Why mod_jk ?

Andrew Ralph Feller, afelle1 afelle1 at lsu.edu
Thu Jul 24 10:27:53 EDT 2008 

Unfortunately, I have no experience with that.


On 7/24/08 8:09 AM, "stephane.gully at gmail.com" <stephane.gully at gmail.com>
wrote:

> Thank you for you answers.
> 
> As you are speaking about SSL, do you know if client certificats are
> forwarded to CAS X509 handler when Tomecat is behind the Apache/mod_jk
> or Apache/mod_proxy_ajp ?
> 
> Stéphane
> 
> On 7/24/08, Andrew Ralph Feller, afelle1 <afelle1 at lsu.edu> wrote:
>> For those who need to support Java applications along with PHP / Perl
>> applications, they could host both from the same machine by having Apache
>> httpd front-end Apache Tomcat.  There is a another reason why some people
>> use mod_jk + Tomcat: inexperience in managing Tomcat.  When I was starting
>> out, I hated working with keystores as it wasn¹t nearly as straight forward
>> as Apache httpd¹s mod_ssl configuration.  Once I found how to setup the
>> Apache Portable Runtime in Tomcat, then I felt comfortable not having Tomcat
>> front-ended as the APR configuration is extremely similar to mod_ssl.
>> 
>> On a tangential note, there is an alternative to mod_jk called
>> mod_proxy_ajp, which comes with Apache httpd 2.2 and works in a similar
>> manner.
>> 
>> 
>> On 7/24/08 6:12 AM, "Siegfried Puchbauer" <siegfried.puchbauer at gmail.com>
>> wrote:
>> 
>>> You can gain a lot of flexibility when you choose to use Apache in front
>>> of
>>> your Tomcat backend. For example a very flexible way to perform name-based
>>> virtual hosting. Also mod_rewrite is great to perform dynamic redirects
>>> using
>>> regexes. And the reverse-proxy capabilities by mod_proxy are also very
>>> useful
>>> - especially when using other application in the same url-space. You can
>>> also
>>> use it to display a service unavailibilty information when you
>>> upgrade/restart
>>> you tomcat. If you do not have the need of rewriteing urls, perform
>>> virtual-hosting there is IMHO no reason to not choose a standalone tomcat.
>>> 
>>> Cheers, sigi
>>> _______________________
>>> Siegfried Puchbauer
>>> http://siegfried.puchbauer.com/
>>> 
>>> On Thu, Jul 24, 2008 at 11:55, Stéphane Gully <stephane.gully at gmail.com>
>>> wrote:
>>>> Hello,
>>>> 
>>>> This is a generic question, not directly related to CAS. I'm sorry for
>>>> that.
>>>> Google didn't helped me so I try here.
>>>> 
>>>> When I installed CAS, I had the choice to deploy it directly in Tomcat
>>>> or in Apache/mod_jk+Tomcat. I chosed to deploy it directly in Tomcat
>>>> because I needed X509 authentication handler and it just looked more
>>>> easy to configure directly in Tomcat.
>>>> 
>>>> I often read that mod_jk should be used but I never know why ? could
>>>> someone tell me the reason(s) ?
>>>> 
>>>> regards,
>>>> --
>>>> Stéphane GULLY
>>>> _______________________________________________
>>>> Yale CAS mailing list
>>>> cas at tp.its.yale.edu
>>>> http://tp.its.yale.edu/mailman/listinfo/cas
>>> 
>>> 
>>> 
>>> _______________________________________________
>>> Yale CAS mailing list
>>> cas at tp.its.yale.edu
>>> http://tp.its.yale.edu/mailman/listinfo/cas
>> 
>> --
>> Andrew R. Feller, Analyst
>> Information Technology Services
>> 200 Fred Frey Building
>> Louisiana State University
>> Baton Rouge, LA 70803
>> (225) 578-3737 (Office)
>> (225) 578-6400 (Fax)
>> 
>> 
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas

-- 
Andrew R. Feller, Analyst
Information Technology Services
200 Fred Frey Building
Louisiana State University
Baton Rouge, LA 70803
(225) 578-3737 (Office)
(225) 578-6400 (Fax)

More information about the cas mailing list