hgomez 00/12/11 09:13:30
Modified: src/doc Tag: tomcat_32 tomcat-ssl-howto.html
Log:
Updated documentation on SSL (SSLVars)
Revision Changes Path
No revision
No revision
1.1.2.2 +14 -3 jakarta-tomcat/src/doc/tomcat-ssl-howto.html
Index: tomcat-ssl-howto.html
===================================================================
RCS file: /home/cvs/jakarta-tomcat/src/doc/tomcat-ssl-howto.html,v
retrieving revision 1.1.2.1
retrieving revision 1.1.2.2
diff -u -r1.1.2.1 -r1.1.2.2
--- tomcat-ssl-howto.html 2000/11/29 18:01:56 1.1.2.1
+++ tomcat-ssl-howto.html 2000/12/11 17:13:30 1.1.2.2
@@ -121,6 +121,10 @@
# What is the indicator for the client SSL certificated (default is
SSL_CLIENT_CERT)
<br>
JkCERTSIndicator SSL_CLIENT_CERT </font></p>
+<p>When using mod_jk with Apache & mod_ssl it is essential to specify "SSLOptions
+ +StdEnvVars +ExportCertData" in the httpd.conf file.<br>
+ Otherwise mod_ssl will not produce the neccessary environment variables for
+ mod_jk. (Tilo Christ <[EMAIL PROTECTED]>)</p>
<p>Warning, even if mod_jk support both ajp12 (old version from ApacheJServ) and
ajp13, only ajp13 could forward SSL informations to tomcat.</p>
<hr>
@@ -163,14 +167,21 @@
and <a href="http://www.modssl.org">ModSSL</a> (SSL support for Apache)</p>
<h3><a name=s61><font size="+1">Verify tomcat server.xml configuration
file</font></a></h3>
<blockquote>
- <p> <font face="Courier New, Courier, mono" size="-1">To use the HTTP with SSL
- connector in tomcat, verify that it is activated in server.xml</font></p>
+ <p> To use the HTTP with SSL connector in tomcat, verify that it is activated
+ in server.xml</p>
<p><font face="Courier New, Courier, mono" size="-1"><Connector
className="org.apache.tomcat.service.PoolTcpConnector"><br>
<Parameter name="handler"
value="org.apache.tomcat.service.http.HttpConnectionHandler"/><br>
<Parameter name="port" value="8443"/><br>
<Parameter name="socketFactory"
value="org.apache.tomcat.net.SSLSocketFactory"
- /> <br>
+ /><br>
+ <Parameter name="keystore" value="/var/tomcat/conf/keystore"
/></font><font face="Courier New, Courier, mono" size="-1">
+ <br>
+ <Parameter name="keypass" value="changeit"/><br>
+ <Parameter name="clientAuth" value="true"/> <br>
</Connector> </font></p>
+ <p>In this example we indicate the keystore is file
<b>/var/tomcat/conf/keystore</b>.
+ The keystore password is <b>changeit</b> and we want client to
authentificate.</p>
+ <blockquote> </blockquote>
</blockquote>
<h3><a name=s62>Generate a SSL certificate (RSA) for tomcat</a></h3>
<blockquote>