'[JBoss-user] [Tomcat, HTTPD, Servlets & JSP] - AJP, Apache, Tomcat SSL question'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       jboss-user
Subject:    [JBoss-user] [Tomcat, HTTPD, Servlets & JSP] - AJP, Apache, Tomcat SSL question
From:       acxsjones <do-not-reply () jboss ! com>
Date:       2006-05-31 20:44:01
Message-ID: 2731111.1149108241889.JavaMail.jboss () colo-br-02 ! atl ! jboss ! com
[Download RAW message or body]

I was doing research on AJP to get an apache server in our DMZ talking to \
JBoss/Tomcat in our internal network.  We have had this going but need it over SSL. 

I came across an interesting item when reading about AJP 1.3 protocol

anonymous wrote : ?According to email from Gal Shachor to the jakarta-dev mailing \
list, the original goals of JK (and thus ajp13) were to extend mod_jserv and ajp12 by \
(I am only including the goals which relate to communication between the web server \
and the servlet container):   | 
  |  ·         Increasing performance (speed, specifically). 
  | 
  |  ·         Adding support for SSL, so that isSecure() and getScheme() will \
function correctly within the servlet container. The client certificates and cipher \
suite will be available to servlets as request attributes. ?  | 

I then looked at the jbossweb.sar\server.xml file

  | <!-- A AJP 1.3 Connector on port 8009 -->
  |       <Connector port="8009" address="${jboss.bind.address}"
  |          emptySessionPath="true" enableLookups="false" redirectPort="8443" 
  |          protocol="AJP/1.3"/>
  | 
  |       <!-- SSL/TLS Connector configuration using the admin devl guide keystore
  |       <Connector port="8443" address="${jboss.bind.address}"
  |            maxThreads="100" strategy="ms" maxHttpHeaderSize="8192"
  |            emptySessionPath="true"
  |            scheme="https" secure="true" clientAuth="false" 
  |            keystoreFile="${jboss.server.home.dir}/conf/chap8.keystore"
  |            keystorePass="rmi+ssl" sslProtocol = "TLS" />
  |       -->

So is ModJK, AJP 1.3 protocol utilzing SSL out of the box?
Any help would be great.

Scott

View the original post : \
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3948202#3948202

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3948202



-------------------------------------------------------
All the advantages of Linux Managed Hosting--Without the Cost and Risk!
Fully trained technicians. The highest number of Red Hat certifications in
the hosting industry. Fanatical Support. Click to learn more
http://sel.as-us.falkag.net/sel?cmd_______________________________________________
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic