Skip to main content

Posts

Showing posts from December, 2016

Basic auth with Apache and Tomcat

This is a short "recipe" article explaining how to configure basic authentication for the following setup:
Apache Tomcat with some application that need be partially password-protectedApache HTTP Server 2.4 as a proxyCentOS 7 Linux server Although basic authentication can be configured within Tomcat itself, my target is to use Apache for that purpose. In addition, as passing unencrypted credentials over the web is insecure, I'm going to install SSL certificates to enable HTTPS for the part of my application. This setup can be used when a part of an internal application need be secured to make it publicly accessible using a separate firewall/proxy (out of scope of this article), that part will be password-protected and SSL-encrypted.
Steps
Copy certificates into /etc/ssl/certs/ivanlagunov.comCreate symlink:cd /etc/httpd sudo ln -s /etc/ssl/certs/ivanlagunov.com Install Apache mod_sslsudo yum -y install mod_sslCreate file with user credentials for basic authenticationsudo …