security-constraint, to not require SSL with Tomcat6 I am needing to enable SSL on an application hosted through Tomcat6 and I have added the following

Posted in: #Dns #Https #Security #UrlRewriting

I am needing to enable SSL on an application hosted through Tomcat6 and I have added the following to the tomcat web.xml:

<security-constraint>
<web-resource-collection>
<web-resource-name>Entire Application</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>

and setup the redirectPort as 443, in server.xml - this setup works fine.

I am needing to allow access to the application, without requiring SSL, when the app is accessed using a specific dns name.

For example:

the SSL certificate for the application is associated with the DNS name

xyz.applicationdomain.com

when the application is accessed with this name, a redirect occurs, and the URL changes to
xyz.applicationdomain.com
but when the application is accessed with

abc.applicationdomain.com, the application needs to be accessible without requiring SSL.

is it possible to implement this using another security-constraint definition?

10.01% popularity Vote Up Vote Down

: Anti aliasing problem I am auditioning fonts on google web fonts and one that I was discounting was Ubuntu because it looked a bit jagged ( screenshot below taken straight from google); however

@Michele947

Posted in: #Fonts #Graphics #WebsiteDesign

3 Comments

: What is happening to a domain with status PENDING DELETE as well as AUTORENEWPERIOD? A domain I once registered but gave away: Expiration Date:13-Mar-2013 14:39:45 UTC Sponsoring Registrar:Directi

@Michele947

Posted in: #DomainRegistration

1 Comments

: Which approach for big community (large number of members) but in small groups (2-4) persons? Started asking this: Another Question Thought that the idea of implementing this in a forum would

@Michele947

Posted in: #Community #CommunityManagement #WebApplications

1 Comments

: Effect of multiple backlinks with different anchor text from same site So if you took videos and photos for a website, would Photography and Videography by Company Name offer any SEO advantage

@Michele947

Posted in: #Backlinks #Seo

1 Comments

Login to post a comment!

1 Comments

Sorted by latest first Latest Oldest Best

@Deb1703797

NO, security constraints in web.xml only considers the context, not the domain. You would need handle this I would think with a reverse proxy solution usiong apache or similar. Two seperate virtual hosts would redirect to either the secure port 8443, or the insecure port 8080 of the tomcat container.

Each context in server.xml would define the appropriate porxyhost and port to keep urls consistnet.
wiki.customware.net/repository/display/GREENHOUSE/2009/06/13/Reverse+Proxy+with+Apache+mod_proxy

10% popularity Vote Up Vote Down

Feed

: DNS name/host-header specific url-pattern/security-constraint, to not require SSL with Tomcat6 I am needing to enable SSL on an application hosted through Tomcat6 and I have added the following

More posts by @Michele947

: Anti aliasing problem I am auditioning fonts on google web fonts and one that I was discounting was Ubuntu because it looked a bit jagged ( screenshot below taken straight from google); however

: What is happening to a domain with status PENDING DELETE as well as AUTORENEWPERIOD? A domain I once registered but gave away: Expiration Date:13-Mar-2013 14:39:45 UTC Sponsoring Registrar:Directi

: Which approach for big community (large number of members) but in small groups (2-4) persons? Started asking this: Another Question Thought that the idea of implementing this in a forum would

: Effect of multiple backlinks with different anchor text from same site So if you took videos and photos for a website, would Photography and Videography by Company Name offer any SEO advantage

Login to post a comment!

1 Comments

Back to top | Use Dark Theme