参看文章:http://www.iteye.com/topic/347719
1. Window环境下:在命令提示符窗口,进入Tomcat目录,执行以下命令:
keytool -genkey -alias tomcat -keyalg RSA -keypass changeit -storepass changeit -keystore server.keystore -validity 3600
2. Linux环境下:进入$JAVA_HOME/bin目录,执行命令:
./keytool -genkey -alias tomcat -keyalg RSA -keypass changeit -storepass changeit -keystore server.keystore -validity 3600
通过以上步骤生成server.keystore证书文件
3. 打开tomcat目录conf/server.xml
<!-- Define a non-SSL HTTP/1.1 Connector on port 8080 -->
<Connector port="8080" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" redirectPort="8443" acceptCount="100"
connectionTimeout="20000" disableUploadTimeout="true" URIEncoding="UTF-8"/>
<!-- Define a SSL HTTP/1.1 Connector on port 8443 -->
<Connector port="443" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="server.keystore" keystorePass="changeit" URIEncoding="UTF-8"/>
<!-- Define an AJP 1.3 Connector on port 8009 -->
<Connector port="8009"
enableLookups="false" redirectPort="8443" protocol="AJP/1.3" />
4. 修改web.xml
<context-param>
<param-name>useHTTPS</param-name>
<param-value>true</param-value>
</context-param>
<welcome-file-list>
<welcome-file>/index.jsp</welcome-file>
</welcome-file-list>
Index.jsp页面:
<%
String useHTTPS = getServletContext().getInitParameter("useHTTPS");
if("true".equals(useHTTPS)){
String serverName = request.getServerName();
//String serverPort = request.getServerPort()+"";
String url = "https://"+serverName+"/mainMenu.html";
//System.out.println(url);
request.setAttribute("url",url);
%>
<c:redirect url="${url}"/>
<%
}else{
%>
<c:redirect url="/mainMenu.html"/>
<%
}
%>
5. 重新启动Tomcat就可以了。到这一步可以形成访问方式 https://ip/item
Tomcat配置https方式访问(单向认证)
猜你喜欢
转载自huandieyangyang-126-com.iteye.com/blog/1609616
今日推荐
周排行