• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Is it possible to protect only certain services within a web container with HTTPS?

 
Ranch Hand
Posts: 122
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
let other service, web application be accessed with plain HTTP?

so far I know the only solution is to separate them into 2 WEB applications,
one is accessed with HTTPS, another is accessed with HTTP.

is there any way to make it happen in one application?
 
author
Posts: 11962
5
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
You can edit your application's web.xml to add a security-constraint element for enforcing the use of HTTPS for only certain parts of your web application using a URL pattern (for example, "use HTTPS for every request to 'secure/*'").
 
Consider Paul's rocket mass heater.
reply
    Bookmark Topic Watch Topic
  • New Topic