0 Replies Latest reply on Jan 26, 2006 9:14 AM by Colin Reid

    SSL implemented, but can use http OR https

    Colin Reid Newbie

      Hi,

      Ive successfully implemented SSL on our JBoss installation, although I've discovered we can access sites behind the SSL on both http and https.

      The entries in the server.xml file are:

      <!-- SSL/TLS Connector configuration using the admin devl guide keystore -->
       <Connector port="443" address="${jboss.bind.address}"
       maxThreads="100" strategy="ms" maxHttpHeaderSize="8192"
       emptySessionPath="true"
       scheme="https" secure="true" clientAuth="false"
       keystoreFile="${jboss.server.home.dir}/conf/ourdomain.com.key"
       keystorePass="ourpassword" sslProtocol = "TLS" />
       <!-- -->
      

      and the site is deployed as:

      <Host name="ourdomain" autoDeploy="false" deployOnStartup="false" deployXML="false">
       <Alias>www.ourdomain.com</Alias>
       <Alias>ourdomain.com</Alias>
       <Valve className="org.apache.catalina.valves.FastCommonAccessLogValve"
       prefix="ourdomain_access_log." suffix=".log"
       pattern="common" directory="${jboss.server.home.dir}/log/AccessLogs/ourdomain"
       resolveHosts="false" />
       </Host>


      I have changed the redirectPort on all the connectors in server.xml to 443 - could this be what is causing the problem?

      Many thanks for any help.

      colr__