Secure and development mode

["squallmat ." <sq...@gmail.com>]

Hello,

I launch my webapp that I'm developping in development mode, I try to go on
my "Login" page taht has "@Secure" annotation. I put this in my development
mode configuration :
*configuration.add(SymbolConstants.SECURE_ENABLED, false);*

But when i go to the login page it redirects me to an https page and then
doesn't display my page :

ERR_SSL_PROTOCOL_ERROR.
You need a certificate etc....


Isn't the configuration line that I added for the dev mode dedicated to not
honor @Secure annotations ?

Re: Secure and development mode

[Geoff Callender <ge...@gmail.com>]

You're right, so that result is very odd.

As an aside... Rather than hard-coding this into your app, can I suggest you set this property at runtime to suit your environment.

	-Dtapestry.secure-enabled=false

That way in your IDE you can set it to true or false as you see fit, and in UAT and production you can set it to true once you have certificates etc. sorted out, without any change to the app. 

By that same philosophy, I think all environment-specific settings should be set outside of the app. This includes things like:

	-Dtapestry.production-mode=false
	-Dtapestry.compress-whitespace=false
	-Dtapestry.hmac-passphrase=xyz
	-Dupload.filesize-max=123456
	-Dhibernate.hbm2ddl.auto=validate

IMHO, it will make your life much easier. 

Cheers,

Geoff

On 4 Jul 2014, at 7:24 pm, squallmat . <sq...@gmail.com> wrote:

> Hello,
> 
> I launch my webapp that I'm developping in development mode, I try to go on
> my "Login" page taht has "@Secure" annotation. I put this in my development
> mode configuration :
> *configuration.add(SymbolConstants.SECURE_ENABLED, false);*
> 
> But when i go to the login page it redirects me to an https page and then
> doesn't display my page :
> 
> ERR_SSL_PROTOCOL_ERROR.
> You need a certificate etc....
> 
> 
> Isn't the configuration line that I added for the dev mode dedicated to not
> honor @Secure annotations ?