tomcat8 配置https(续)

tomcat8 配置https(续)

tomcat8 配置http重定向到https,记录一下

网上找了一些文章，有的说不可以，需要用一些插件。然而google了一下，确实是可以的。

---

修改server.xml , 默认8080改成80，redirectPort改成443,AJP的redirectPort也修改一下

<Connector port="80" protocol="HTTP/1.1"
                   connectionTimeout="20000"
                   redirectPort="443" />            
<Connector port="443" protocol="org.apache.coyote.http11.Http11NioProtocol"
               maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
               keystoreFile="tomcat.keystore"
               keystorePass="123456"
               clientAuth="false" sslProtocol="TLS" />

<Connector port="8009" protocol="AJP/1.3" redirectPort="443" />

修改conf/web.xml,在welcome-file-list 后面加入以下内容

    <security-constraint>  
        <!-- Authorization setting for SSL -->  
     <web-resource-collection >  
         <web-resource-name >SSL</web-resource-name>  
         <url-pattern>/*</url-pattern>  
     </web-resource-collection>  
     <user-data-constraint>  
         <transport-guarantee>CONFIDENTIAL</transport-guarantee>  
     </user-data-constraint>  
   </security-constraint> 

参考

https://tomcat.apache.org/tomcat-8.0-doc/config/http.html

http://www.itworld.com/article/2769041/development/how-to-configure-tomcat-to-always-require-https.html

https://coolestguidesontheplanet.com/redirecting-http-https-tomcat/

http://blog.csdn.net/chow__zh/article/details/8843594