Users of Groundwork 6.0 and later who have setup https according to the bookshelf article may notice that Groundwork occasionally redirects to non encrypted pages before being redirected back to encrypted pages. This tech bulletin shows how to configure Groundwork so that Groundwork pages are never redirected to non encrypted pages
The jboss application server redirected some links to non encrypted http pages under certain circumstances
You will need to uncomment the section for the SSL HTTP/1.1 connector in the server.xml by removing the <!-- and --> from before and after the connector. Then you need to add the following settings to the new connector setting in the server.xml:
proxyName="GWOSMEE-HOSTNAME" proxyPort="443"
The proxyName should be the hostname for which you will access Groundwork with in the browser (the one for which the ssl cert has been issued).
Your connector setting should look something like this:
<!-- Define a SSL HTTP/1.1 Connector on port 8443
This connector uses the JSSE configuration, when using APR, the
connector should be using the OpenSSL style configuration
described in the APR documentation -->
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
proxyName="GWOSMEE-HOSTNAME" proxyPort="443"
/>
Now restart gwservices:
/etc/init.d/groundwork restart gwservices