You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by "Brett W. McCoy" <bm...@chapelperilous.net> on 2001/03/08 21:23:18 UTC

SSLRequireSSL

I am using Apache + mod_ssl with Tomcat, and can't seem to get certain
directives to work with Tomcat files.

I have something like this:

<Directory "D:/dev/public_html/Login">
SSLRequireSSL
</Directory>

in my httpd.conf, within the 443 virtual host , but acessing the URL in
question without https:// still works, which it shouldn't.  It should be
denying access to non-SSL enabled connections and only allowing encrypted
connections.

I have mod_jk.conf included before all of my SSL stuff, but this doesn't
seem to matter.  Even putting my JKMount directives inside the virtual
host section doesn't make a difference, non-SSL connections are still
going through and not being denied.  Is there something in Tomcat I also
need to configure?

I should point out that I am not enabling SSL for the entire site, just
specific directories and files within the site.

-- Brett
				http://www.chapelperilous.net/~bmccoy/
------------------------------------------------------------------------
I don't do it for the money.
		-- Donald Trump, Art of the Deal


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, email: tomcat-user-help@jakarta.apache.org