I’m writing this down because it too me an age to figure out a way of doing this. I have a website which Tomcat is happily serving. Areas of the site require a secure connection so I’m using Spring security to require particular URLs to be accessed over HTTPS. It means that when I access http://example.org:8080/webapp/login, it’ll bump me to https://example.org:8443/webapp/login. Note: Tomcat is setup with the SSL connector and a self signed .keystore see (http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html).
I have two vhosts setup in Apache, one for the http://example.org and one for https://example.org. They are both using mod_proxy to ProxyPass and ProxyPassReverse requests to the appropriate Tomcat URL’s. The problem comes when switching to HTTPS from HTTP and vice versa. Ideally I wanted some sort of ProxyPassReverse declaration in my config for http://example.org what would change HTTP headers (that Spring sets) for https://example.org:8443/webapp into https://example.org. Except ProxyPassReverse doesn’t work like that.
Now, I realise I could simply not use Spring to manage which parts of the site should be accessed over HTTPS and which should not…and just setup Apache to redirect as appropriate. I don’t want to do that though, because that makes the task of adding these restrictions a deploy time task, rather than a development time task. I don’t want to risk someone forgetting to add new restrictions when deploying the webapp and I’d much rather the developer added these restrictions when they were working on the task and really thinking about where and when they are needed.
So, how do I solve the problem so that the app can manage its secure-ness and I can setup Apache once and forget about it? The answer is to ProxyPassReverse onto a “special” URL, which when accessed will redirect to the HTTPS (or HTTP) site. For example, if the HTTP site needed to redirect to the HTTPS site, I’d add rules like so to perform the redirect:
# Proxy a request (from the server) to switch to https onto a special URL "/2https/"
ProxyPassReverse /2https/ https://example.org:8443/webapp/
# When a client requests a URL prefixed with "/2https" map it onto the secure site
RewriteRule ^/2https/(.*)$ https://example.org/$1 [R,L]
…and you’d add something similar to the secure site Apache config. As long as I don’t mount any pages at /2http or /2https I should be ok. Note a couple of things:
- You’ll need “SSLProxyEngine on” and “RewriteEngine on” and obviously the appropriate Apache modules loaded for these commands.
- Because of the redirect between HTTP <-> HTTPS you won’t be able to POST data between them directly (I’m not sure why you’d NEED to though)
- Obviously you’ll need to setup Apache with an SSL certificate…but that is a different story
I should say a special thanks to this random site – from whence the idea actually came from. If anyone has any better ideas on how to do it I’d love to hear them. Please comment below.
reader-friendly insight hub – Practical tips promote clear thinking to guide next steps effectively.
action insight hub – Demonstrates that continuous action is key to sustaining project momentum.
Exodus Alliance Resources – Informative and intuitive, site layout makes learning easy.
Death Ray Gallery – Dynamic and creative, navigation feels natural and information is clear.
T-Walls Guide – Easy-to-follow navigation, content presents historical events effectively.
modern thought path – Ideas are presented clearly and flow naturally.
practical action page – Demonstrates that focusing attention works better than forcing energy.
Sparxcle Studio Online – Clean, modern layout, browsing information feels effortless and clear.
The Cranberry Spot – Clear layout, browsing hours and menu is simple and enjoyable.
KF Hub – Clear and lively site, planning your visit is straightforward.
insightful progress page – Demonstrates practical methods for keeping projects moving with clarity.
momentum planning guide – Shows that intelligent pacing helps achieve consistent forward results.
Ros for Change – Clear presentation, content communicates goals effectively.
Quint Tatro Projects – Well-structured layout, all work samples are accessible and clear.
etiquette basics – Easy to follow, suggestions are practical and friendly.
intuitive results page – Shows that concentration and intent lead to stronger, repeatable outcomes.
Fearless Food RD – Excellent nutrition advice, tips are clear and easy to incorporate today.
Explore Simons Cider – Easy-to-browse site, cider varieties are shown clearly and invitingly.
action oriented guide – Easy-to-follow content motivates deliberate steps.
forward idea strategy – The content strikes a good balance between inspiration and practicality.
Gin Lovers Corner – Stylish site design, makes exploring products simple and enjoyable.
strategic action page – Demonstrates how taking steps forward naturally makes room for opportunities.
Продажа тяговых ab-resurs.ru аккумуляторных батарей для вилочных погрузчиков и штабелеров. Надёжные решения для стабильной работы складской техники: большой выбор АКБ профессиональный подбор по параметрам консультации специалистов гарантия и оперативная поставка для складов и производств по всей России
Read MDC Jealous – Interesting takes, layout is clean and exploration is effortless.
Nightmare Party – Fun spooky design, navigation is straightforward and enjoyable.
Kim’s Vision – Clean and organized, navigation is intuitive and content is accessible.
Creative Reuse Solutions – Well-structured pages, makes learning about repurposing smooth and easy.
signalshapesdirection.click – Clear and focused message, emphasizes the importance of purposeful direction.
Malton Horse Racing – Clear and engaging, navigating the event information is hassle-free.
practical action route – The ideas transition well from one to the next.
Guitar Legends Online – Attractive and clear, browsing items feels easy and natural.
Maggie Lindemann Online Shop – Clean and professional design, shopping is simple and enjoyable.
TAHWLA Activities – Informative content, pages are organized for quick and easy access.
Missing Children Fundraiser – Easy navigation, site encourages engagement with minimal effort.
alix online portfolio – Content flows naturally, easy to explore and visually appealing.
Explore Asterix Films – Playful and informative, visitors can easily find movie details.
Janet Tampa Campaign – Informative content, navigation is intuitive and details are clear.
purposeful progress click – Easy to follow, encourages mindful decision-making.
Zakk Hub – Smooth navigation and lively presentation make the site enjoyable.
TAHWLA Community Hub – Clear organization, resources are accessible and simple to navigate.
фен купить дайсон фен купить дайсон .
стайлер для волос дайсон с насадками официальный сайт купить цен… стайлер для волос дайсон с насадками официальный сайт купить цен… .
дайсон официальный сайт фен цена fen-dn-kupit-13.ru .
цена стайлер дайсон для волос с насадками официальный сайт купит… цена стайлер дайсон для волос с насадками официальный сайт купит… .
Islington Creative District – Modern layout and clear navigation, making it simple to explore shops and happenings.
дайсон фен купить в москве дайсон фен купить в москве .
colossal heart blog – Inspiring content with clear layout, ideas are easy to follow.
пылесосы для дома дайсон купить pylesos-dn-1.ru .
Продажа тяговых faamru.com аккумуляторных батарей для вилочных погрузчиков ричтраков электротележек и штабелеров. Решения для интенсивной складской работы: стабильная мощность долгий ресурс надёжная работа в сменном режиме помощь с подбором АКБ по параметрам техники и оперативная поставка под задачу
innovative ideas page – Sparks inspiration and helps sustain momentum in daily tasks.