Ok - I've been digging and found some old (TC 3.3) stuff. If it is indicative of the correct procedure, it would seem I can just have ONE Tomcat and ONE connector and then simply "mount everything up" and "go". Is this correct? Will this cause http to redirect to https and vice-versa? I'm going to try it, for sure! Someone, please tell me if there is more to it than this!
Thanks, Eddie Eddie Bush wrote: > Hi - I desperately need some info about mod_jk. I have managed to get > it set up fine in a http environment, and everything works fine. > Tomcat serves dynamic content. Apache serves static content. All > good. Now ... the next thing I want to do is handle http/https - this > has thrown me for a "loop" (hopefully not infinite!). > > Here are my requirements: > > Authenticate the user over https and have that authentication "stick" > over http. > Ensure that, when a user requests a https resource over http, the > server (Tomcat) will send a redirect to the same path over https. > Ensure that non-secure paths requested over https will redirect to http. > > From what I understand (and correct me if I am wrong - please!) this > should all be possible. I'm not scared to "get my hands dirty", but I > do not possess a single clue about how to acheive this. My "best > guess" at this point is that I can't do this with mod_jk, but I've > seen things that indicate to me that it _can_ be done with mod_jk. > > To have http/https - the way I understand it - I would have to have > two services. That would mean that the authentication would not be > shared over http/https - right? Many things can be done without > really caring much about having the session be the same over > http/https - but certain things cannot (that I see)! How do you all > do this? I know someone has to be doing it! > > I'm super-fuzzy on this, but I _have_ successfully implemented Tomcat > + Apache using mod_jk. If someone could be so kind as to ... show me > where I should RTFM or STFW ... or give me some "you know how to do > this - it's just like <insert comparison here>", I would be > supercalafragilisticexpialedociously grateful! > > Thanks in advance for even having taken the time to read this. > > Regards, > > Eddie Bush > > > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
