return sm;
}
}
});
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/Tomcat-7-SSL-and-getDesiredSchemeFor-problem-tp4671980.html
Sent from the Users forum mailing list a
t in development mode "+sm.name());
return sm;
}
}
});
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/Tomcat-7-SSL-and-getDesiredSchemeFor-problem-
Hi,
No I did not. I would like to get both method (http and https) accessible.
There is no proxy used.
s
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/Tomcat-7-SSL-and-getDesiredSchemeFor-problem-tp4671980p4671982.html
Sent from the Users forum mailing list
here.
Thanks, once more,
Lucas
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/Firefox-39-Error-code-ssl-error-weak-server-ephemeral-dh-key-on-ssl-connection-tp4671661p4671691.html
Sent from the Users forum mailing list archive at Nabble.com
This is what you need to read about it: Logjam attack https://weakdh.org/
. You need to disable come cipher suites in your server HTTPS configuration.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/Firefox-39-Error-code-ssl-error-weak-server-ephemeral-dh-key
SslContextFactory or is it a purely server problem, exclusive of the wicket
application?
Thanks in advance,
Lucas
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/Firefox-39-Error-code-ssl-error-weak-server-ephemeral-dh-key-on-ssl-connection-tp4671661.html
Sent from
or is it a purely server problem, exclusive of the wicket
application?
Thanks in advance,
Lucas
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/Firefox-39-Error-code-ssl-error-weak-server-ephemeral-dh-key-on-ssl-connection-tp4671661.html
Sent from the Users forum mailing list
similar setups, but I cannot figure out what I'm doing wrong.
We force all requests from the public internet to use HTTPS when accessing
our app.We terminate SSL at the load balancer and the request that actually
hits Apache and then Tomcat is straight HTTP. The load balancer adds the
proper X
something simple as there are certainly many others
using similar setups, but I cannot figure out what I'm doing wrong.
We force all requests from the public internet to use HTTPS when accessing
our app.We terminate SSL at the load balancer and the request that actually
hits Apache
terminate SSL at the load balancer and the request that
actually
hits Apache and then Tomcat is straight HTTP. The load balancer adds the
proper X-Forwarded-Proto headers to the requests heading back to the app
server and Wicket and we've confirmed that these are being received.
We've
setup
something simple as there are certainly many others
using similar setups, but I cannot figure out what I'm doing wrong.
We force all requests from the public internet to use HTTPS when
accessing
our app.We terminate SSL at the load balancer and the request that
actually
hits Apache
I'm sure I'm missing something simple as there are certainly many others
using similar setups, but I cannot figure out what I'm doing wrong.
We force all requests from the public internet to use HTTPS when accessing
our app.We terminate SSL at the load balancer and the request that actually
hits
not switching to SSL when there
is no JSESSIONID cookie. It's happening with wicket-auth-roles when
the user goes to the home page, which need authentication. I have
this code in my init method in my WebApplication class.
getSecuritySettings().setAuthorizationStrategy(new
IAuthorizationStrategy
Please create a quickstart and attach it to a jira issue.
Sven
On 03/27/2013 06:41 PM, Tim Urberg wrote:
Hi Everyone,
I'm having an issue with HttpsMapper not switching to SSL when there
is no JSESSIONID cookie. It's happening with wicket-auth-roles when
the user goes to the home page
Hi Everyone,
I'm having an issue with HttpsMapper not switching to SSL when there is
no JSESSIONID cookie. It's happening with wicket-auth-roles when the
user goes to the home page, which need authentication. I have this code
in my init method in my WebApplication class
Hi *,
i noticed some errors while using the httpsmapper with ssl-termination
on a proxy(nginx, bigip-F5).
Wicket redirects the following sequence:
http://domain.com/test
results in
https://domain.com/test
this url was also redirected with end ?0 but not https. Redirect to
http
.
On Tue, Aug 14, 2012 at 5:34 AM, James Eliyezar ja...@mcruncher.com
wrote:
Greetings to all of you.
We recently upgraded our application to Wicket 1.5.
However, after upgrading we had problems sending email using SSL from
our
application.
