Kim_Busho
Feb 12, 2008Nimbostratus
SSL/Tomcat Security Alert
We have a website that is hosted on Tomcat (v5.5) web servers and uses an SSL certificate configured on our (v9.1.2) F5's.
There is an iRule in place for the http vs that redirects all requests to https:
Redirects all to HTTPS keeps URI intact
when HTTP_REQUEST {
HTTP::redirect https://[HTTP::host][HTTP::uri]
}
After a user enters login information for the site and attempts to login, this pop-up message appears:
Security Alert
You are about to be redirected to a connection that is not secure.
The information you are sending to the current site might be retransmitted to a nonsecure site. Do you wish to continue?
If you select Yes to continue you're redirected to the correct page using https.
We don't see this message with our IIS sites. How can I get rid of this message?