Re: apache/tomcat question

I haven't tried mixing and matching apps that way in an SSL environment but you may want to look at having Apache be the web server front end for everything, integrating your CGIDEV2 and EGL app. In my case, I frequently have Apache serving all the content and using the Tomcat connector from Apache to Tomcat (AJP).

Once you have SSL in the mix things can get interesting. I keep things simple by having the firewall do all the heavy lifting with SSL and then pass the traffic back to Apache and Tomcat but you can have Apache handle the SSL, or Tomcat (as you have) or any combination. You might find using Apache as the front end server for EGL and CGIDEV2 easier, but the devil is always in the details. You can find out more about the Tomcat Connector here: http://tomcat.apache.org/connectors-doc/

Pete Helgren
Value Added Software, Inc
www.petesworkshop.com
GIAC Secure Software Programmer-Java


On 5/3/2012 7:29 AM, tim.dclinc@xxxxxxxxx wrote:

Pete,

I have several EGL apps the use the CGIDEV2 app to upload files to our
iseries. We started using SSL on the Tomcat server for the EGL apps. I
use an iframe to display the file upload in my EGL app. When the page
displays, i get "secure content" errors since EGL is SSL and the iframe
is not. I was hoping i could just run the CGIDEV2 under Tomcat thus
getting around the secure content issue.

Maybe there is a better way of doing this. As you can tell, i know very
little about configuring servers.