This may not be related to wicket at all but I
upgrading we had problems sending email using SSL from our
application.
This may not be related to wicket at all but I promise we didn't change any
dependencies other than wicket's.
What amuses me is that it works as expected in our older versions which
still use Wicket 1.4.x.
Both the older version
the problem is in
these settings.
On Tue, Aug 14, 2012 at 5:34 AM, James Eliyezar ja...@mcruncher.com
wrote:
Greetings to all of you.
We recently upgraded our application to Wicket 1.5.
However, after upgrading we had problems sending email using SSL from our
application.
This may
Greetings to all of you.
We recently upgraded our application to Wicket 1.5.
However, after upgrading we had problems sending email using SSL from our
application.
This may not be related to wicket at all but I promise we didn't change any
dependencies other than wicket's.
What amuses me
(since it's
working!).
So the only thing is to fix the CSS issue, do you have any idea of how...?
Thank you
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3014970.html
Sent from the Users forum mailing list archive at Nabble.com
Hi,
I just added
https://issues.apache.org/jira/browse/WICKET-3133
Other answers inline:
I tried your code and it's working for me, just with one issue I mention at
the end of this post. I had to make just 3 modifications: the method
resolve() stays like this:
public IRequestTarget
think it's OK (since it's
working!).
So the only thing is to fix the CSS issue, do you have any idea of how...?
Thank you
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3014970.html
Sent from the Users forum mailing list archive
for the URLs
of links and buttons in the page (the debugger never entered that point in
that request). I'll continue trying it and modifications and keep this
thread informed up-to-date.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3015404.html
in
that request). I'll continue trying it and modifications and keep this
thread informed up-to-date.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3015404.html
Sent from the Users forum mailing list archive at Nabble.com
I'm using:
add(CSSPackageResource.getHeaderContribution(styles/main/layout.css));
literally as I have just written.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3015516.html
Sent from the Users forum mailing list archive
but not the error() method of the
form itself). Will it detect those situations? I'm trying and
secureForm.hasError() always return false, no matter there are even
wicket-validation errors or not.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons
the message but not the error() method of the
form itself). Will it detect those situations? I'm trying and
secureForm.hasError() always return false, no matter there are even
wicket-validation errors or not.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL
) work over https.
Any ideas?
If there's a core developer reading this, is there any plan of extending
the @RequireHttps annotation to other Components rather than just pages?
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3001634
? How could I override checkSecureIncoming and
checkSecureOutgoing methods to be aware of those situations? Thank you in
advance
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3009814.html
Sent from the Users forum mailing list archive
this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3009814.html
Sent from the Users forum mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: users-unsubscr
.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3005126.html
Sent from the Users forum mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org
For additional commands, e-mail: users-h
) are annotated with RequireHttps,
and
if not, redirects to HTTP. Is there something I can do to sent the form
with
POST? Thank you again in advance
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3005126.html
Sent from the Users forum mailing
secured, and others -as I mentioned in an older post, the registration
page is an example-.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3005153.html
Sent from the Users forum mailing list archive at Nabble.com
is an example-.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3005153.html
Sent from the Users forum mailing list archive at Nabble.com.
-
To unsubscribe, e-mail
don't know what can
I do with them to keep them, and even more, I don't know if the things I do
there may interfer with other normal request processing. Any hints to do
that? Thanks
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3005272
redirected to GET, but it will
be processed.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3005272.html
Sent from the Users forum mailing list archive at Nabble.com
subclasses.
What's your opinion? Am I missing something? Did I break something that I'll
realize in some weeks? Thank you very much for your very useful help, I just
had to put pieces together!!
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons
:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3005352.html
Sent from the Users forum mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org
For additional
on that form. If you
have any hints, thank you in advance. If I find a solution I'll also post it
here, of course. Thanks
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3005514.html
Sent from the Users forum mailing list archive
info: the form is included in a Page that is NOT
annotated with @RequireHttps.
