TechQA.

Tomcat https redirect (security-constraint) for different host

885 views Asked by At

I am trying to redirect the calls from http to https so:

In my server.xml I have two host:

<Host name="localhost"  appBase="webapps"
        unpackWARs="true" autoDeploy="true">
 ...
  </Host>
  <Host name="other.name" appBase="/srv/webapp" 
        unpackWARs="true" autoDeploy="true">
  ...
  </Host>

And I added on /etc/tomcat7/web.xml:

<security-constraint>
    <web-resource-collection>
        <web-resource-name>Protected Context</web-resource-name>
        <url-pattern>/*</url-pattern>
    </web-resource-collection>
   <user-data-constraint>
       <transport-guarantee>CONFIDENTIAL</transport-guarantee>
   </user-data-constraint>
 </security-constraint>

So all request that are going to the localhost host are being redirect to https, however the requests that are going to other.name are not being redirect.

What I want is only the request that are going to other.name be redirect to https, how can I do that?

I tried to put 

<url-pattern>other.name/*</url-pattern>

but didn't work. Any suggestion?

tomcat https security-constraint
Original Q&A
1

There are 1 answers

1
gomes On

I removed the <security-constraint> from /etc/tomcat7/web.xml and added to the WEB-INF/web.xml of my web application.

Related Questions in TOMCAT

Related Questions in HTTPS

Related Questions in SECURITY-CONSTRAINT

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions