Is there a way to configure mod_jk2 to check the full URL and/or the port the client uses to connect to the apache server?
The problem I'm having is this:
I have three webapps: "public" "authorized" "secure"
I have three apache virtual servers: "http://www.foo.bar"; (HTTP - non-encrypted port 80) "https://www.foo.bar"; (HTTPS - SSL-encrypted port 443) "https://secure.foo.bar"; (HTTPS - SSL with client certs port 443)
Everything works fine, almost (apache talks to Tomcat and Tomcat serves up my servlets):
Example:
"http://www.foo.bar/public/servlet/HappyWebApp"; "https://www.foo.bar/authorized/servlet/NotForEverybodyWebApp"; "https://secure.foo.bar/secure/servlet/DoubleSecretProbationWebApp";
But, I think what is happening is because the first and second examples share the same URL (minus the 'https' and 443 instead of port 80), JK2, doesn't distinguis between them, and after some security checking, I found I can do this:
"http://www.foo.bar/authorized/servlet/NotForEverybodyWebApp";
NOT GOOD!!!!!
conversely,
"https://www.foo.bar/public/servlet/HappyWebApp";
will serve up a public webapp.
Anything to the third pairing works because it is 'secure.foo.bar' and thus is a different URL (at least I THINK that is what is going on). I get a "URL' cannot be found" if I try to jump to a a secure webapp from http://www* or https://www*, and vice versa. This is how it should be for all of them.
My workers2.properties looks like this: (snip) [channel.socket:localhost:8009] port=8009 host=localhost
[ajp13:localhost:8009] channel=channel.socket:localhost:8009
[uri:www.foo.bar/public/servlet/*] group=ajp13:localhost:8009
[uri:www.foo.bar/authorized/servlet/*] group=ajp13:localhost:8009
[uri:secure.foo.bar/secure/servlet/*] group=ajp13:localhost:8009 (end)
And the directives I use in httpd.conf and ssl.conf (apache2) are:
In the 'MAIN' server configuration: <Location "/public/servlet/*"> JKUriSet worker ajp13:localhost:8009 </Location>
Virtual Host "authorized": <Location /authorized/servlet/*> JKUriSet worker ajp13:localhost:8009 </Location>
And Virtual Host "secure": <Location /secure/servlet/*> JKUriSet worker ajp13:localhost:8009 </Location>
Any thoughts, advice, directions, instructions, or implements of destruction on this matter would be greatly appreciated.
Thanks, Duane Winner [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
