-
Products and Technology
By Category
-
Groups
Activity Groups
Industry Groups
Influence and Feedback Groups
Interest Groups
Location Groups
Customer Only Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
Products
- Autonomous Enterprise
- Artificial intelligence
- Data and analytics
- Autonomous Suite
- Technology platform
- Transformation management
- Midsize business solutions
- Financial management
- Spend management
- Supply chain management
- Human capital management
- Customer experience
- Enterprise resource planning
- Business network
- Sustainability management
- SAP Store
- Try SAP
- View all industries
- Partners
- Services
Learning and Support
-
- Products and Technology
- Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
- Explore SAP
-
Products
- Products
- Autonomous Enterprise
- Artificial intelligence
- Data and analytics
- Autonomous Suite
- Technology platform
- Transformation management
- Midsize business solutions
- Financial management
- Spend management
- Supply chain management
- Human capital management
- Customer experience
- Enterprise resource planning
- Business network
- Sustainability management
- SAP Store
- Try SAP
- View all industries
- Partners
- Services
- Learning and Support
- About
- SAP Community
- Products and Technology
- CRM and Customer Experience
- CRM and CX Q&A
- Setting up SSL/HTTPS - Hybris (TC) / Apache / Spri...
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Setting up SSL/HTTPS - Hybris (TC) / Apache / Spring Security
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on ‎2014 Sep 24 1:31 PM
- SAP Managed Tags
- SAP Commerce Cloud
Is there a recommended approach or an example config for configuring SSL (with Apache as a proxy for Tomcat - port 80 and 443)?
We had a problem reaching HTTPS-pages , we'd get an infinite redirect loop when trying to reach the login/register page.
To 'solve' this, we have set all security-intercept rules in our storefront spring-security.xml to HTTP and let Apache take care of enforcing the SSL-encryption. As a consequence, some functionality in the storefront doesn't work anymore such as setting a GUID cookie etc., some methods check if the request is secure ( by calling request.isSecure() ). Since the require-channel is set to HTTP, hybris thinks the requests are insecure, but in reality they are secure. Removing these request.isSecure() checks does the trick, but this entire approach feels hacky and I'd like to do this the right way...
Thanks for your advice on this!
Need more details?
Request clarification before answering.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This has been covered many times on the Forum. Shame this site doesn't include any of that info. From three years ago.
How is your Apache marking the channel as secure? One assumes it will add a HTTP Header to requests, which is fairly standard. Then you need a ChannelProcessor to pick this up.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Bluesky- Stay Certified in SAP Commerce Cloud with Confidence: Expert Guidance for Business Users and Develop in CRM and CX Blog Posts by SAP
- Switching from HTTPS to HTTP to Avoid SNI Validation Leads to 301 Redirects in SAP Commerce Cloud in CRM and CX Blog Posts by SAP
- Clarification on MFA Flow Implementation with options of TOTP and emailOTP in CRM and CX Q&A
- SAP Engagement Cloud Q2 2026 Release in CRM and CX Blog Posts by SAP
- A Big Leap Beyond C4C: Changes in Communication Systems & Authentication in Sales Cloud V2 - Part 1 in CRM and CX Blog Posts by Members
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.