Am I missing something? Any ideas? Thank you in advance.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3003364.html
Sent from the Users forum mailing list
this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3003364.html
Sent from the Users forum mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: users-unsubscr
Thank you Melinda for your response,
I didn't try that because, even when querystring (and therefore GET
parameters are too) is secured with SSL, there are some reasons that point
that it's a bad idea (look at the first answer at
http://stackoverflow.com/questions/323200/is-a-https-query-string
with @RequireHttps.
Am I missing something? Any ideas? Thank you in advance.
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3003364.html
Sent from the Users forum mailing list archive at Nabble.com
this, is there any plan of extending
the @RequireHttps annotation to other Components rather than just pages?
--
View this message in context:
http://apache-wicket.1842946.n4.nabble.com/SSL-Links-and-buttons-tp3001634p3001634.html
Sent from the Users forum mailing list archive at Nabble.com
so far i dont think there are any plans to support ssl forms outside
of @RequireHttps
here is something that might work for you though:
class secureform extends form {
oncomponenttag(tag) {
super.oncomponenttag(tag);
string act=tag.get('action);
act=rqeuestutils.toabsoluteurl(act
How can I submit a form via AJAX over SSL? I have a login form that
appears via Ajax and I want the form submission to be under SSL when it
is submitted via AJAX. How can I go about doing this?
Thanks
see HttpsRequestCycleProcessor
-igor
On Tue, Jul 20, 2010 at 7:12 AM, Jeffrey Schneller
jeffrey.schnel...@envisa.com wrote:
How can I submit a form via AJAX over SSL? I have a login form that
appears via Ajax and I want the form submission to be under SSL when it
is submitted via AJAX. How
How can I submit a form via AJAX over SSL? I have a login form that
appears via Ajax and I want the form submission to be under SSL when it
is submitted via AJAX. How can I go about doing this?
Thanks.
handle the SSL part (in that
case we are not required to configure SSL on the application server -
glassfish v3). Is there any best practice how to achieve this?
Thanks and regards,
Istvan
-
To unsubscribe, e-mail: users
Hi,
We are using HttpsRequestCycleProcessor + @RequireHttps annotation in
our local dev environment (the server is a jetty executed directly
from Eclipse). In the production environment, we have Apache +
mod_proxy, and I'd prefer if Apache could handle the SSL part (in that
case we
[mailto:istvan.s...@gmail.com]
Sent: Thursday, March 04, 2010 11:05 AM
To: users@wicket.apache.org
Subject: mod_proxy + ssl + HttpsRequestCycleProcessor
Hi,
We are using HttpsRequestCycleProcessor + @RequireHttps annotation in
our local dev environment (the server is a jetty executed directly
from Eclipse
-
From: Istvan Soos [mailto:istvan.s...@gmail.com]
Sent: Thursday, March 04, 2010 11:05 AM
To: users@wicket.apache.org
Subject: mod_proxy + ssl + HttpsRequestCycleProcessor
Hi,
We are using HttpsRequestCycleProcessor + @RequireHttps annotation in
our local dev environment (the server
Thanks Nino, you are correct.
In the Jetty tutorial says:
...extending the Connector class of your choice, eg the
SelectChannelConnector, and implement the customize...
public void customize(org.mortbay.io.EndPoint endpoint, Request
request) throws IOException
{
request.setScheme(https);
I extends HttpsRequestCycleProcessor and SwitchProtocolRequestTarget
to make my custom HttpsRequestCycleProcessor
In the method getUrl from SwitchProtocolRequestTarget i just remove the port:
if (port != null) {
result.append(:);
result.append(port);
}
I think last time this came up it ended out being some issue with jetty?
2009/11/11 Rangel Preis rangel...@gmail.com
I extends HttpsRequestCycleProcessor and SwitchProtocolRequestTarget
to make my custom HttpsRequestCycleProcessor
In the method getUrl from SwitchProtocolRequestTarget i
The situation here is:
https http
- Apache --- Jetty
Using wicket in my WicketApplication I put
private static final HttpsConfig HTTPS_CONFIG = new
HttpsConfig(HTTP_PORT, HTTPS_PORT);
@Override
protected IRequestCycleProcessor
The unique solution that i found is extends HttpsRequestCycleProcessor
to change only the protocol.
