You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by da...@netvigator.com on 2003/05/27 10:50:24 UTC

tomcat/apache/mod_ssl

Hi,

The following is the content of my ssl.conf file:

IfDefine SSL>
Listen 443
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl    .crl
SSLPassPhraseDialog  builtin
SSLSessionCache         dbm:logs/ssl_scache
SSLSessionCacheTimeout  300
SSLMutex  file:logs/ssl_mutex
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
JkExtractSSL on
JkHTTPSIndicator HTTPS
JkSESSIONIndicator SSL_SESSION_ID
JkCIPHERIndicator SSL_CIPHER
JkCERTSIndicator SSL_CLIENT_CERT
JkWorkersFile /usr/local/tomcat/conf/jk/workers.properties
JkLogFile /usr/local/tomcat/logs/mod_jk.log
JkLogLevel warn
<VirtualHost _default_:443>
DocumentRoot "/usr/local/apache2/htdocs"
ServerName www.mydomain.net
ServerAdmin damar@mydomain.com
ErrorLog logs/error_log
TransferLog logs/access_log
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /usr/local/apache2/conf/ssl.crt/server.crt
SSLCertificateKeyFile /usr/local/apache2/conf/ssl.key/server.pem
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
    SSLOptions +StdEnvVars
</Files>
<Directory "/usr/local/apache2/cgi-bin">
    SSLOptions +StdEnvVars
</Directory>
SetEnvIf User-Agent ".*MSIE.*" \
         nokeepalive ssl-unclean-shutdown \
         downgrade-1.0 force-response-1.0

CustomLog logs/ssl_request_log \
          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"


Alias /CompDam "/usr/local/tomcat/webapps/CompDam"

kMount /CompDam/* ajp13
JkMount /CompDam/*.jpp ajp13

<Location "/CompDam/WEB-INF/">
</Location>

<Location "/CompDam/WEB-INF/">
        AllowOverride None
        Deny from all
</Location>

</VirtualHost>

</IfDefine>

------------ end of ssl.conf -------------------
I have include this in httpd.conf with:

	<IfModule mod_ssl.c>
    		Include /usr/local/apache2/conf/ssl.conf
	</IfModule>

With the above, I can access my servlet, say main, with:
https://myhost.com/CompDam/main, but I can not access that with:
http://myhost.com/CompDam/main, ie it is only working in SSL, but not in
ordinary mode.

What do I have to do to make both ssl and plain mode works with Apache? 

Any pointers would be highly appreciated,and my apology for lengthy message.

Damar




---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org