Making sure links do not redirect away from https

Users of Groundwork 6.0 and later who have setup https according to the bookshelf article may notice that Groundwork occasionally redirects to non encrypted pages before being redirected back to encrypted pages. This tech bulletin shows how to configure Groundwork so that Groundwork pages are never redirected to non encrypted pages


The jboss application server redirected some links to non encrypted http pages under certain circumstances


You will need to uncomment the section for the SSL HTTP/1.1 connector in the server.xml by removing the <!-- and --> from before and after the connector. Then you need to add the following settings to the new connector setting in the server.xml:

proxyName="GWOSMEE-HOSTNAME" proxyPort="443"

The proxyName should be the hostname for which you will access Groundwork with in the browser (the one for which the ssl cert has been issued).

Your connector setting should look something like this:

    <!-- Define a SSL HTTP/1.1 Connector on port 8443
         This connector uses the JSSE configuration, when using APR, the 
         connector should be using the OpenSSL style configuration
         described in the APR documentation -->
    <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" scheme="https" secure="true"
               clientAuth="false" sslProtocol="TLS" 
               proxyName="GWOSMEE-HOSTNAME" proxyPort="443"

Now restart gwservices:

/etc/init.d/groundwork restart gwservices


https https Delete
Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.