Re: Tomcat https answers by hostname, but not by IP number

2016-01-29 Thread Jeff Jennings 
quick question.

in tomcat can I username/password protect directories with .htaccess like I
can in Apache?

On Fri, Jan 29, 2016 at 12:09 PM, Hubert Hickman 
wrote:

> I am running Tomcat 7.0.67 on RHEL 6.7
>
> I have a tomcat app that is deployed and listening on port 6443 for https
> traffic.
>
> tomcat answers fine by request URLS of the form https://hostname:port/rest
> of
> URL/etc. However, it does not answer on https://IP 
> Number:port/rest
> of URL/etc EXCEPT for tests I run from the server itself.
>
> [myuser@adifferenthost ~]$  curl -vk https://IP NUMBER:6443/ ofURL>* About to connect() to IP NUMBER port 6443 (#0)*   Trying IP
> NUMBER... connected* Connected to IP NUMBER (IP NUMBER) port 6443
> (#0)* Initializing NSS with certpath: sql:/etc/pki/nssdb* warning:
> ignoring value of ssl.verifyhost* NSS error -5961* Closing connection
> #0* SSL connect error
> curl: (35) SSL connect error
>
> By convention, the other applications that connect to this port
> connect via IP number, not hostname.  Not sure what I am missing in
> the setup or certificates ?
>
> Thanks!
>
> Hubert
>

Tomcat - Multiple sites and SSL

2016-01-15 Thread Jeff Jennings 
I will have two applications running on my tomcat server

Jira on port 8080 and confluence on port 8090

I'm going to get an ssl cert for the server which I'll call something like
test.mysite.com

Once I get my ssl cert for test.mysite.com how do I go about setting up the
configuration file for tomcat so that both sites can share the cert.

I've been using regular apache for years and know how to do it with virtual
hosts in httpd.conf and ssl.conf but tomcat is new to me.

any pointers would be appreciated.

I'm thinking I'd like to map 8080 to something like test.mysite.com/jira
and 8090 to test.mysite.com/confluence

but I'm open to all ideas.

I see tomcat want to use port 8443 for ssl

I have read this page:
https://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html but am unsure how
to handle multiple apps on the same server that listen on different ports.

thanks

jeff

Re: Tomcat - Multiple sites and SSL

2016-01-15 Thread Jeff Jennings 
Thanks - I understand your questionw. but unfortunately based on further
investigation I've discovered that I cannot run both of my apps on the same
server.


https://confluence.atlassian.com/jira/deploying-multiple-atlassian-applications-in-a-single-tomcat-container-218279138.html

On Fri, Jan 15, 2016 at 2:09 PM, Olaf Kock <tom...@olafkock.de> wrote:

> Please clarify your intent:
>
> By default, tomcat has a /commented/ connector on 8443, which you can
> configure You can activate as many connectors on as many ports
> as you like. But if you have all applications on the same application
> server anyways (and are using the same hostnames): Why bother?
>
> This could be a question about SNI (Server Name Indication) to have
> multiple domain names on a single IP (but you're mentioning only one
> domain name).
> This could also be a question about how to map tomcat's ports to 80 or,
> in your case more likely 443.
> Or it could be a question on how to set up https in general. Why do you
> want to listen on several ports? Wouldn't you - in the end - want them
> all to come in through https on the standard port?
>
> Olaf
>
> Am 15.01.2016 um 20:01 schrieb Jeff Jennings:
> > I will have two applications running on my tomcat server
> >
> > Jira on port 8080 and confluence on port 8090
> >
> > I'm going to get an ssl cert for the server which I'll call something
> like
> > test.mysite.com
> >
> > Once I get my ssl cert for test.mysite.com how do I go about setting up
> the
> > configuration file for tomcat so that both sites can share the cert.
> >
> > I've been using regular apache for years and know how to do it with
> virtual
> > hosts in httpd.conf and ssl.conf but tomcat is new to me.
> >
> > any pointers would be appreciated.
> >
> > I'm thinking I'd like to map 8080 to something like test.mysite.com/jira
> > and 8090 to test.mysite.com/confluence
> >
> > but I'm open to all ideas.
> >
> > I see tomcat want to use port 8443 for ssl
> >
> > I have read this page:
> > https://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html but am unsure
> how
> > to handle multiple apps on the same server that listen on different
> ports.
> >
> > thanks
> >
> > jeff
> >
>
>