Hi - I desperately need some info about mod_jk. I have managed to get it set up fine in a http environment, and everything works fine. Tomcat serves dynamic content. Apache serves static content. All good. Now ... the next thing I want to do is handle http/https - this has thrown me for a "loop" (hopefully not infinite!).
Here are my requirements: Authenticate the user over https and have that authentication "stick" over http. Ensure that, when a user requests a https resource over http, the server (Tomcat) will send a redirect to the same path over https. Ensure that non-secure paths requested over https will redirect to http. From what I understand (and correct me if I am wrong - please!) this should all be possible. I'm not scared to "get my hands dirty", but I do not possess a single clue about how to acheive this. My "best guess" at this point is that I can't do this with mod_jk, but I've seen things that indicate to me that it _can_ be done with mod_jk. To have http/https - the way I understand it - I would have to have two services. That would mean that the authentication would not be shared over http/https - right? Many things can be done without really caring much about having the session be the same over http/https - but certain things cannot (that I see)! How do you all do this? I know someone has to be doing it! I'm super-fuzzy on this, but I _have_ successfully implemented Tomcat + Apache using mod_jk. If someone could be so kind as to ... show me where I should RTFM or STFW ... or give me some "you know how to do this - it's just like <insert comparison here>", I would be supercalafragilisticexpialedociously grateful! Thanks in advance for even having taken the time to read this. Regards, Eddie Bush -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