Any other ideia? Thanks All.
2009/11/10 Rangel Preis rangel...@gmail.com:
The situation here is:
https http
- Apache --- Jetty
Using wicket in my
work on an SSL environment.
Whenever we open a modal popup window, there's this annoying message of
IE
that the user is trying to open both secure and non secure content.
We changed the IE settings and the message is gone.
But I want to understand what's causing it?
I googled a bit about
Hello all,
We are having a problem when we work on an SSL environment.
Whenever we open a modal popup window, there's this annoying message of IE
that the user is trying to open both secure and non secure content.
We changed the IE settings and the message is gone.
But I want to understand what's
include an website analytics script via an http url.
-igor
On Wed, Aug 19, 2009 at 4:51 AM, Eyal Golanegola...@gmail.com wrote:
Hello all,
We are having a problem when we work on an SSL environment.
Whenever we open a modal popup window, there's this annoying message of IE
that the user
...@gmail.com wrote:
Hello all,
We are having a problem when we work on an SSL environment.
Whenever we open a modal popup window, there's this annoying
message of IE
that the user is trying to open both secure and non secure content.
We changed the IE settings and the message is gone.
But I
script via an http url.
-igor
On Wed, Aug 19, 2009 at 4:51 AM, Eyal Golanegola...@gmail.com wrote:
Hello all,
We are having a problem when we work on an SSL environment.
Whenever we open a modal popup window, there's this annoying message of
IE
that the user is trying to open both secure
What is the recommended method on securing certain pages via SSL with
Wicket 1.4.0?
Thanks!
jose
-
To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org
For additional commands, e-mail: users-h...@wicket.apache.org
method on securing certain pages via SSL
with Wicket
1.4.0?
Thanks!
jose
-
To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org
For additional commands, e-mail: users-h...@wicket.apache.org
9, 2009, at 9:26 AM, Igor Vaynberg wrote:
see @RequireHttps
-igor
On Sat, Aug 8, 2009 at 12:34 PM, Jose Hernandezj...@expertoffice.net
wrote:
What is the recommended method on securing certain pages via SSL with
Wicket
1.4.0?
Thanks!
jose
As a new user, I am not sure I understand, I need to setup
@requireHTTPS to work and I have the following Code:
What am I doing wrong? I have Wicket 1.4.0
error SecureRequestCycleProcessor cannot be resolved to a type
package com.test.sslstuff2;
import
As a new user, I am not sure I understand, I need to setup
@requireHTTPS to work and I have the following Code:
What am I doing wrong? I have Wicket 1.4.0
error SecureRequestCycleProcessor cannot be resolved to a type
package com.test.sslstuff2;
import
according to some, it has to do with non-port 80 requests appearing more
suspicous that port-80, and just in combination with firefox = 3.0.
did you try deploying your site to http://localhost:80 and
https://localhost:443 ? this worked for me.
firefox 3.5 did not complain about port 8080/8443
?
Von: Igor Vaynberg igor.vaynb...@gmail.com
An: users@wicket.apache.org
Gesendet: Montag, den 27. Juli 2009, 18:24:20 Uhr
Betreff: Re: AW: SSL - ajax login
hmm, it might be like you said - ajax request with an untrusted cert
might be failing.
it looks from the console like wicket
: Re: AW: SSL - ajax login
hmm, it might be like you said - ajax request with an untrusted cert
might be failing.
it looks from the console like wicket is trying to hit that url, what
you can do is set a breakpoint in wicketfilter and see if that request
ever reaches the server.
-igor
I'll try to find out more.
Here is the output from wicket debug console:
---
SSL-Link clicked:
INFO: focus set on link34
INFO: Using XMLHttpRequest transport
INFO:
INFO: Initiating Ajax POST request on
https://localhost:8443/projectname/;jsessionid=039EAC776571BA623EA885F798AC6A10
: Sonntag, den 26. Juli 2009, 22:22:22 Uhr
Betreff: Re: AW: SSL - ajax login
the href is not a problem; you seeing # appended to the end of the url
is the correct behavior. what should have happened was the ajax call
to that https url in the background.
so what you should be looking into is why
igor.vaynb...@gmail.com
An: users@wicket.apache.org
Gesendet: Sonntag, den 26. Juli 2009, 22:22:22 Uhr
Betreff: Re: AW: SSL - ajax login
the href is not a problem; you seeing # appended to the end of the url
is the correct behavior. what should have happened was the ajax call
to that https url
Hi Igor,
I used Firebug to have a look at the onClick event.
