On 29/09/2009 03:17, Crypto Sal wrote:
Miguel,
Do you have Tomcat serving up Port 80 traffic or is that Apache's httpd?
I suggest you have one web server handle both normal web traffic and SSL
traffic (if possible), since this page is a login page, you might want
to FORCE https on that page and not allow HTTP.
It would almost appear that you have Tomcat serving up port 80 traffic
> and Apache serving up SSL/TLS connections.
This is a confusing thing to say...
So if that were the case, use Tomcat to do the SSL as well and configure
> tomcat accordingly in the server.xml file.
Don't do that. There's no point in using HTTPD in front of Tomcat if
it's not doing any work.
Do keep in mind there is a difference between Tomcat and Apache (httpd).
Please clarify your setup for us.
@Miguel, the problem (from the URLs you supplied) is that Tomcat is not
processing the JSP content, HTTPD is serving it as a static file.
This is caused by a broken mod_jk*, (or mod_proxy config), AND the HTTPD
DocumentRoot being set to the same location as the Tomcat application
directory - which is both bad practice and a fairly serious security
problem.
(I've sent you a separate email demonstrating why this is so bad.)
You should not use the same directory to serve files from different
servers. Here's an example of how you could set it up:
For HTTPD:
/sites/fun.macneillgroup.com/httpdocs
/sites/fun.macneillgroup.com/httpdocs/images
/sites/fun.macneillgroup.com/httpdocs/styles
/sites/fun.macneillgroup.com/httpdocs/scripts
For Tomcat:
/sites/fun.macneillgroup.com/webapps
/sites/fun.macneillgroup.com/webapps/ROOT
/sites/fun.macneillgroup.com/webapps/focus
When you do this, the HTTPD SSL instance will stop serving the JSPs as
static files; it may stop serving them completely.
Then you will need help with your mod_jk set up. You'll need to set
that up for the :80 host and the :443 SSL host. Typically, when I do
this I use an include, so all of the config is in one file.
p
* Which are you using, mod_jk or mod_proxy? I've assumed mod_jk so far.
On 09/28/2009 01:47 PM, Miguel Ortiz wrote:
Jorge,
I have setup the SSL through Apache and Tomcat, if there is a
different procedure for mod_ssl, I will try that as well. The site
comes up fine when I access it without the https, however when I use
the https, all I see is the jsp script.
Miguel Ortiz
Network Engineer
x4818
wk: 954-331-4818
bbry: 954-649-1863
miguel.or...@macneillgroup.com
-----Original Message-----
From: Jorge Medina [mailto:jmed...@e-dialog.com]
Sent: Monday, September 28, 2009 10:55 AM
To: Tomcat Users List
Subject: RE: Apache/Tomcat with SSL
Also, in order to configure Apache with SSL you must have the module
mod_ssl
-----Original Message-----
From: Jorge Medina [mailto:jmed...@e-dialog.com]
Sent: Monday, September 28, 2009 10:40 AM
To: Tomcat Users List
Subject: RE: Apache/Tomcat with SSL
Hola Miguel,
did you set up SSL in Apache ? Or did you do it in Tomcat ? Or in both ?
I am assuming that you want Apache to be the exposed server, therefore
SSL must be configured in Apache. You must also have configured Apache
to forward the requests to Tomcat by using the Apache modules mod_jk
or mod_proxy
-Jorge
-----Original Message-----
From: Miguel Ortiz [mailto:miguel.or...@macneillgroup.com]
Sent: Monday, September 28, 2009 8:32 AM
To: users@tomcat.apache.org
Subject: Apache/Tomcat with SSL
I recently setup a SSL cert on our Apache/Tomcat server. When I load
our page, I can see the "lock" in my browser with all the SSL info,
but the page only loads as a the jsp script and not the full page. Is
there some configuration setting that I have missed. I can provide
snippets from the server.xml, httpd.conf, and ssl.conf. Thanks in
advance.
Miguel Ortiz
Network Engineer
x4818
wk: 954-331-4818
bbry: 954-649-1863
miguel.or...@macneillgroup.com
This email and any files transmitted with it are the confidential
property of Focus Holdings, LLC and its subsidiaries, and intended
solely for the use of the individual or entity to whom they are
addressed. If you are not the named addressee you should not
disseminate, distribute or copy this e-mail. Please notify the sender
immediately by e-mail if you have received this e-mail by mistake and
delete this e-mail from your system. If you are not the intended
recipient you are notified that disclosing, copying, distributing or
taking any action in reliance on the contents of this information is
strictly prohibited.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
No virus found in this incoming message.
Checked by AVG - www.avg.com
Version: 8.5.409 / Virus Database: 270.13.112/2390 - Release Date:
09/28/09 05:51:00
This email and any files transmitted with it are the confidential
property of Focus Holdings, LLC and its subsidiaries, and intended
solely for the use of the individual or entity to whom they are
addressed. If you are not the named addressee you should not
disseminate, distribute or copy this e-mail. Please notify the sender
immediately by e-mail if you have received this e-mail by mistake and
delete this e-mail from your system. If you are not the intended
recipient you are notified that disclosing, copying, distributing or
taking any action in reliance on the contents of this information is
strictly prohibited.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
