanks,
peter
-
Building a website is a piece of cake.
Yahoo! Small Business gives you all the tools to get online.
I have been using the sslext library for some time. I have only
used it
with Struts 1.1 and 1.2 though, never with 1.3.
As for your concerns regarding the custom controller/processor class,
sslext comes with a SecureTilesRequestProcessor class. I have been
using
it with tiles without issue
I have been using the sslext library for some time. I have only used it
with Struts 1.1 and 1.2 though, never with 1.3.
As for your concerns regarding the custom controller/processor class,
sslext comes with a SecureTilesRequestProcessor class. I have been using
it with tiles without issue
statement, rather than have to execute another statement for 'curval'.
> getGeneratedKeys() may be it.
>
> HTH
> Brett
>
>
> Quoting Michael Rush <[EMAIL PROTECTED]>:
>
> > I'm looking into implementing something to force ssl for logins
ssl for logins (and
> a few other pages) and then switching back to standard http once
> logged in.
>
> I found sslext at http://sslext.sourceforge.net/ but it looks like it
> hasn't been updated in a couple of years. I have a couple of concerns:
> * I'm running struts 1.3.x,
I'm looking into implementing something to force ssl for logins (and
a few other pages) and then switching back to standard http once
logged in.
I found sslext at http://sslext.sourceforge.net/ but it looks like it
hasn't been updated in a couple of years. I have a couple o
We have a situation where certain appservers are behind a webserver
proxy, but also available to internal users directly. This means that
the SSLEXT plugin must sometime rewrite the URLs based on ports 80 and
443, and sometimes between 7001 and 7002. This will remain constant
throughout a
Randy Shepherd wrote:
The latest version of SSLEXT seems to be for Struts 1.2.2, is there a
newer version, or have people had success implementing the 1.2.2 version
of SSLEXT with Struts 1.2.7?
I haven't used sslext, but Struts 1.2.7 should be similar enough to
1.2.2 that you shouldn&#
The latest version of SSLEXT seems to be for Struts 1.2.2, is there a
newer version, or have people had success implementing the 1.2.2
version of SSLEXT with Struts 1.2.7?
Thanks,
Randy
-
To unsubscribe, e-mail: [EMAIL
2005/12/6, Jim Reynolds <[EMAIL PROTECTED]>:
> If I put a object into the request, and switched protocols, the
> request object was no longer found? Since most struts work has
I see that when sslext switches from a protocol to another what is
really happening is: a redirect is
Jim Reynolds wrote:
If I put a object into the request, and switched protocols, the
request object was no longer found? Since most struts work has
something to do with passing requests around, how can this sslext work
in a dynamic environment.
I hope I am doing something wrong. I followed the
I configured a test site using sslext, and using the
SecureRequestProcessor as my processorClass, not using tags I ran into
some bad results.
If I put a object into the request, and switched protocols, the
request object was no longer found? Since most struts work has
something to do with passing
HummmI did not try that. I will play with that tongiht.
But in regards to this, I found in my O'Reilly Struts Cookbook the example
pp373 on how the sslext works. It is funny, because I was reading an article
last night from here:
<http://www.javaworld.com/javaworld/jw-05-2002
a servlet filter that checks for a session, and if it's new, sets an
extra cookie for the base domain.
> Then I found the sslext at sourceforge ... but cannot find any
> information on how this works, how to configure, etc. And the mailing
> lists look like a ghost town.
Never used it so
Jim Reynolds wrote:
Then I found the sslext at sourceforge ... but cannot find any
information on how this works, how to configure, etc. And the mailing
lists look like a ghost town.
http://struts.apache.org/struts-doc-1.2.x/faqs/ssl.html
then the jsp
page shows up in the url, and that is not good. So I hate that idea.
Then I found the sslext at sourceforge ... but cannot find any
information on how this works, how to configure, etc. And the mailing
lists look like a ghost town.
So I am hoping possibly someone on this list has or
I will answer myself to have answers in the mailing list archive for the
ones to come after me ;)
>do I understand that correct, that in order to use SSLEXT, I have to use a
>specialized Version of RequestProcessor?
Yes, as this RequestProcesser checks in processPreprocess if the c
Hi all,
do I understand that correct, that in order to use SSLEXT, I have to use a
specialized Version of RequestProcessor?
What if I use Tiles?
Or worse, what if I extended TilesRequestProcessor (processRoles)?
Does that mean I'm screwed now?
Any other ways/means of using SSL (select
2005/8/1, Jim Kennedy <[EMAIL PROTECTED]>:
> This you do this is your struts config:
>
>
>
>
>
>
>
>
> There is also a Tomcat config for SSL. Also, I didn't put my login.jsp (or
> whatever) in the special /WEB-INF/ directory.
but I
would try something simple first i.e. /login.jsp. Get it working off the ROOT
them play around with the placement.
