You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Haresh Gujarathi <ha...@emantratech.com> on 2002/05/01 11:40:02 UTC

securing JSP pages in Tomcat using Apache

Hi,

I am using Apache 1.3, Tomcat 3.2.1, modkj

I have a web application
..../webapps/testapp
this contains index file and certain JSPs

I have a folder under testapp as
..../webapps/testapp/admin


Now I want to secure the JSPs in the admin folder using SSL. But the users
can access the files in the folder testapp.
That is; users can access JSPs as
http://www.mydomain.com/testapp/abcd.jsp

https://www.mydomain.com/testapp/admin/admin.jsp

1. Is this possible?
2. If a folder is secured using SSL, does all the subfolders of that folder
automatically get secured?
3. Can SSL be enabled at page level?
for example;
http://www.mydomain.com/testapp/abcd.jsp  this page need not be secured.
https://www.mydomain.com/testapp/xyz.jsp  this page needs to be secured.

secectively applying SSL to pages in the same folder?


regards
Haresh