I’m writing this down because it too me an age to figure out a way of doing this. I have a website which Tomcat is happily serving. Areas of the site require a secure connection so I’m using Spring security to require particular URLs to be accessed over HTTPS. It means that when I access http://example.org:8080/webapp/login, it’ll bump me to https://example.org:8443/webapp/login. Note: Tomcat is setup with the SSL connector and a self signed .keystore see (http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html).
I have two vhosts setup in Apache, one for the http://example.org and one for https://example.org. They are both using mod_proxy to ProxyPass and ProxyPassReverse requests to the appropriate Tomcat URL’s. The problem comes when switching to HTTPS from HTTP and vice versa. Ideally I wanted some sort of ProxyPassReverse declaration in my config for http://example.org what would change HTTP headers (that Spring sets) for https://example.org:8443/webapp into https://example.org. Except ProxyPassReverse doesn’t work like that.
Now, I realise I could simply not use Spring to manage which parts of the site should be accessed over HTTPS and which should not…and just setup Apache to redirect as appropriate. I don’t want to do that though, because that makes the task of adding these restrictions a deploy time task, rather than a development time task. I don’t want to risk someone forgetting to add new restrictions when deploying the webapp and I’d much rather the developer added these restrictions when they were working on the task and really thinking about where and when they are needed.
So, how do I solve the problem so that the app can manage its secure-ness and I can setup Apache once and forget about it? The answer is to ProxyPassReverse onto a “special” URL, which when accessed will redirect to the HTTPS (or HTTP) site. For example, if the HTTP site needed to redirect to the HTTPS site, I’d add rules like so to perform the redirect:
# Proxy a request (from the server) to switch to https onto a special URL "/2https/"
ProxyPassReverse /2https/ https://example.org:8443/webapp/
# When a client requests a URL prefixed with "/2https" map it onto the secure site
RewriteRule ^/2https/(.*)$ https://example.org/$1 [R,L]
…and you’d add something similar to the secure site Apache config. As long as I don’t mount any pages at /2http or /2https I should be ok. Note a couple of things:
- You’ll need “SSLProxyEngine on” and “RewriteEngine on” and obviously the appropriate Apache modules loaded for these commands.
- Because of the redirect between HTTP <-> HTTPS you won’t be able to POST data between them directly (I’m not sure why you’d NEED to though)
- Obviously you’ll need to setup Apache with an SSL certificate…but that is a different story
I should say a special thanks to this random site – from whence the idea actually came from. If anyone has any better ideas on how to do it I’d love to hear them. Please comment below.
End-to-end corporate setup uae: company formation trade licence corporate documentation visa processing bank account assistance and compliance checks. We streamline incorporation and help establish a strong operational foundation in the UAE.
Set up a holding company in uae with full legal and corporate support. We help select the right jurisdiction prepare documents register the entity coordinate banking and ensure compliance with substance tax and reporting rules for international groups.
Launch your fund setup uae with end-to-end support: structuring legal documentation licensing AML/KYC compliance corporate setup and administration. We help create flexible investment vehicles for global investors and family wealth platforms.
Comprehensive family office setup uae: from choosing the right jurisdiction and legal structure to incorporation banking policies reporting and ongoing administration. Tailored solutions for families consolidating wealth protecting assets and planning succession.
Need legalization of documents for uae? We manage the entire process — review notarisation ministry approvals embassy attestation and translation. Suitable for business setup visas employment education and property transactions. Efficient and hassle-free.
Need a poa dubai? We draft POA documents organise notary appointments handle MOFA attestation embassy legalisation and certified translations. Ideal for delegating authority for banking business real estate and legal procedures.
Need a uae will for expats? We help structure inheritances appoint executors and guardians cover local and foreign assets and prepare documents in line with UAE requirements. Step-by-step guidance from first consultation to registration and safe storage of your will.
Open a brokerage account uae with full support. We review your goals recommend regulated platforms guide you through compliance handle documentation and assist with activation. Ideal for stock ETF bond and multi-asset trading from a trusted jurisdiction.
Complete uae work visa support: from eligibility check and document preparation to work permit approval medical tests and residence visa issuance. Ideal for professionals moving to Dubai Abu Dhabi and other emirates for long-term employment.
Авиабилеты в Китай https://chinaavia.com по выгодным ценам: удобный поиск рейсов сравнение тарифов прямые и стыковочные перелёты актуальные расписания. Бронируйте билеты в Пекин Шанхай Гуанчжоу и другие города онлайн. Надёжная оплата и мгновенная выдача электронного билета.
High-quality supplier accounts shop is happy to offer instant access to buy premium accounts suitable for business. The pride of our service is the availability of an in-depth wiki section where you can find secret tutorials about lead generation. Discover how to warm up accounts safely and how to avoid bans while running Facebook TikTok or Google. The shop contains pages for FB Insta Telegram for all needs: from freshly registered up to aged business managers with cookies.
Professional website marketplace accounts excitedly introduce direct access to purchase valid accounts suitable for business. What sets us apart of this platform is the availability of an exclusive knowledge base where you can find secret strategies about traffic arbitrage. We cover methods to manage ads securely and strategies for bypassing blocks while running ad platforms. Purchasing from us you receive not only working goods but also responsive customer service replacement warranties plus affordable rates on the market.