-Original Message-
From: Tremal Nailk <[EMAIL PROTECTED]>
Sent: Aug 1, 2005 7:06 AM
To: Struts Users Mailing List
Subject: Re: integration between sslext and s
2005/7/29, Jim Kennedy <[EMAIL PROTECTED]>:
> I had to do this to make it work.
sorry, but it doesn't work, or better, it doesn't work for me . The
problem is that when I try to access a protected resource the
browser's request is redirected to the root of the app:
http://localhost:8080/myapp/
s
2005/7/29, Jim Kennedy <[EMAIL PROTECTED]>:
> Not exactly obvious, but documented.
thanks a lot. Infact, I did not find much documentation on SSLEXT. If
you where so kind to tell me a good reference, I'll be glad
cheers
-Original Message-
From: Tremal Nailk <[EMAIL PROTECTED]>
Sent: Jul 29, 2005 12:01 PM
To: user@struts.apache.org
Subject: integration between sslext and servlet auth
Hi everibody,
it'ss the first time I'm writing to this list, I hope I'm not annoying anyone.
I'm using
Hi everibody,
it'ss the first time I'm writing to this list, I hope I'm not annoying anyone.
I'm using the ssl extension library for Struts (sslext) to switch
between encrypted and unencrypted pages in my webapp. Everything works
fine excerpt for the login page, which is ha
on
"/Logon" which does NOT use SecureActionConfig while your requestProcessor
seems to expect it.
Regards,
David
-Original Message-
From: Mark Shifman [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 31, 2005 2:57 PM
To: Struts Users Mailing List
Subject: sslext java.lang.C
I just started playing with sslext and I have a problem.
java.lang.ClassCastException
org.apache.struts.action.SecureRequestProcessor.processPreprocess(SecureRequestProcessor.java:102)
My first login action is supposed to use ssl but it forwards to logon
action and a menu that doesn&#
s work. Also when I include an Item nested
within a Menu it causes an error whilst the server is loading.
Any ideas anyone?
On Sun, 13 Feb 2005 13:51:13 +, Tim Christopher
<[EMAIL PROTECTED]> wrote:
> Hi,
>
> Can someone tell me if Struts-Menu is compatible with SSLEXT?
>
Hi,
Can someone tell me if Struts-Menu is compatible with SSLEXT?
I've just started to look through a basic tutorial on Struts menu and
as links are defined as links are defined in an xml file the sslext
tags cannot be used. Is it clever enough to use SSLEXT if I just send
it to the co
Did you set up your Struts config to use
org.apache.struts.config.SecureActionConfig for it's ActionConfig
class?
Either
...
or per action,
Joe
At 2:32 PM -0600 2/11/05, Steven Leija wrote:
Hey All,
I'm currently trying to integrate sslext into my application. When
I s
Hey All,
I'm currently trying to integrate sslext into my application. When I start up
it seems to be crashing on parsing
Has anyone gotten this exception? Suggestions?
Thanks!
Steven
java.lang.NoSuchMethodException: Bean has no property named secure
sources using the web.xml parameter
> was removed.
>
> http://struts.apache.org/userGuide/configuration.html#resources_config
>
> Niall
>
> - Original Message -
> From: "Tim Christopher" <[EMAIL PROTECTED]>
> Sent: Monday, February 07, 2005
February 07, 2005 2:49 PM
Subject: Re: sslext
> I upgraded to Struts 1.2 and that fixed the problem, thanks.
>
> ... I'm now gettting a new problem though - the Struts Validator does
> not appear to be called anymore, and it also has problems finding the
> properti
On Mon, 7 Feb 2005 03:51:19 -, Niall Pemberton
<[EMAIL PROTECTED]> wrote:
> TagUtils was added in the Struts 1.2 branch, so presumably you're using
> Struts 1.1 or 1.0? If thats the case then are your probably using the wrong
> version of sslext - either upgrade you
TagUtils was added in the Struts 1.2 branch, so presumably you're using
Struts 1.1 or 1.0? If thats the case then are your probably using the wrong
version of sslext - either upgrade your version of struts or download the
appropriate version of sslext for the version of struts you're usi
Hi,
I am having a few problems trying to configure sslext with a project
that also uses the Struts Validator and Tiles. Below is the first
part of the stack dump:
java.lang.NoClassDefFoundError: org/apache/struts/taglib/TagUtils
at
org.apache.struts.taglib.html.SecureLinkTag.calculateURL
Joe,
How about changing the "any" default in
org.apache.struts.config.SecureActionConfig
to "false" in a WEB-INF/classes overriding
class? The original code for that class
from CVS is pretty bare bones:
http://cvs.sourceforge.net/viewcvs.py/sslext/sslext120/src/org/a
Mostly non-existent SSLExt documentation aside, here's what I'm seeing
happen
Setting enable=false doesn't determine a default secure setting for
actions -- setting it to false turns everything off. As in every
ActionMapping behaves as if secure=false, *including* the ones where
se
Joe,
This is SSLExt in Struts, right? So why can't you do this:
Or something like that? I took that line from the SSLExt V1.2.0 CVS example
web/WEB-INF/struts-config.xml file and simply updated the httpPort,
httpsPort and enable properties to suggest
Anyone aware of if there is a way to specify the default behavior for the
secure set-property for Actions when using SSLExt?
