I have not tested this, but wanted to make sure before I do all the
necesary changes.
I have apache in front of tomcat, apache handles the ssl
communication... I need to make sure that some stuff happens only via
ssl, and i had a filter for that. But i was recommended to use a
security constranint in tomcat instead. Will this work having apache on
top of tomcat?
Also. I only have apache + tomcat becouse when I enabled SSL to tomcat
stand alone, whenever switching to ssl, i would not be able to access
all my session objects created before the switch. Is there a way to
avoid that? If is i would just remove apache from the picture. Al my
static content needs to come from tomcat anyway.
Also, is there a way to read the ip address of the requesting user if
apache is the front to tomcat?
I realize some of this are different topics, but have to do with the
same stuff...
Thanks to all in advance!
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
Hello Alexander, i know tc can enable/disable dns lookups on requests (i'm not sure if this is what u r looking 4). a dns resolver can do reverse lookups but getting the ip i'm not sure if there is anyway to do this from within tc. all i can say is the "standard" config as laid down by apache and tc works 4 me. i have several servlets and jsp's running on 4 virtual hosts all ssl capable depending on the "webapp" deployed and the user/role defined in my JDBCRealm. everything runs pretty much "out-of-the-box" config. all my tc ssl requests go through: https://localhost:8443/<webapp>, all my cgi-bin requests go through htts://localhost:443/cgi-bin/<someexec> and all other traffic routes as: port 80 or 8080 as expected. removing apache is not advisable. apache has many directives that r very usefull as user access controls. also, u need to impart more info on ur environment and what u plan to do to give the gurus on this ml a better picture. if u plan to operate on the public wire much more consideration will need to be given b4 u expose ports: 80, 8080, 443, 8443 etc. hope this helps, david.
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
