OK, thanks.
If I remove Tomcat from the equation, I can get HTTPS to work with Apache but
when I try to start Tomcat and proxy the HTTPS request to Tomcat, it fails.
So, enabling HTTPS on Tomcat 8443 like the following still fails:
<Connector port="8443" minSpareThreads="5" maxSpareThreads="75"
proxyName="local3" enableLookups="true"
disableUploadTimeout="true" acceptCount="100" maxThreads="200"
scheme="https" secure="true" SSLEnabled="true"
SSLCertificateFile="/usr/local/apache2/conf/ssl.key/local3.crt"
SSLCertificateKeyFile="/usr/local/apache2/conf/ssl.key/server.key"
clientAuth="false" sslProtocol="TLS"/>
> Date: Mon, 8 Dec 2008 15:53:04 +0100> From: [EMAIL PROTECTED]> To:
> users@tomcat.apache.org> Subject: Re: SSL/Apache and Proxy> > Your
> configuration doesn't look like you are speaking HTTPS on Tomcat> port 8443,
> but your Apache error looks like you configured httpd to> proxy to an HTTPS
> port. So either enable HTTPS on Tomcat 8443 or tell> Apache to talk HTTP to
> the backend. See also> >
> http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html> > Regards,> > Rainer>
> > > Doctor Khumalo schrieb:> > Anyone know anything about this or will my
> post be ignored?> > > > > > > >> From: [EMAIL PROTECTED]> >> To:
> users@tomcat.apache.org> >> Subject: RE: SSL/Apache and Proxy> >> Date: Fri,
> 5 Dec 2008 14:18:12 +0000> >>> >>> >> Here is my server.xml config.> >>> >> I
> can see the main localhost but whenever I try to type https://local3, it
> gives me a 503 Error> >>> >>> >> ############################> >>> >>> >>> >>
> <?xml> >> version='1.0' encoding='utf-8'?>> >>> >> <Server> >> port="8005"
> shutdown="SHUTDOWN">> >>> >> <Listener> >>
> className="org.apache.catalina.core.AprLifecycleListener"> >> SSLEngine="on"
> />> >>> >> <Listener> >> className="org.apache.catalina.core.JasperListener"
> />> >>> >> <Listener> >>
> className="org.apache.catalina.mbeans.ServerLifecycleListener" />> >>> >>
> <Listener> >>
> className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener"> >>
> />> >>> >> <GlobalNamingResources>> >>> >> <Resource name="UserDatabase"> >>
> auth="Container"> >>> >> type="org.apache.catalina.UserDatabase"> >>> >>
> description="User database> >> that can be updated and saved"> >>> >> > >>
> factory="org.apache.catalina.users.MemoryUserDatabaseFactory"> >>> >> > >>
> pathname="conf/tomcat-users.xml" />> >>> >> </GlobalNamingResources>> >>> >>
> <Service name="Catalina">> >>> >> <Connector port="80"> >>
> protocol="HTTP/1.1"> >>> >> > >> connectionTimeout="20000"> >>> >>
> redirectPort="8443"> >> />> >>> >> > >>> >> <!-- Define a SSL HTTP/1.1
> Connector on> >> port 8443> >>> >> This connector uses the JSSE
> configuration,> >> when using APR, the> >>> >> connector should be using the
> OpenSSL> >> style configuration> >>> >> described in the APR documentation>
> >> -->> >>> >> > >>> >> <Connector port="8443"> >> proxyPort="443"
> proxyName="local3" />> >>> >> > >>> >> <Connector port="8009"> >>
> protocol="AJP/1.3" redirectPort="8443" />> >>> >> <Engine name="Catalina"> >>
> defaultHost="localhost">> >>> >> <Realm> >>
> className="org.apache.catalina.realm.UserDatabaseRealm"> >>> >> > >>
> resourceName="UserDatabase"/>> >>> >> > >>> >> <Host name="localhost"> >>
> appBase="webapps"> >>> >> unpackWARs="true"> >> autoDeploy="true"> >>> >>
> xmlValidation="false"> >> xmlNamespaceAware="false">> >>> >> > >>> >>
> </Host>> >>> >> > >>> >> <Host name="local2"> >> debug="1"
> appBase="webapps/local2"> >> unpackWARs="true">> >>> >> <Logger> >>
> className="org.apache.catalina.logger.FileLogger"> >> directory="logs"> >>>
> >> prefix="projects."> >> suffix=".txt" timestamp="true"/>> >>> >> <Context
> path=""> >> docBase="" debug="1" reloadable="true"> >> crossContext="true"
> />> >>> >> <Alias>local2</Alias>> >>> >> </Host>> >>> >> > >>> >> <Host
> name="local3"> >> debug="1" appBase="webapps/local3”> >> unpackWARs="true">>
> >>> >> <Logger> >> className="org.apache.catalina.logger.FileLogger"> >>
> directory="logs"> >>> >> prefix="projects."> >> suffix=".txt"
> timestamp="true"/>> >>> >> <Context path=""> >> docBase="" debug="1"
> reloadable="true"> >> crossContext="true" />> >>> >> <Alias>local3</Alias>>
> >>> >> </Host>> >>> >> > >>> >> </Engine>> >>> >> </Service>> >>> >>
> </Server>> >>> >> ######################################> >>> >>> >>> From:
> [EMAIL PROTECTED]> >>> To: users@tomcat.apache.org> >>> Subject: SSL/Apache
> and Proxy> >>> Date: Fri, 5 Dec 2008 02:31:34 +0000> >>>> >>>> >>> How do I
> configure server.xml on Tomcat? I have> >>> configured SSL through Apache and
> the proxy part works, however, I get> >>> this error in the ssl log > >>>>
> >>>> >>> [Thu Dec 04 15:06:12 2008] [error] (111)Connection refused: proxy:
> HTTPS: attempt to connect to 165.112.28.126:8443 (localhost) failed> >>> [Thu
> Dec 04 15:06:12 2008] [error] ap_proxy_connect_backend disabling worker for
> (localhost)> >
> ---------------------------------------------------------------------> To
> unsubscribe, e-mail: [EMAIL PROTECTED]> For additional commands, e-mail:
> [EMAIL PROTECTED]>
_________________________________________________________________
Send e-mail faster without improving your typing skills.
http://windowslive.com/Explore/hotmail?ocid=TXT_TAGLM_WL_hotmail_acq_speed_122008