I've inspected two links, one usual ajax link and one for the ssl login.
Regarding the first link:
href=?wicket:interface=:6:content:container:areaTop:2:panelTop:container:loginForm:linkForgotLogin:container:link::ILinkListener
: Re: AW: SSL - ajax login
whatever url you see when hovering over the link is not the url used
for ajax - not necessarily. you should inspect the onclick handlers.
-igor
On Fri, Jul 24, 2009 at 12:20 PM, Arthur Leigh
Allenarthurleigh.al...@yahoo.de wrote:
no, sorry... the url is not changing
26, 2009 at 1:15 PM, Arthur Leigh
Allenarthurleigh.al...@yahoo.de wrote:
Hi Igor,
I used Firebug to have a look at the onClick event.
I've inspected two links, one usual ajax link and one for the ssl login.
Regarding the first link:
href=?wicket:interface=:6:content:container:areaTop:2
@wicket.apache.org
Gesendet: Donnerstag, den 23. Juli 2009, 16:37:22 Uhr
Betreff: Re: AW: SSL - ajax login
javascript invokes the url you give it, so it looked like it should
work. you might have to trace deeper to see whats going on.
-igor
On Thu, Jul 23, 2009 at 4:41 AM, Arthur Leigh
it today
However I would appreciate a response to the other questions.
Thx
Arthur
Von: Arthur Leigh Allen arthurleigh.al...@yahoo.de
An: users@wicket.apache.org
Gesendet: Freitag, den 24. Juli 2009, 11:19:23 Uhr
Betreff: AW: AW: SSL - ajax login
Hi Igor,
I tried
: Igor Vaynberg igor.vaynb...@gmail.com
An: users@wicket.apache.org
Gesendet: Donnerstag, den 23. Juli 2009, 16:37:22 Uhr
Betreff: Re: AW: SSL - ajax login
javascript invokes the url you give it, so it looked like it should
work. you might have to trace deeper to see whats going on.
-igor
, 17:30:27 Uhr
Betreff: Re: AW: SSL - ajax login
no, i havent tried it myself. i never had to do an ajax login.
the url in the browser changes to http://locahost:8080/projectname/# ?
thats fine. the main part is what the actual ajax url is used - you
wont see that in the browser's bar. i suggest
the url modifications.
Thank you for your support Igor!
Have a nice weekend.
Greetz, Arthur
Von: Igor Vaynberg igor.vaynb...@gmail.com
An: users@wicket.apache.org
Gesendet: Freitag, den 24. Juli 2009, 17:30:27 Uhr
Betreff: Re: AW: SSL - ajax login
.
That would result in an error and maybe http://localhost:8080/projectname/# is
used therefore.
Am I wrong?
Thx
Arthur
Von: Igor Vaynberg igor.vaynb...@gmail.com
An: users@wicket.apache.org
Gesendet: Mittwoch, den 22. Juli 2009, 18:31:27 Uhr
Betreff: Re: AW: SSL
/projectname/# is used therefore.
Am I wrong?
Thx
Arthur
Von: Igor Vaynberg igor.vaynb...@gmail.com
An: users@wicket.apache.org
Gesendet: Mittwoch, den 22. Juli 2009, 18:31:27 Uhr
Betreff: Re: AW: SSL - ajax login
ah, i thought i replied already
Hi again,
I need to know if it's possible to switch to SSL via button or form.
Otherwise I have to switch back to wicket 1.3.5. I'm in hurry because
we will go online within the next 10-14 days.
Can anyone give me a prompt answer please?
Thx Best regards
Arthur
22.07.2009 um 11:37 schrieb Arthur Leigh Allen:
Hi again,
I need to know if it's possible to switch to SSL via button or form.
