Apache SSL Proxy For Tomcat, Remedy Midtier


Setting up SSL support for Tomcat, using Apache as a proxy server.

Tomcat Configuration

/usr/local/tomcat/conf/server.xml needs to be modified so Tomcat is aware that it will be proxied over SSH. The last lines were added:

    <!-- Define a non-SSL HTTP/1.1 Connector on port 8080 -->
    <Connector port="8080" maxHttpHeaderSize="8192" URIEncoding="UTF-8"
               maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
               enableLookups="false" redirectPort="8443" acceptCount="100"
               connectionTimeout="20000" disableUploadTimeout="true"
proxyName="midtier.cl.gemini.edu" proxyPort="443" scheme="https"/>

Apache Configuration

A new virtual host was configured for SSL:

<VirtualHost *:443>
# Proxy setup
ProxyRequests Off
ProxyPreserveHost On
ProxyPass /arsys http://midtier.gemini.edu:8080/arsys
ProxyPassReverse /arsys http://midtier.edu:8080/arsys

<Proxy *>
Order deny,allow
Allow from all

#  SSL
SSLEngine on
SSLProxyEngine on