Hi,
I have Configured SSL in Tomcat 5.0.
I've changed web.xml to use SSL on the page /secure/ccinfo.jsp.
However, the links after this page are all SSL-enabled
Can I just make /secure/ccinfo.jsp SSL-enabled while others aren't.
This is the code i added in web.xml
<security-constraint>
<web-resource-collection>
<web-resource-name>Purchase</web-resource-name>
<url-pattern>/secure/*</url-pattern>
<http-method>GET</http-method>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
I read in a site that all subsequent URLs will use the HTTPS protocol unless explicitly overridden by using a URL defining the http: protocol. Is this the way it works?
Thanks in advance,
Vidya
I have Configured SSL in Tomcat 5.0.
I've changed web.xml to use SSL on the page /secure/ccinfo.jsp.
However, the links after this page are all SSL-enabled
Can I just make /secure/ccinfo.jsp SSL-enabled while others aren't.
This is the code i added in web.xml
<security-constraint>
<web-resource-collection>
<web-resource-name>Purchase</web-resource-name>
<url-pattern>/secure/*</url-pattern>
<http-method>GET</http-method>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
I read in a site that all subsequent URLs will use the HTTPS protocol unless explicitly overridden by using a URL defining the http: protocol. Is this the way it works?
Thanks in advance,
Vidya
