> From: Joe Hansen [mailto:joe.hansen...@gmail.com] > Subject: Re: Help with security-constraint in web.xml > > You were saying that I should handle the forced HTTPS redirection of > certain pages on the httpd end, right?
No, I said you could handle the SSL encryption/decryption in httpd; the redirection still has to occur by Tomcat recognizing a reference to a confidential resource. As far as how to do so, you'll have to search the archives and the httpd docs. You will likely need two AJP <Connector> elements, one for secure traffic and one for normal. If ultimate performance is not an issue, leave what you've got alone. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
