SSL & Proxying

I've looked through the apache documentation, and found some stuff that
may fit, but may not. So I'd like to ping this group and get some
feedback on what's the best setup.

I have apache2 handling requests (w/ virtual hosts), and doing
mod-proxy/rewrite to a java j2ee application server (jboss). I am
starting to have some sensative data that I would like to encrypt. I
have the SSL certificate, and have set it up on jboss. What do I do to
allow apache virtual hosts to redirect these requests to the app
server? do i need to setup the ssl cert on apache2 as well? and then
just allow the proxy to pass it over? can i just redirect it to jboss
directly (since it's already encrypted??)... I could have the cert
only on apache2, but the two processes will eventually be split off
onto seperate boxes as the sites grow, and I don't like the idea of
having it unencrypted and then proxied over.

i'd appreciate some response back.

thanks

chris