Using SSL for Websites that are IIS Fronted and Hosted on Tomcat

Tomcat and SSL It is important to note that configuring Tomcat to take advantage of secure sockets is usually only necessary when running it as a standalone web server. When running Tomcat primarily as a Servlet/JSP container behind another web server, such as Apache or Microsoft IIS, it is usually necessary to configure the primary web server to handle the SSL connections from users. Typically, this server will negotiate all SSL-related functionality, then pass on any requests destined for the Tomcat container only after decrypting those requests. Likewise, Tomcat will return clear-text responses, which will then be encrypted by the […]


Advanced Tutorial on Tomcat 7

TABLE OF CONTENTS (HIDE) 1. Tomcat Architecture and Configuration 1.1 Tomcat’s Installed Directory Structure 1.2 Tomcat Architecture 1.3 Main Configuration File "server.xml" 1.4 Other Configuration Files: web.xml, context.xml, tomcat-users.xml 2. Deploying Webapps 2.1 Webapp’s Directory Structure 2.2 Webapp-Specific Configuration Files 2.3 Web Application Deployment Descriptors – "web.xml" 2.4 Deploying a Web Application in a WAR file 3. Running Tomcat 3.1 Tomcat’s Manager 3.2 Automatic Startup at Boot-time 3.3 Tomcat’s Startup Script 4. Security 4.1 Realm and User Authentication in Tomcat 4.2 UserDatabaseRealm 4.3 HTML FORM-based Authentication Method 4.4 HTTPS 4.5 HTTP BASIC Authentication 4.6 HTTP DIGEST Authentication 4.7 JDBCRealm 4.8 […]