• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Tim Cooke
  • paul wheaton
  • Jeanne Boyarsky
  • Ron McLeod
Sheriffs:
  • Paul Clapham
  • Liutauras Vilda
  • Devaka Cooray
Saloon Keepers:
  • Tim Holloway
  • Roland Mueller
Bartenders:

Servlets on GlassFish v4 with HTTPS

 
Greenhorn
Posts: 4
VI Editor Java Linux
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
I am currently learning how to use JavaEE stuff and currently trying to create a GlassFish-Server (up and running) that has attached a Servlet. The Servlet should present a Login-Page and after Login the users are allowed to add words they tipe into a field to a list.

Important is that the connection should be secure in every aspect means I would like to use HTTPS (mutual). Also I read that HTTPS has weaknesses like side-channel-attacks. This should be preventable/reduceable by using stateless communictaion?

* I would like to get some hints where I can find information about Glassfish-Configuration for HTTPS?
* What do I need to do to make my Servlet working with HTTPS?
* Is it possible to keep up a session over time with stateless communication?
* Are there other things I have to take care of?

I am using Eclipse, JavaEE7, GlassFish and creating a Servlet with the by Eclipse given defaults for "dynamic web project". I already created simple servlets running on the Server using HTTP.

I would appreciate some help - literature hints. Maybe a step by step intstruction. Some basic Ideas about security concepts etc.

----
I am from Germany and I am happy if you correct my English because it is the only way to improve it.
 
Author
Posts: 116
11
Spring Tomcat Server Java
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Bax

Let me try to answer your questions.

* I would like to get some hints where I can find information about Glassfish-Configuration for HTTPS?


This is a fairly good site that gives a step by step instructions on How to install SSL on Glassfish server.

* What do I need to do to make my Servlet working with HTTPS?


You need to configure the application by adding some code to the web.xml file. Here is an article on how to configure HTTPS for use with Servlets.

* Is it possible to keep up a session over time with stateless communication?


I am not entirely sure what you are getting at here. The session timeout can be set in the web.xml

or in servlet code:

* Are there other things I have to take care of?


So many things. However if you are just trying this out in order to learn how it all fits together then you already have want you need.

I hope this helps.
 
So there I was, trapped in the jungle. And at the last minute, I was saved by this tiny ad:
Smokeless wood heat with a rocket mass heater
https://woodheat.net
reply
    Bookmark Topic Watch Topic
  • New Topic