I'm taking an existing struts app and adding https pages to it with SSLExt.
Simple enough.
But it seems as if an action, should "secure" be unspecified,
Fixed now. Downloaded the latest version of sslext
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Am using the Struts sslext based on advice from several of you.
However when I change my struts config to use the class:
org.apache.struts.config.SecureActionConfig
i.e.
I get
The following exception was logged java.lang.ClassNotFoundException
Jim Kennedy mindspring.com> writes:
> What causes the framework to use the SecureRequestProcessor.>
You have to change the controller processorClass in your struts-config.xml.
Switch to org.apache.struts.action.SecureRequestProcessor or
org.apache.struts.action.TilesSecureRequestProcessor if y
ouble with SSL and struts using sslext
I added this to web.xml:
login page
/login
GET
Jim,
Works perfect for me.
...
On Jul 22, 2004, at 1:49 PM, Jim Kennedy wrote:
I can't seem to get any of my action to go under https. The config
seems
fairly simple but I must be missing something. I want
cessor. I do I change this class
to use the correct one for the sslext technique.
-Original Message-
From: Jim Kennedy [mailto:[EMAIL PROTECTED]
Sent: Thursday, July 22, 2004 4:01 PM
To: 'Struts Users Mailing List'
Subject: RE: Trouble with SSL and struts using sslext
I
EMAIL PROTECTED]
Subject: RE: Trouble with SSL and struts using sslext
> -Original Message-
> From: Jim Kennedy [mailto:[EMAIL PROTECTED]
> Sent: Thursday, July 22, 2004 12:50 PM
> To: 'Struts Users Mailing List'
> Subject: Trouble with SSL and struts using sslext
&
> -Original Message-
> From: Jim Kennedy [mailto:[EMAIL PROTECTED]
> Sent: Thursday, July 22, 2004 12:50 PM
> To: 'Struts Users Mailing List'
> Subject: Trouble with SSL and struts using sslext
>
>
> I can't seem to get any of my action to go und
I can't seem to get any of my action to go under https. The config seems
fairly simple but I must be missing something. I want some pages to be
under SSL and others not to.
Here is my config:
Struts-config.xml (snippet only)
Also
Hi,
I'm successfully using struts / tiles / sslext except in one case :
All my pages are rendering using tiles.
After a form validation, I have to redirect the user to a secure page. Using
sslext, I can set the secure property in the struts-config.xml but it
doesn't work as I e
Hi,
I'm successfully using struts / tiles / sslext except in one case :
All my pages are rendering using tiles.
After a form validation, I have to redirect the user to a secure page.
Using sslext, I can set the secure property in the struts-config.xml but
it doesn't work as I e
Hi,
I've configured struts, tiles and sslext. All seems to work quite well
but I can't find out a solution to this problem :
All my pages are rendering using tiles.
A JSP containing a form must forward to another JSP page if the
validation is ok. To achieve this, I put in the cor
93)
I'm using the Struts 1.1 jar (although I don't
know exactly what level) and tld's and the most
recent sslext that I could download from
SourceForge. I"m using WSAD 5.1, I don't know
if that's important.
My controller and plugins are as follows:
com.ibm.ws.http.HttpConnection.run(HttpConnection.java:435)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:593)
I'm using the Struts 1.1 jar (although I don't know exactly what level) and
tld's and the most recent sslext that I could download from SourceForge.
I"m using WSAD
What version of Struts are you using? My guess would be some kind of
binary incompatibility. I'm using sslext with Struts 1.2.0, but I'm
sure most people out there using it are using Struts 1.1.
From the CVS logs
(http://cvs.apache.org/viewcvs.cgi/jakarta-struts/src/share/org/apa
I have been working on setting up SSLExt for an existing Struts application
which was using SecureRequestProcessor but we wanted to also implement
Tiles. So now I've configured the application to use
SecureTilesRequestProcessor. However, when I call my tiles page I'm getting
the
Hello List,
We have implemented sslext to secure a certain section of our application /
site. As part of the design / biz requirements the main navigation and many
links in the headers and footers are all still available from the https
protected pages.
My question is whether we have to
Hello List,
We have implemented sslext to secure a certain section of our application /
site. As part of the design / biz requirements the main navigation and many
links in the headers and footers are all still available from the https
protected pages.
My question is whether we have to
65 matches
Mail list logo
