tomcat 默认端口说明:
<Server port="8005" shutdown="SHUTDOWN">
远程停服务端口
<Connector port="8080" protocol="HTTP/1.1" connectionTimeout="20000" redirectPort="8443" URIEncoding="UTF-8"/>
其中8080为HTTP端口,8443为默认HTTPS端口
<Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />
8009为AJP端口,服务器之间的通信使用该端口
HTTP重定向至HTTPS也就是将80端口重定向至443端口
1. 设置https 访问:
<Connector port="443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile : 证书存放路径
keystorePass : 证书密码
2. 配置80端口,将8080改成80, redirectPort设置为443
<Connector
port="80" protocol="HTTP/1.1"
connectionTimeout="20000"
URIEncoding="UTF-8"
redirectPort="443" />
3. 配置8009端口重定向
<Connector port="8009" protocol="AJP/1.3"
redirectPort="443" />
4. 在 $TOMCAT_HOME/bin/web.xml中加入以下配置,禁止http访问
<security-constraint>
<web-resource-collection >
<web-resource-name >SSL</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
5.重启tomcat即可
The end