Cloud server Tomcat configuration Https request

Others 2020-10-28 15:06:16 views: null

1. Tomcat version: tomcat9 (other versions should be similar, try it yourself)
        Note: By this step, you are already proficient in using cloud servers by default, such as port opening, firewall update, etc. If you have any questions, just leave a message in the comment area.
2. SSL certificate application
        In the cloud server you purchased, apply for an ssl certificate. The cloud is hidden a little bit deeper. Everyone chooses a single domain name, and then chooses a free DV SSL certificate, and then the choice of brand may change, but anyway. The free one is right. On the contrary, Tencent Cloud is more friendly (this is currently the case in 2020, not necessarily in the future), and you can choose a free certificate with one click.
Insert picture description here
Three, Tomcat configuration

  1. Place the certificate file in the tomcat/conf directory of the cloud server.
  2. Open the conf/server.xml file for editing (Tomcat9 generally defaults port 8083):
    change: <Connector connectionTimeout="20000" port="8083" protocol="HTTP/1.1" redirectPort="8490" />
    to: <Connector connectionTimeout="20000" port="8083" protocol="HTTP/1.1" redirectPort="443" />
    then add:
<Connector port="443" SSLEnabled="true" clientAuth="false" keystoreFile="conf/example.com.cn.pfx" keystorePass="你的证书密码" maxThreads="150" protocol="HTTP/1.1" scheme="https" secure="true" sslProtocol="TLS" />
<Connector port="8009" protocol="AJP/1.3" redirectPort="443" />

Note: keystoreFile is the storage location of the certificate file, we just put it in the conf directory. keystorePass is the certificate password.

  1. Open the conf/web.xml file for editing (not necessary, here is to force all requests to be https, including ip, configuration is not recommended for multiple services)
 <security-constraint>
    <web-resource-collection >
              <web-resource-name >SSL</web-resource-name>
              <url-pattern>/*</url-pattern>
       </web-resource-collection>                             
       <user-data-constraint>
       <transport-guarantee>CONFIDENTIAL</transport-guarantee>
       </user-data-constraint>
</security-constraint>

        If nothing else, you can access the deployed web project through the domain name.

Guess you like

Origin blog.csdn.net/weixin_43899542/article/details/106594066
Recommended
The sixth meeting of openKylin Community Ecology Committee was successfully held
Alibaba Cloud officially releases Tongyi Qianwen 2.5
Python 3.13 releases first Beta: experimental free-threading mode and JIT, improved interactive interpreter
Stack Overflow used my code to train large AI models and banned my account.
Pop!_OS’s COSMIC desktop completes App Store listing
Report: Django is still the first choice for 74% of developers
"Internet Investment and Financing Operation in the First Quarter of 2024" Research Report
15 years ago, he was on the "FFmpeg pillar of shame", and today he still has to thank us - Tencent QQPlayer avenges its shame?
Ranking
Python handwritten digit recognition, the corresponding mathematical formulas and Detailed procedures
Der M-Chip-Mac implementiert mehrere Android-Emulatoren
CentOS 명령줄 모드에서 화면이 항상 켜져 있도록 설정 ---- 예상한 효과를 얻지 못했습니다.
Teach you step by step how to use GDB to debug programs: a comprehensive guide from entry to mastery
python3 pip ipython installation
A lot of python crawler source code sharing -- talk about the little thing about python crawler
Agile Sprint in Alpha Stage (7)
Access URL in Unity
FunctoinDemo form
MS SQL common SQL statements (6): create, modify, delete triggers and other operations sq
Daily
More
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)

Code World

© 2018 codetd.com