Win a copy of Functional Reactive Programming this week in the Other Languages forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

How to turn off https once logged in?

 
Marcelo Ortega
Ranch Hand
Posts: 528
Eclipse IDE Hibernate Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I am using this:

<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>

for a login page, but once logged i want to turn off https.

Any idea?

p.s, i'm using tomcat as the web container.
 
Ben Souther
Sheriff
Posts: 13411
Firefox Browser Redhat VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
An absolute link starting with 'http://...." will do it.

Just be aware, Tomcat creates separate sessions for secure and non secure connections so you will loose your session when you do this. Also, most browsers will whine with a popup if you force the user out of a secure session to a non-secure one.
 
Marcelo Ortega
Ranch Hand
Posts: 528
Eclipse IDE Hibernate Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks Ben.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic