we are using spring security into our systems and our server is using the https scheme.
However the application is running on http not https, so the server, being apache, is the https handler. whereas the application is running on http behind a firewall.
Working code:
<form-login login-page="/Login.html"
authentication-failure-url="https://www.ourapp.com/FailureLogin.jsp"
always-use-default-target="false"
default-target-url="https://www.ourapp.com/SuccessLogin.jsp"/>
<form-login login-page="/Login.html"
authentication-failure-url="https://www.ourapp.com/FailureLogin.jsp"
always-use-default-target="false"
default-target-url="https://www.ourapp.com/SuccessLogin.jsp"/>
Not working code:
<form-login login-page="/Login.html"
authentication-failure-url="/FailureLogin.jsp"
always-use-default-target="false"
default-target-url="/SuccessLogin.jsp"/>
<form-login login-page="/Login.html"
authentication-failure-url="/FailureLogin.jsp"
always-use-default-target="false"
default-target-url="/SuccessLogin.jsp"/>
is there any way to mention : Redirect to Url ending with /SuccessLogin.jsp but using https protocol ?
For reference, question is cross posted @ Code ranch PS: I can TargetUrlResolver help me in configurations ?
use requires-channel="https"
<http>
<intercept-url pattern="/**" requires-channel="https" />
</http>
If non standard ports in use provide port-mappings
<http>
<intercept-url pattern="/**" requires-channel="https" />
<port-mappings>
<port-mapping http="80" https="443" />
<port-mapping http="9080" https="9443" />
<port-mappings>
</http>
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With