Spring security and HTTPS Redirect
I have two questions regarding the use of HTTPS:
1) Is it possible to force https for my application? I'm running a java/spring web app on jboss on openshift. When I force https (CONFIDENTIAL) in the web.xml, the application redirects to 8443, which is off course not accessible from the outside.
2) I use spring security. By using the requiresChannel="https", you can redirect specific urls to https. Spring security correctly redirects to 443, however it then gets stuck into a loop. This is probably caused by the fact that spring either doesn't recognize that it's running on https (ssl terminated in an apache/loadbalancer?) or it is detecting the wrong port (8443 instead of 443). Is there a solution for this?