Thanks for the help getting my Tomcat running, it is accessable ONLY via JK2, ports 8080 and 8443 are closed. I have one minor problem to correct before I go live:
and
both work, I need to make sure certain servlets run ONLY over SSL.
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
doesn't seem to be working for me. I'm not sure I'm putting it in the right place. How can I block non-SSL access to servlets?
and
both work, I need to make sure certain servlets run ONLY over SSL.
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
doesn't seem to be working for me. I'm not sure I'm putting it in the right place. How can I block non-SSL access to servlets?