Thread: Apache-SSL 2.0.45: redirect changes URL from https:... to http://server...:443/.. which fails
View Single Post

  #2 (permalink)  
Old 07-02-2003
Chris Morris
 
Posts: n/a
Default Re: Apache-SSL 2.0.45: redirect changes URL from https:... to http://server...:443/.. which fails
hnbw1@veces.bb.bawue.de (Herbert Neugebauer) writes:
> However if any of the Web-pages issues a "redirect" on the secure
> server side, e.g. after a login on

If you put together a redirect in httpd.conf or .htaccess does the
same thing happen? If not I suspect a JSP bug/miscoding.

> Also be assured, that the JSP pages where this happens DO use relative
> URL. They do not specify the crappy URL hardcoded.
> (e.g.: response.sendRedirect(response.encodeRedirectURL(" ../index.jsp")
> )

If you specify an absolute URL here (probably with some sort of if
statement needed to get the protocol right) does it work? Unless JSP
does some sort of filtering, you should use absolute URLs for
redirects anyway.

--
Chris