Ставим на Windows, сертификат будет самоподписанным, порты будут стандартными - 80 и 443.
C:\Java
".JAVA_HOME
" со значением, например, "C:\Java\jdk1.6.0_38
". apache-tomcat-7.0.34-windows-x64.zip
" на диск в "C:\tomcat
".cd /d C:\tomcat\bin service install TomCat tomcat7 //US//TomCat --Startup auto --JvmMs 4096 --JvmMx 4096 ++JvmOptions -XX:MaxPermSize=512M ++JvmOptions -XX:PermSize=512M
C:\Tomcat\conf
":%JAVA_HOME%\bin\keytool -genkey -alias MyAlias -keystore C:\tomcat\conf\keystore -validity 3650 -keyalg RSA -sigalg SHA1withRSA
C:\Tomcat\conf\web.xml
" перед "</web-app>
":<security-constraint> <web-resource-collection> <web-resource-name>Entire Application</web-resource-name> <url-pattern>/*</url-pattern> </web-resource-collection> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint>
C:\Tomcat\conf\server.xml
":<Listener className="org.apache.catalina.core.AprLifecycleListener" SSLEngine="on" />
":<!-- <Listener className="org.apache.catalina.core.AprLifecycleListener" SSLEngine="on" /> -->
и "<Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener" />
":
<!-- <Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener" /> -->
<Connector port="8080" protocol="HTTP/1.1" connectionTimeout="20000" redirectPort="8443" / >
на
<Connector port="80" enableLookups="false" redirectPort="443" />
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true" maxThreads="150" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" />
и поменяем на:
<Connector port="443" protocol="HTTP/1.1" SSLEnabled="true" maxThreads="150" scheme="https" secure="true" keystoreFile="C:\tomcat\conf\keystore" keystorePass="<PASSWORD>" keyAlias="MyAlias" clientAuth="false" sslProtocol="TLS" />
"<PASSWORD>
" и "MyAlias
" мы задали в п.5. Файл создали тогда же.
<Engine name="Catalina" defaultHost="localhost">
" - "defaultHost
";<Host name="localhost" appBase="webapps"
" - "name
".Стартуем сервис и обращаемся по HTTP или по HTTPS.