Forcing connections to use SSL

The following articles will walk through how to configure Cascade Server to run over SSL:

Once the SSL connector has been enabled per those instructions, users can still access the application through the default port 8080. There are 2 options for preventing this from occurring:

Comment out the HTTP/1.1 Connector in tomcat/conf/server.xml (thus leaving only the SSL/TLS Connector).
Force Tomcat over SSL. To do this:
- Edit the file tomcat/conf/web.xml
- Add a <security-constraint> element just before the closing </web-app> element. For example:

<!-- Force SSL for entire site -->
  <security-constraint>    
     <web-resource-collection>    
         <web-resource-name>Cascade Server</web-resource-name>    
         <url-pattern>/*</url-pattern>    
     </web-resource-collection>    
     <user-data-constraint>    
         <transport-guarantee>CONFIDENTIAL</transport-guarantee>    
     </user-data-constraint>    
 </security-constraint>

More information on configuring SSL can be found at the Apache Tomcat web site.

Recent Discussions

	26 Oct, 2017 08:45 PM	Incorrect path in submenus
	31 Jan, 2017 08:08 PM	example of php (web services) that reads a page and writes a new one
	15 Sep, 2016 04:50 PM	Best way to convert title tags to h1 tags
	30 Aug, 2016 12:28 PM	Query using selected option value from select
	26 Aug, 2016 02:40 PM	Are we suppose to use the new help/support website?

Recent Articles

	Configuring the Heap Dump on Out of Memory option
	Modifying the Database Configuration
	Cascade Server Technical Primer
	Create a Calling Page Index Block
	Installation (using the ZIP file)

Forcing connections to use SSL

Frequently Asked Questions

LDAP

Installation and Upgrades

Technical Primer

System Configuration

Rich Text Editor (WYSIWYG)

Memory Configuration/JVM Startup Parameters

Security Updates

Common Error Messages

Warnings

Database

Formats

Troubleshooting

Recent Discussions

Recent Articles