OK, let me explain the real problem then. What I really want to do is
download a bunch of jars for an applet, however, doing this over HTTPS is
driving my nuts!!! Can I somehow use HTTP to get the jars and still have the
page that the applet resides in HTTPS?
From: Craig R. McClanahan [mailto:crai...@apache.org]
Sent: October 28, 2002 9:37 PM
To: Tomcat Users List
Subject: Re: Force One page to not use SSL
On Mon, 28 Oct 2002, Rustad, Aaron wrote:
Date: Mon, 28 Oct 2002 17:48:40 -0700
From: "Rustad, Aaron" <ARus...@Online-can.com>
Reply-To: Tomcat Users List <tomc...@jakarta.apache.org>
To: "'tomc...@jakarta.apache.org'" <tomc...@jakarta.apache.org>
Subject: Force One page to not use SSL
I am trying to force one page NOT to use HTTPS and still maintain the
session. I have looked in mailing list, and all I see is how you are not
supposed to do this. Well, I really...really...really need to do this and
yes, I understand that I shouldn't.
So, if anyone knows how I can maintain the session that is given to my
client from HTTPS -> HTTP I would greatly appreciate it.
There is no support for this because it would be a huge security hole.
For much discussion on this topic, check the mailing list archives.
1. IIS as a front for Tomcat 4.0.1.
2. Using AJP13
To unsubscribe, e-mail:
For additional commands, e-mail:
To unsubscribe, e-mail: <mailto:tomc...@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomc...@jakarta.apache.org>