HTTP forwarding not working as expected in ALM?

Question ID: 110011
0
0

Hello,

  I have gone through the steps to forward the http URL to the https ports and secure side when the http URL is used but it is not working as I expected. Will redirecting http to the https URL even work if only 8443 is allowed as in previous steps in the ALM SSL implementation document (PAGE 122). Performed the following:

13. After ensuring that the SSL connection works, disable non-HTTPS access to the ALM
Application Server. In the jetty.xml file, locate the following section and comment it out by
placing <!– at the beginning of the section, and –> at the end.
Note: It is possible that this section in your jetty.xml file is slightly different.

!–
<Call name=”addConnector”>
<Arg>
<New class=”org.eclipse.jetty.server.ServerConnector”>
<Arg name=”server”><Ref refid=”Server” /></Arg>
<Arg name=”factories”>
<Array type=”org.eclipse.jetty.server.ConnectionFactory”>
<Item>
<New class=”org.eclipse.jetty.server.HttpConnectionFactory”>
<Arg name=”config”><Ref refid=”httpConfig” /></Arg>
</New>
</Item>
</Array>
</Arg>
<Set name=”host”><Property name=”jetty.host” /></Set>
<Set name=”port”><Property name=”jetty.port” default=”8080″/></Set>
<Set name=”idleTimeout”><Property name=”http.timeout” default=”30000″/></Set>
</New>
</Arg>
</Call>
–>

14. Save the jetty.xml file.
15. Restart the ALM Service and ensure that the non-secure URL (such as
http://<ALM server>:8080/qcbin) does not open.

Will the redirect work if the HTTP is disabled in the jetty.xml or am I expecting something that is not designed?

 

Thanks for clarifcation,

HomerJ

Marked as spam
Posted by (Questions: 340, Answers: 26)
Asked on January 27, 2021 3:57 pm
6 views
Answers (1)
1
Private answer

Hello Homerj<

If you have turned off the secure within the jetty.xml then it shouldn’t redirect as it has no way to know where the http is originallu directing to with it turned off.  This is the expected behavior and the redirect is there in case some wish to leave both http and https active and have the http redirected to the https ports.

Dan

Marked as spam
Posted by (Questions: 0, Answers: 735)
Answered on January 27, 2021 3:59 pm
Thanks for the clarification as that makes sense.
( at January 27, 2021 3:59 pm)