Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

How to enforce RTC only by HTTPS, and disable HTTP access?

It seems although jazz redirect all access to HTTPs, but the HTTP access is still valid to image, js and service invocation. Is there any approach to disable HTTP? I understand there might be different app server (tomcat, was), is there any centralized approach that jazz can provide?

0 votes



2 answers

Permanent link
It seems although jazz redirect all access to HTTPs, but the HTTP access is still valid to image, js and service invocation. Is there any approach to disable HTTP? I understand there might be different app server (tomcat, was), is there any centralized approach that jazz can provide?


any feedback?

0 votes


Permanent link
I don't know if it's correct but: RTC is based on Tomcat and with this application server you can bind/disable the HTTP port from configuration. 

If you want to use the HTTP port only from localhost/127.0.0.1 you can add "address" property in the server.xml as reported here: http://tomcat.apache.org/tomcat-6.0-doc/config/http.html

In the HTTP section of connector add address="127.0.0.1" and the HTTP port respond only to local connections.

Hope this help

0 votes

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details
× 10,944

Question asked: Feb 02 '10, 10:10 p.m.

Question was seen: 5,641 times

Last updated: Jun 05 '12, 5:39 a.m.

Confirmation Cancel Confirm