I’m writing this down because it too me an age to figure out a way of doing this. I have a website which Tomcat is happily serving. Areas of the site require a secure connection so I’m using Spring security to require particular URLs to be accessed over HTTPS. It means that when I access http://example.org:8080/webapp/login, it’ll bump me to https://example.org:8443/webapp/login. Note: Tomcat is setup with the SSL connector and a self signed .keystore see (http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html).
I have two vhosts setup in Apache, one for the http://example.org and one for https://example.org. They are both using mod_proxy to ProxyPass and ProxyPassReverse requests to the appropriate Tomcat URL’s. The problem comes when switching to HTTPS from HTTP and vice versa. Ideally I wanted some sort of ProxyPassReverse declaration in my config for http://example.org what would change HTTP headers (that Spring sets) for https://example.org:8443/webapp into https://example.org. Except ProxyPassReverse doesn’t work like that.
Now, I realise I could simply not use Spring to manage which parts of the site should be accessed over HTTPS and which should not…and just setup Apache to redirect as appropriate. I don’t want to do that though, because that makes the task of adding these restrictions a deploy time task, rather than a development time task. I don’t want to risk someone forgetting to add new restrictions when deploying the webapp and I’d much rather the developer added these restrictions when they were working on the task and really thinking about where and when they are needed.
So, how do I solve the problem so that the app can manage its secure-ness and I can setup Apache once and forget about it? The answer is to ProxyPassReverse onto a “special” URL, which when accessed will redirect to the HTTPS (or HTTP) site. For example, if the HTTP site needed to redirect to the HTTPS site, I’d add rules like so to perform the redirect:
# Proxy a request (from the server) to switch to https onto a special URL "/2https/"
ProxyPassReverse /2https/ https://example.org:8443/webapp/
# When a client requests a URL prefixed with "/2https" map it onto the secure site
RewriteRule ^/2https/(.*)$ https://example.org/$1 [R,L]
…and you’d add something similar to the secure site Apache config. As long as I don’t mount any pages at /2http or /2https I should be ok. Note a couple of things:
- You’ll need “SSLProxyEngine on” and “RewriteEngine on” and obviously the appropriate Apache modules loaded for these commands.
- Because of the redirect between HTTP <-> HTTPS you won’t be able to POST data between them directly (I’m not sure why you’d NEED to though)
- Obviously you’ll need to setup Apache with an SSL certificate…but that is a different story
I should say a special thanks to this random site – from whence the idea actually came from. If anyone has any better ideas on how to do it I’d love to hear them. Please comment below.
zorivo union site – Smooth navigation and a clean layout provide a user-friendly experience.
Browse the trustline site – Pages load without delay and the information seems recently updated.
alliance project homepage – Professional design with navigation that guides users efficiently through the site.
курсовые под заказ курсовые под заказ .
купить курсовую работу купить курсовую работу .
где можно купить курсовую работу kupit-kursovuyu-42.ru .
UlvionHoldings Access – Clean and easy to navigate, modern design and approachable style.
помощь студентам курсовые kupit-kursovuyu-47.ru .
заказать дипломную работу в москве заказать дипломную работу в москве .
Xanero Direct – Browsing effortless, pages responsive, and completing orders was simple.
click here – Clear design, smooth interface, easy to read content quickly
cavaro pact info – Straightforward design makes following the content effortless.
заказать анализ сайта prodvizhenie-sajtov-v-moskve111.ru .
курсовая работа недорого курсовая работа недорого .
Resource portal – Clean design, easy browsing, and content is beginner-focused.
Korivo official page – Well-structured layout, smooth navigation, and content is practical and trustworthy.
seo продвижение и раскрутка сайта prodvizhenie-sajtov13.ru .
сео агентство сео агентство .
купить задание для студентов kupit-kursovuyu-43.ru .
курсовая работа купить москва kupit-kursovuyu-49.ru .
куплю курсовую работу kupit-kursovuyu-48.ru .
betting on sports online betting on sports online .
learnbusinessskillsonline – Excellent learning resources, business skills are explained clearly and practically.
VexaroPartners Project – Browsing was simple, services described realistically and without exaggeration.
Portfolio – Visual content is presented cleanly, giving a professional impression.
Gallery – Images are arranged cleanly, offering a smooth and appealing browsing experience.
zylavo capital site – Well-organized pages and fast performance provide a pleasant browsing experience.
Services – Well-organized content and fast-loading pages ensure smooth browsing.
Мультимедийный интегратор тут интеграция мультимедийных систем под ключ для офисов и объектов. Проектирование поставка монтаж и настройка аудио-видео видеостен LED переговорных и конференц-залов. Гарантия и сервис.
Support – Clear guidance, fast page loads, and information is helpful and well organized.
TrustedProConnections – Clear and helpful, advice supports building trustworthy partnerships.
seoservices.click – Pages loaded fast, images appeared sharp, and formatting stayed consistent.
rankhigher.click – Pages loaded fast, images appeared sharp, and formatting stayed consistent.
official bonding link – Quick loads and consistent performance give a solid browsing experience.
xelivo capital network – Professional styling paired with content that makes sense.
velon.click – Smooth and tidy interface with easy navigation and clear information
knowledge center – Platform makes acquiring new knowledge intuitive and fast.
ppcmanagement.click – Bookmarked this immediately, planning to revisit for updates and inspiration.
Financial platform – Fast navigation, clear pages, and information is easy to read and understand.
funnelbuilder.click – Overall, professional vibe here; trustworthy, polished, and pleasantly minimal throughout.
resource page – Lightweight and organized, content feels well-structured
Company homepage – Professional styling, easy movement between pages, and content feels authentic.
Explore the bond group – Discovered this by chance, the tone feels informative and relaxed.
Xeviro Online – Layout neat, browsing intuitive, and the site feels trustworthy.
Kryvox hub – Well-structured pages, rapid loading, and content is readable throughout.
zurix source – Clean presentation, clear text, and navigation feels natural and smooth
zylavo holdings site – Well-structured pages allow fast access to relevant information.
курсовая заказать недорого kupit-kursovuyu-44.ru .
Events – Event information is clear and easy to follow.
VexaroUnity Hub – Concept is solid, site communicates its mission clearly and responsibly.