{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 一夜七次 的问题《How to make “HTTPS redirect” work on WebSphere App》','https://www.manongdao.com/q-298889.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I want make HTTP Redirect work on WebSphere Application Server Liberty Profile (WLP). For example:-
When user types:
http://localhost:8080/helloworld, the browser should automatically go (be redirected) to
https://localhost:9443/helloworld
To achieve this, I followed this document, Section 6.2, page no. 136.
Below is the sample server.xml and web.xml:-
server.xml
<server description="new server">
<!-- Enable features -->
<featureManager>
<feature>jsp-2.2</feature>
<feature>wab-1.0</feature>
<feature>jaxrs-1.1</feature>
<feature>blueprint-1.0</feature>
<feature>localConnector-1.0</feature>
<feature>ssl-1.0</feature>
<feature>appSecurity-2.0</feature>
</featureManager>
<httpEndpoint host="localhost" httpPort="8081" httpsPort="9442" id="defaultHttpEndpoint">
</httpEndpoint>
<applicationMonitor updateTrigger="mbean"/>
<keyStore id="defaultKeyStore" password="{xor}Lz4sLCgwLTtu"/>
<application id="Hello.app" location="Hello.app.eba" name="Hello.app" type="eba"/>
web.xml
<?xml version="1.0" encoding="UTF-8"?>
<web-app id="WebApp_ID" version="3.0" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd">
<display-name>Hello</display-name>
<security-constraint>
<display-name>HTTPS Redirect Security Constraint</display-name>
<web-resource-collection>
<web-resource-name>Sample Web Service service</web-resource-name>
<url-pattern>/Hello</url-pattern>
<http-method>GET</http-method>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
</web-app>
Have removed the <servlet> and <servlet-mapping> tag for brevity.
Below are the versions that I am using:- Java 7, WLP 8.5.5, Eclipse Juno, Google Chrome.
Any help, guidelines on why HTTPS redirect is not working will be much appreciated.
To make HTTPS Redirect work on WLP, following points should be taken care of:-
server.xmlof WLP.server.xmlof WLP.web.xml<login-config><security-constraint><security-constraint><web-resource-name></security-constraint><security-constraint><auth-constraint></security-constraint><security-constraint><user-data-constraint></security-constraint>Below are the steps in detail:-
1. Add users, roles, and passwords in
server.xmlof WLP.2. Bind the application to the security role.
3. Add appSecurity-2.0 feature in
server.xmlof WLP.4.1, 4.2, 4.3, 4.4, 4.5
I suspect the problem is in your security-constraint. Looking at it I would suggest changing your url-pattern to be:
rather than:
If you want to match multiple resources you can use wildcards such as:
I solved this a different way, but I think the accepted answer may be better. You can write a servlet filter and then modify the web.xml to associate it with a path.
The web.xml code:
The filter code: