ISTI-ansible-roles
/
ansible-role-tomcat-multiple-instances
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fixes #20713. Set protocolHeader="X-Forwarded-Proto".

This commit is contained in:
Andrea Dell'Amico 2021-02-15 15:09:41 +01:00
parent a80dc894f3
commit 94cdecc62a
1 changed files with 10 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
templates/tomcat-server.xml.j2
View File

@ -98,6 +98,16 @@
<Engine name="Catalina" defaultHost="localhost"> <Engine name="Catalina" defaultHost="localhost">
{% if not item.ajp_enabled %}
<!-- Automatically substitutes the IP with the one contained
in the x-forwarded-for header if that header is set -->
<Valve className="org.apache.catalina.valves.RemoteIpValve"
remoteIpHeader="X-Forwarded-For"
protocolHeader="X-Forwarded-Proto"
protocolHeaderHttpsValue="https"
/>
{% endif %}
<!-- Use the LockOutRealm to prevent attempts to guess user passwords <!-- Use the LockOutRealm to prevent attempts to guess user passwords
via a brute-force attack --> via a brute-force attack -->
<Realm className="org.apache.catalina.realm.LockOutRealm"> <Realm className="org.apache.catalina.realm.LockOutRealm">
@ -123,9 +133,6 @@
> >
{% if item.access_log_enabled %} {% if item.access_log_enabled %}
<!-- Automatically substitutes the IP with the one contained
in the x-forwarded-for header if that header is set -->
<Valve className="org.apache.catalina.valves.RemoteIpValve" />
<!-- Access log processes all example. <!-- Access log processes all example.
Documentation at: /docs/config/valve.html Documentation at: /docs/config/valve.html
Note: The pattern used is equivalent to using pattern="combined" --> Note: The pattern used is equivalent to using pattern="combined" -->