Tomcat配置SSL支持https并强制https访问

2017-08-29 本文已影响0人我本佛山人

image.png

1、在阿里云上支持免费版的CA证书
https://common-buy.aliyun.com/?spm=5176.2020520163.cas.1.4272e7a9R0JOhX&commodityCode=cas#/buy

2、配置Tomcat
https://yundun.console.aliyun.com/?spm=5176.2020520163.1002.d10cas.4272e7a9ZkAjDt&p=cas#/cas/download/214242079920956

3、强制以https方式访问
在tomcat\conf\web.xml中的</welcome-file-list>后面加上这样一段：

<login-config>
    <!-- Authorization setting for SSL -->
    <auth-method>CLIENT-CERT</auth-method>
    <realm-name>Client Cert Users-only Area</realm-name>
</login-config>
<security-constraint>
    <!-- Authorization setting for SSL -->
    <web-resource-collection >
    <web-resource-name >SSL</web-resource-name>
    <url-pattern>/*</url-pattern>
    </web-resource-collection>
    <user-data-constraint>
    <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>
</security-constraint>

Tomcat配置SSL支持https并强制https访问

猜你喜欢

热点阅读