Thanks Maxim. It's working now. CONFIGURATION: one domain with one SSL Certificate. OM-Tomcat (/) + 2 other subsites (/001 /002) behind Apache Webserver. OM-Tomcat is served through Apache WebServer reverse proxy and the two subsites directly by the Apache webserver. The SSL Certificate is installed under the Apache Webserver, SSL is switched off in OM-Tomcat.
Maxim Solodovnik <solomax...@gmail.com> ezt írta (időpont: 2022. jan. 9., V, 15:55): > On Sun, 9 Jan 2022 at 00:43, jox joe <jox...@gmail.com> wrote: > > > > Thank you. I've read this article several times. > > >Now according to CSRF: > > >You need to modify conf/jee-container.xml and add following property > > ><property name="secure" value="true" /> > > >To <!-- Tomcat without SSL enabled --> block right before <property > name="connectionProperties"> > > >This should fix your issue > > > > jee-container.xml <-- This file is not available in OM6. > > > > this is true :) > I do remember I have answered this question before :) > (you can check mail-archives :)) > > this part in OM6 is: > conf/server.xml > > <Connector port="5080" scheme="https" secure="true" protocol="HTTP/1.1" > connectionTimeout="20000" > > NOTE 2 additional attributes: *scheme="https" secure="true"* > > > > > > > > -- > Best regards, > Maxim >
