Tomcat http强制跳转https

** 最新tomcat http强制跳转https 最新tomcat http强制跳转https，支持tomcat配置301永久重定向和302临时重定向。匹配百度站长全站开启https认证 ** 1.编辑tomcat/conf/server.xml找到关于SSL的字段

<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
	SSLEnabled="true" maxThreads="150" scheme="https"
	secure="true" clientAuth="false" sslProtocol="TLS"
	keystoreFile="D:\\home\\tomcat.keystore" keystorePass="123456"
	truststoreFile="D:\\home\\tomcat.keystore" truststorePass="123456" />

（tomcat要与生成的服务端证书名一致） 属性说明： clientAuth:设置是否双向验证，默认为false，设置为true代表双向验证 keystoreFile:服务器证书文件路径 keystorePass:服务器证书密码 truststoreFile:用来验证客户端证书的根证书，此例中就是服务器证书 truststorePass:根证书密码

2.编辑 tomcat/conf/web.xml在</welcome- file-list>添加：

<login-config>
    <!-- Authorization setting for SSL -->
    <auth-method>CLIENT-CERT</auth-method>
    <realm-name>Client Cert Users-only Area</realm-name>
</login-config>
<security-constraint>
    <!-- Authorization setting for SSL -->
    <web-resource-collection >
        <web-resource-name >SSL</web-resource-name>
        <url-pattern>/*</url-pattern>
    </web-resource-collection>
    <user-data-constraint>
        <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>
</security-constraint>