What a shame - I would have thought this a common requirement. I want to protect the admin password, but once logged in, there is a lot of data to process, and it isn't very sensitive, so it doesn't make sense to encrypt it.
So I just have to scrap the declarative method, and do it programmatically? John On 29/03/07, Mark Thomas <[EMAIL PROTECTED]> wrote:
John Pedersen wrote: > I have been able to get all the admin pages running on https, but I > want just the login page on https, and the actual admin pages using > http. > > Can anyone suggest how to do this. Here is what I have in my web.xml ( > this setup doesn't use https at all ): Without modifying the code for the admin webapp, you can't do this. Mark
I tried using a filter on the login pages to switch to https, but it didn't forward correctly after logging in - I think the login data may have been lost with the redirect --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
