You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by da...@netvigator.com on 2003/05/27 10:50:24 UTC
tomcat/apache/mod_ssl
Hi,
The following is the content of my ssl.conf file:
IfDefine SSL>
Listen 443
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
SSLPassPhraseDialog builtin
SSLSessionCache dbm:logs/ssl_scache
SSLSessionCacheTimeout 300
SSLMutex file:logs/ssl_mutex
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
JkExtractSSL on
JkHTTPSIndicator HTTPS
JkSESSIONIndicator SSL_SESSION_ID
JkCIPHERIndicator SSL_CIPHER
JkCERTSIndicator SSL_CLIENT_CERT
JkWorkersFile /usr/local/tomcat/conf/jk/workers.properties
JkLogFile /usr/local/tomcat/logs/mod_jk.log
JkLogLevel warn
<VirtualHost _default_:443>
DocumentRoot "/usr/local/apache2/htdocs"
ServerName www.mydomain.net
ServerAdmin damar@mydomain.com
ErrorLog logs/error_log
TransferLog logs/access_log
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /usr/local/apache2/conf/ssl.crt/server.crt
SSLCertificateKeyFile /usr/local/apache2/conf/ssl.key/server.pem
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</Files>
<Directory "/usr/local/apache2/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
Alias /CompDam "/usr/local/tomcat/webapps/CompDam"
kMount /CompDam/* ajp13
JkMount /CompDam/*.jpp ajp13
<Location "/CompDam/WEB-INF/">
</Location>
<Location "/CompDam/WEB-INF/">
AllowOverride None
Deny from all
</Location>
</VirtualHost>
</IfDefine>
------------ end of ssl.conf -------------------
I have include this in httpd.conf with:
<IfModule mod_ssl.c>
Include /usr/local/apache2/conf/ssl.conf
</IfModule>
With the above, I can access my servlet, say main, with:
https://myhost.com/CompDam/main, but I can not access that with:
http://myhost.com/CompDam/main, ie it is only working in SSL, but not in
ordinary mode.
What do I have to do to make both ssl and plain mode works with Apache?
Any pointers would be highly appreciated,and my apology for lengthy message.
Damar
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org