Otherwise I have to switch back to wicket 1.3.5. I'm in hurry because
we will go online within the next 10-14 days.
Can anyone give me a prompt answer please?
Thx
On Wed, Jul 22, 2009 at 2:37 AM, Arthur Leigh
Allenarthurleigh.al...@yahoo.de wrote:
Hi again,
I need to know if it's possible to switch to SSL via button or form.
Otherwise I have to switch back to wicket 1.3.5. I'm in hurry because
we will go online within the next 10-14 days.
Can anyone give
Gesendet: Mittwoch, den 22. Juli 2009, 18:31:27 Uhr
Betreff: Re: AW: SSL - ajax login
ah, i thought i replied already because i looked into this yesterday.
you will have to roll your own button. i would recommend looking at
the sourcecode of the default button. when you add the
formsubmitbehavior
Hello folks,
I'm using wicket 1.4 RC7 now and I have a question regarding the usage of ssl.
I use the HttpsRequestCycleProcessor with the annotation @RequireHttps.
Imagine the following case like it is realized on different sites like web.de
or gmx.de as well as xing.com.
The first call
Allenarthurleigh.al...@yahoo.de wrote:
Hello folks,
I'm using wicket 1.4 RC7 now and I have a question regarding the usage of ssl.
I use the HttpsRequestCycleProcessor with the annotation @RequireHttps.
Imagine the following case like it is realized on different sites like web.de
or gmx.de as well
to provide a ssl ajax call is to show the
base page via ssl as a starting basis.
Therefore I have to use @RequireSSL on the BasePage but that means every
communication is done via ssl
and that means more server ballast and a slower page refresh.
Greetings
Arthur
Von
Hello,I have implemented the SSL switching method as described in
http://cwiki.apache.org/WICKET/how-to-switch-to-ssl-mode.html that rewrites
the URL and does a redirect.
In does work to a point but I have a few questions:
1) when the redirect occurs a new session is started, is this correct
downloads
over SSL do not work with the cache control headers
external links do not use a wicket callback, you have to install a
filter that intercepts those urls and sets the headers
-igor
On Sat, Mar 14, 2009 at 10:11 PM, Alexita ctgog...@hotmail.com wrote:
Hi,
I have a basic Internet banking
-bypassing--Internet-Explorer-file-downloads-over-SSL-do-not-work-with-the-cache-control-headers%E2%80%8F-tp22519881p22519881.html
Sent from the Wicket - User mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: users
Policies, etc.), when I started to use SSL, none of
these static resources could be viewed in IE, (others browsers work fine),
this is due to an IE feature, (in Microsoft words, by design, weird
behavior by design), that makes the resource unavailable through SSL.
I needed a general solution
this message in context:
http://www.nabble.com/Wicket-Application-bypassing--Internet-Explorer-file-downloads-over-SSL-do-not-work-with-the-cache-control-headers%E2%80%8F-tp22519881p22519881.html
Sent from the Wicket - User mailing list archive at Nabble.com
-Explorer-file-downloads-over-SSL-do-not-work-with-the-cache-control-headers%E2%80%8F-tp22519881p22519881.html
Sent from the Wicket - User mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: users-unsubscr
Only a cent: security-constraint on web.xml can work only on certain URIs
security-constraint
display-nameSSL/display-name
web-resource-collection
web-resource-nameMake sure login path is
secured/web-resource-name
descriptionWe like ssl web services
Hi,
I need to secure some pages as well as providing a login link that uses
HTTPS. I read thru the document
http://cwiki.apache.org/WICKET/how-to-switch-to-ssl-mode.html but it seems
there are several approaches and various source code some of which doesn't
compile. I am using wicket 1.4
Hi -
I am looking at the following wiki -
http://cwiki.apache.org/confluence/display/WICKET/How+to+switch+to+SSL+mode#HowtoswitchtoSSLmode-Edit(Wicket1.3.x)%3A
.
The wiki lists a whole number of options to add SSL support to a web
application including that of the links of controls etc
1 - 100 of 117 matches
Mail list logo