You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Lars Nielsen Lind <mo...@worldonline.dk> on 2003/04/29 17:58:03 UTC
Apache-Tomcat-mod_jk-SSL
Hi.
I can't access *.html files from my secure area - but I can access *.jsp
files?
What am I doing wrong?
Here is my configuration files - are there someone that wants to check
them out and comment?
----------
server.xml
----------
<Server port="8005" shutdown="SHUTDOWN" debug="0">
<Listener className="org.apache.ajp.tomcat4.config.ApacheConfig"
modJk="/usr/local/apache-2.0.45/modules/mod_jk.so" jkDebug="info"
workersConfig="/usr/local/jakarta-tomcat-4.1.24/conf/jk/workers.properties" jkLog="/usr/local/jakarta-tomcat-4.1.24/logs/mod_jk.log" />
<Service name="Tomcat-Standalone">
<Connector className="org.apache.ajp.tomcat4.Ajp13Connector"
port="8009" minProcessors="5" maxProcessors="75"
acceptCount="10" debug="0"/>
<Engine name="Standalone" defaultHost="192.168.1.201" debug="0">
<Logger className="org.apache.catalina.logger.FileLogger"
prefix="catalina_log." suffix=".txt"
timestamp="true"/>
<Host name="192.168.1.201" debug="0" appBase="webapps"
unpackWARs="true" autoDeploy="true">
<Listener className="org.apache.ajp.tomcat4.config.ApacheConfig"
append="true" />
<Valve className="org.apache.catalina.valves.AccessLogValve"
directory="logs" prefix="localhost_access_log."
suffix=".txt"
pattern="common" resolveHosts="false"/>
<Logger className="org.apache.catalina.logger.FileLogger"
directory="logs" prefix="localhost_log." suffix=".txt"
timestamp="true"/>
<!-- /usr/local/jakarta-tomcat-4.1.24/webapps/testapp -->
<Context path="" docBase="testapp" debug="0"/>
</Host>
</Engine>
</Service>
</Server>
------------------
workers.properties
------------------
workers.tomcat_home=/usr/local/jakarta-tomcat-4.1.24
workers.java_home=/usr/java/j2sdk1.4.1_02
ps=/
worker.list=worker1
worker.worker1.port=8009
worker.worker1.host=192.168.1.201
worker.worker1.type=ajp13
-------------------------------------
httpd.conf - SSL and VirtualHost part
-------------------------------------
<IfDefine SSL>
Listen 443
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
SSLPassPhraseDialog builtin
SSLSessionCache dbm:logs/ssl_scache
SSLSessionCacheTimeout 300
SSLMutex file:logs/ssl_mutex
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
<VirtualHost 192.168.1.201:80>
ServerName 192.168.1.201:80
ServerAdmin moonie@worldonline.dk
JkMount /*.jsp worker1
JkMount /servlet/* worker1
DocumentRoot "/usr/local/jakarta-tomcat-4.1.24/webapps/testapp"
SSLEngine off
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
<Directory "/usr/local/jakarta-tomcat-4.1.24/webapps/testapp">
Options -Indexes Includes FollowSymLinks
AllowOverride None
Order allow,deny
Allow from all
</Directory>
DirectoryIndex index.html
</VirtualHost>
<VirtualHost 192.168.1.201:443>
ServerName 192.168.1.201:443
ServerAdmin moonie@worldonline.dk
JkMount /*.jsp worker1
JkMount /servlet/* worker1
DocumentRoot "/usr/local/jakarta-tomcat-4.1.24/webapps/testapp/secure"
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /usr/local/apache-2.0.45/conf/ssl/192.168.1.201.crt
SSLCertificateKeyFile
/usr/local/apache-2.0.45/conf/ssl/192.168.1.201.key
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
<Directory "/usr/local/jakarta-tomcat-4.1.24/webapps/testapp">
Options -Indexes Includes FollowSymLinks
AllowOverride None
Order allow,deny
Allow from all
</Directory>
DirectoryIndex index.html
</VirtualHost>
Include
/usr/local/jakarta-tomcat-4.1.24/conf/auto/mod_jk.conf
</IfDefine>
Best regards,
Lars Nielsen Lind
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org