SSLValve (JBoss Web 8.0.0.Alpha1 API)

Skip navigation links

JBoss Web 8.0.0.Alpha1

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- org.apache.catalina.valves.ValveBase
- - org.apache.catalina.valves.SSLValve

All Implemented Interfaces:

MBeanRegistration, Contained, Valve
```
public class SSLValve
extends ValveBase
```
When using mod_proxy_http, the client SSL information is not included in the protocol (unlike mod_jk and mod_proxy_ajp). To make the client SSL information available to Tomcat, some additional configuration is required. In httpd, mod_headers is used to add the SSL information as HTTP headers. In Tomcat, this valve is used to read the information from the HTTP headers and insert it into the request.
Note: Ensure that the headers are always set by httpd for all requests to prevent a client spoofing SSL information by sending fake headers.
In httpd.conf add the following:
```
 <IfModule ssl_module>
   RequestHeader set SSL_CLIENT_CERT "%{SSL_CLIENT_CERT}s"
   RequestHeader set SSL_CIPHER "%{SSL_CIPHER}s"
   RequestHeader set SSL_SESSION_ID "%{SSL_SESSION_ID}s"
   RequestHeader set SSL_CIPHER_USEKEYSIZE "%{SSL_CIPHER_USEKEYSIZE}s"
 </IfModule>
 
```
In server.xml, configure this valve under the Engine element in server.xml:
```
 <Engine ...>
   <Valve className="org.apache.catalina.valves.SSLValve" />
   <Host ... />
 </Engine>
 
```

Field Summary
- Fields inherited from class org.apache.catalina.valves.ValveBase
  container, controller, domain, info, mserver, next, oname

Constructor Summary

Constructors
Constructor and Description

SSLValve()

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`void`	`invoke(Request request, Response response)` The implementation-specific logic represented by this Valve.
`String`	`mygetHeader(Request request, String header)`

Methods inherited from class org.apache.catalina.valves.ValveBase
backgroundProcess, createObjectName, event, getContainer, getContainerName, getController, getDomain, getInfo, getNext, getObjectName, getParentName, postDeregister, postRegister, preDeregister, preRegister, setContainer, setController, setNext, setObjectName, toString

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

- Constructor Detail
  - SSLValve
```
public SSLValve()
```
- Method Detail
  - mygetHeader
```
public String mygetHeader(Request request,
                          String header)
```
  - invoke
```
public void invoke(Request request,
                   Response response)
            throws IOException,
                   javax.servlet.ServletException
```
    Description copied from class: ValveBase
    
    The implementation-specific logic represented by this Valve. See the Valve description for the normal design patterns for this method.
    This method MUST be provided by a subclass.
    
    Specified by:
    
    invoke in interface Valve
    
    Specified by:
    
    invoke in class ValveBase
    
    Parameters:
    
    request - The servlet request to be processed
    
    response - The servlet response to be created
    
    Throws:
    
    IOException - if an input/output error occurs
    
    javax.servlet.ServletException - if a servlet error occurs

Skip navigation links

JBoss Web 8.0.0.Alpha1

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

Copyright © 2016 JBoss by Red Hat. All rights reserved.