Ask the Expert

Enabling HTTPS in J2EE Web components

How do I implement HTTPS protocol for JSP? Or, how do configure SSL in a Web application? My platform is WebLogic 8.1, Windows.

Requires Free Membership to View

The Java EE (J2EE) platform defines an XML-based "Web Deployment Descriptor (web.xml)" for specifying configuration features that allows the enforcement of secure communication using HTTP with SSL/TLS protocols for Web components such as Java Server Pages (JSPs) and servlets.

To enable HTTPS communication support in Web components, the "<transport-guarantee>" sub-element of the "<user-data-constraint>" sub-element of a "<security-constraint>" element must be specified as "CONFIDENTIAL" in the Web deployment descriptor. The following XML snippet illustrates the Web deployment descriptor (web.xml) showing the "<transport-guarantee>" sub-element:

   . . .
    . . .
     . . .
  . . .

In general, it is the responsibility of the Web application developer/assembler to define the required attributes for a Web application before its deployment to the Java EE application server.

As it is a standard practice, the Web deployment descriptor specified information applies to all Java EE providers such as BEA Systems' WebLogic, IBM's WebSphere, Sun Java System Application Server, JBoss and also its underlying operating systems.

More information:

This was first published in January 2007

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: