Chuck, thank you. It's good approach, but wouldn't that mean that all
applications will be accessible through SSL as well? That's not desired
in my case. I have a monitoring application that I would like to access
remotely through SSL, but it is going to work with self-signed
certificate, though it shouldn't be used by regular apps. Is there other
solution?
On 13/12/2010 16:11, Caldarale, Charles R wrote:
From: Gennady Shumakher [mailto:gshumak...@gmail.com]
Subject: Secure specific web application with SSL in HTTP Tomcat
If Tomcat and all of the deployed web applications are
available through HTTP.
Is there a way to configure Tomcat to restrict the access
to specific web app to HTTPS only?
Read the servlet spec, in particular section 12.7. (Hint: look
for<transport-guarantee>.)
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you received
this in error, please contact the sender and delete the e-mail and its
attachments from all computers.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
