-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Konstantin,
On 5/31/12 3:30 PM, Konstantin Kolinko wrote: > 2012/5/31 Timothy J Schumacher <tim.schumac...@colorado.edu>: >> Hi, >> >> We are using Apache Tomcat 6.0.35 >> >> with >> >> # java -version java version "1.6.0_30" Java(TM) SE Runtime >> Environment (build 1.6.0_30-b12) Java HotSpot(TM) Client VM >> (build 20.5-b03, mixed mode, sharing) >> >> in redhat linux. >> >> I am wondering if there is a way to use transport CONFIDENTIAL >> for all hosts that are not localhost? I am guessing the servlet >> spec does not allow this, it seems to be all or none in the >> web.xml config. Perhaps there is a way configure transport NONE >> in web.xml and then manually configure a valve/filter in >> context.xml that would enforce CONFIDENTIAL to all remote hosts >> but let localhost pass without redirects to port 443? >> >> Any ideas are appreciated! >> > > <Connector ... address="127.0.0.1" secure="true" /> > > It will 1. Listen on localhost only. 2. Be treated by Tomcat as if > it were an HTTPS connection. One thing you left out: at this point, you can use a CONFIDENTIAL <transport-guarantee> in web.xml and you won't /require/ HTTPS from localhost. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/H74oACgkQ9CaO5/Lv0PBiZACgv6HdgvpKvg3jDagtPM9Y+YzV 89QAn3HxtJogIYlZHn3tNqPOuL8fIxXE =l4AD -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
