RE: Enabling only HTTPS for a container

Sun, 20 May 2001 22:52:00 -0700 

Hi

At first you have to enable HTTPS in your conf/server.xml file. There is
also description how to generate certificate.
Then you have to define security constratint for your application: Eg. you
want to restrict access to your administration part of the application. So
that
you have to add following code into your web.xml

        <security-constraint>
                <web-resource-collection>
                        <web-resource-name>all-pages</web-resource-name>
                        <url-pattern>/admin/*</url-pattern>
                        <url-pattern>/administration/*</url-pattern>
                </web-resource-collection>
                <auth-constraint>
                        <role-name>SA</role-name>
                </auth-constraint>
                <user-data-constraint>
                        <description>SSL is required</description>
        
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
                </user-data-constraint>
        </security-constraint>

Regards

Jan

On Monday, May 21, 2001 8:16 AM, Rams [SMTP:[EMAIL PROTECTED]] wrote:
> how to use this CONFIDENTIAL transport-guarantee and where?
> 
> --Rams
> 
> -----Original Message-----
> From: Pernica, Jan [mailto:[EMAIL PROTECTED]]
> Sent: Monday, May 21, 2001 11:19 AM
> To: [EMAIL PROTECTED]
> Subject: RE: Enabling only HTTPS for a container
> 
> 
> Sorry about the question. I found solution in the documentation (servlet
2.3
> specification).
> 
> I have to use CONFIDENTIAL transport-guarantee.
> Regards
> 
> Jan
> 
> On Monday, May 21, 2001 7:30 AM, Pernica, Jan [SMTP:[EMAIL PROTECTED]] wrote:
> > Hi everybody
> >
> > I would like disable HTTP for one container. How can I do that?
> > Thank you in advance.
> > Regards
> >
> > Jan
> >
> >
> >
> > __________________________________________________________________
> > Tato komunikace je urcena vyhradne pro adresata a je duverna.
> > This communication is intended solely for the addressee and is
> confidential.
> >
> >
> 
> 
> __________________________________________________________________
> Tato komunikace je urcena vyhradne pro adresata a je duverna.
> This communication is intended solely for the addressee and is
confidential.
> 


__________________________________________________________________
Tato komunikace je urcena vyhradne pro adresata a je duverna. 
This communication is intended solely for the addressee and is confidential.

Reply via email to