Dear Group,
-- according to AppEngin-s description, It should be possible to trasform any http call into an https call.
https://developers.google.com/appengine/docs/java/config/webxml?csw=1#Secure_URLs
Sample web.xml configuration:
<servlet>
<servlet-name>loginServlet</servlet-name>
<servlet-class>com.myapp.server.rpc.LoginServiceImpl</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>loginServlet</servlet-name>
<url-pattern>/myapp/login_service</url-pattern>
</servlet-mapping>
<security-constraint>
<web-resource-collection>
<web-resource-name>loginServlet</web-resource-name>
<url-pattern>/myapp/login_service</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
If I am right, the configuration above will take an http:// request to the RPC service, and will redirect it as a https:// request to the same service.
Google: Requests using HTTP (non-secure) for URLs whose transport guarantee is
CONFIDENTIAL are automatically redirected to the same URL using HTTPS.For some reason this does not work for me while testing it on appengine.
Should I see https:// instead of http:// in the address-bar?
Which steps will happen when I access /myapp/login_service from the GWT app that has started with http:// protocoll?
Thank you for your comments:
Nermin
You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-web-toolkit+unsubscribe@googlegroups.com.
To post to this group, send email to google-web-toolkit@googlegroups.com.
Visit this group at http://groups.google.com/group/google-web-toolkit.
For more options, visit https://groups.google.com/groups/opt_out.
No comments:
Post a Comment