Nginx SSL + Tomcat (for Confluence)
By AkH, 5 months, 2 weeks ago, modified Feb. 12, 2010
I have an Nginx frontend to serv everything but confluence which was not happy with my SSLized conf, here is the solution !
This doc is related to confluence but will works with any java apps in a tomcat
First don't use the standalone version of confluence (which is a Tomcat 5.5), use the EAR/WAR tar gz archive.
We need Tomcat 6 cause we will use a "Valve" RemoteIPValve that will check for a header (X-Forwarded-Proto) to see if the source request was secured by SSL.
Inside tomcat server.xml simply add a Valve configuration in your Host definition:
<Valve className="org.apache.catalina.valves.RemoteIpValve" protocolHeader="X-Forwarded-Proto" protocolHeaderHttpsValue="https" />
In your nginx.conf, just forward the header:
location /confluence {
proxy_pass http://localhost:8010;
proxy_set_header X-Forwarded-Proto https;
proxy_set_header Host $http_host;
}
This is the same mechanism you will find with rails or Django and Nginx.
Remember to listen only on localhost with Tomcat or your nginx proxy is useless:
<Connector address="127.0.0.1" port="8010" protocol="HTTP/1.1"
connectionTimeout="20000"
URIEncoding="UTF-8" />
Happy SSL !
Thanks to Super Chinois for the java mess.
Comments
Do not enough money to buy a building? You not have to worry, because that's available to take the <a href="http://lowest-rate-loans.com">loans</a> to resolve such kind of problems. Hence get a credit loan to buy all you require.
Hhe article's content rich variety which make us move for our mood <a href=" http://www.wslmart.net/ " >wslmart.net </a> after reading this article. surprise, here you will find what you want! Recently, I found some wedsites which commodity is colorful of fashion. Such as xxxxxxxx that worth you to see. Believe me these websites won’t let you down.
First don't use the standalone version of confluence (which is a Tomcat 5.5), use the EAR/WAR tar gz archive.
We need Tomcat 6 cause we will use a
here you will find what you want! Recently, I found some wedsites which commodity is colorful of fashion
Read your article, I feel your words are very good, very good! Thank you for sharing.
winbowgems.com gemstone suppliers from China, We business scope: ODM and OEM
<b><a href=" http://www.winbowgems.com" title="gemstone wholesale">gemstone wholesale</a></b>
<a href="http://www.winbowgems.com/coral-beads-wholesale/1/" title="coral beads wholesale">coral beads wholesale</a>
<strong><a href="http://www.semi-precious-stone-jewelry.com" title="semi precious stones supplier">semi precious stones supplier</a></strong>
I loved the editorial.It is very interesting.Thank you for the information.
I am always searching online for articles that can help me get further ahead. Thanks a million!
Thanks for this! I’ve been looking all over the internet for it.
Great thanks for sharing this article post.
http://www.highlinebattery.com/panasonic/lumix+dmc-fs15/battery+charger.htm
panasonic lumix dmc-fs15 charger
http://www.highlinebattery.com/panasonic/lumix+dmc-fs15/digital+camera+battery.htm
panasonic lumix dmc-fs15 battery