Shawn O. Pearce | db9f9a0 | 2009-10-01 19:19:49 -0700 | [diff] [blame] | 1 | <?xml version="1.0" encoding="UTF-8"?> |
Chad Horohoe | 88bc137 | 2012-05-04 09:33:09 -0400 | [diff] [blame] | 2 | <!DOCTYPE Configure PUBLIC "-//Mort Bay Consulting//DTD Configure//EN" "http://www.eclipse.org/jetty/configure.dtd"> |
Shawn O. Pearce | db9f9a0 | 2009-10-01 19:19:49 -0700 | [diff] [blame] | 3 | <!-- |
| 4 | |
| 5 | Jetty configuration to correctly handle SSL/HTTPS traffic when |
| 6 | Apache is handling the SSL and proxying over plain HTTP to us. |
| 7 | |
| 8 | Requires Jetty 7.0.0.RC6 (or later). |
| 9 | |
| 10 | * Copy this file to $JETTY_HOME/etc/jetty_sslproxy.xml |
| 11 | * Add jetty_sslproxy to your start line: |
| 12 | |
| 13 | $JETTY_HOME/bin/jetty.sh start jetty-logging jetty jetty_sslproxy |
| 14 | |
| 15 | * Configure Apache to set X-Forwarded-Scheme on requests: |
| 16 | |
| 17 | RequestHeader set X-Forwarded-Scheme https |
| 18 | |
| 19 | --> |
| 20 | <Configure id="Server" class="org.eclipse.jetty.server.Server"> |
| 21 | <Get id="oldHandler" name="handler"/> |
| 22 | <Set name="handler"> |
| 23 | <New class="org.eclipse.jetty.rewrite.handler.RewriteHandler"> |
| 24 | <Set name="handler"><Ref id="oldHandler"/></Set> |
| 25 | <Set name="rules"> |
| 26 | <Array type="org.eclipse.jetty.rewrite.handler.Rule"> |
| 27 | <Item> |
| 28 | <New class="org.eclipse.jetty.rewrite.handler.ForwardedSchemeHeaderRule"> |
| 29 | <Set name="header">X-Forwarded-Scheme</Set> |
| 30 | <Set name="headerValue">https</Set> |
| 31 | <Set name="scheme">https</Set> |
| 32 | </New> |
| 33 | </Item> |
| 34 | </Array> |
| 35 | </Set> |
| 36 | </New> |
| 37 | </Set> |
| 38 | </Configure> |