Tomcat app behind Apache, htaccess auth

.htaccessapache-2.2tomcat

Please help to set up a protection for Tomcat app with .htaccess.

I want to use mod_proxy ProxyPass and ProxyPassReverse

My tomcat app: www.example.com:8085

What I want is to make it impossible to access the Tomcat app without going through Apache auth first.

Best Answer

Based on the fact tomcat and apache are on same server (else, you need to setup a firewall in front of tomcat which will accept connections to tomcat only from apache server) and your context is named app

Configure tomcat to listen only on localhost (edit server.xml file)

   <Connector port="8080" protocol="HTTP/1.1" address="127.0.0.1" />

Configure apache for proxy and auth.

   #httpd.conf
   <Location /app>

     # Authentication
     AuthType Basic
     AuthName "Restricted access"
     AuthUserFile /usr/local/apache/passwd/passwords
     Require valid-user 

     # Proxy to tomcat
     ProxyPass  /app http://127.0.0.1:8080/
     ProxyPassReverse  /app http://127.0.0.1:8080/
   </Location>

Related Solutions

Tomcat – Apache, Tomcat 5 and problem with HTTP basic auth

How did you configure the basic auth? If you are using <Directory> Directives, try changing to <Location> instead. (as the proxied requests don't actually touch an Apache directory..

Edit: I assume you have: LoadModule proxy_ajp_module modules/mod_proxy_ajp.so

Apache mod_rewrite in proxy mode, .htaccess and ProxyPassReverse

Use your main config file - you can do a graceful config reload by sending a USR1 signal to the process - your apache init script should have a reload command to do this.

/etc/init.d/apache2 reload

Best Answer

Related Solutions

Tomcat – Apache, Tomcat 5 and problem with HTTP basic auth

Apache mod_rewrite in proxy mode, .htaccess and ProxyPassReverse

Related Topic