Within your web.xml, inside the <security-constraint> tag, add:
<user-data-constraint>
<transport-guarantee>
CONFIDENTIAL
</transport-guarantee>
</user-data-constraint>
This will force the connection for the application.
If you want to force the connection for all applications across the Tomcat instance,
then place this in the /conf/web.xml instead.
Hope this helps
Adam
-----Original Message-----
From: Donie Kelly [mailto:[EMAIL PROTECTED]]
Sent: 12 June 2002 12:21
To: 'Tomcat Users List'
Subject: Protecting a page with SSL
Hi all
I've setup SSL on tomcat but I can't find in the docs how to protect a .jsp
page or servlet mapping to force the connection over SSL
Please point me in the right direction.
Thanks
Donie
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
**********************************************************************
This message may contain information which is confidential or privileged.
If you are not the intended recipient, please advise the sender immediately
by reply e-mail and delete this message and any attachments
without retaining a copy.
**********************************************************************
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
