Miguel Alcalde wrote:
You can run an apache server in the front. And then use mod_rewrite (for specific URLs) to redirect users to secure pages. The application (and Tomcat) doesn't need to know anything about security in this scenario.Mikolaj Rydzewski escribió:You don't have to worry about it. Read about redirectPort attribute at http://tomcat.apache.org/tomcat-5.5-doc/config/http.htmlThanks, mate. It solves 90% of our problems.But we still need to get tomcat ssl configuration inside a servlet. The reason: In our strange architecture (struts-flavour) a servlet is a wrapper for actions with states. Only some of these states have to be secured. Have anybody an idea how to get that information?
-- Mikolaj Rydzewski <[EMAIL PROTECTED]>
smime.p7s
Description: S/MIME Cryptographic Signature
