When we Use HTTPS and HTTP

Similar Messages

• Both http and https on struts in tomcat using SSL

  I want to apply both http and https as need, on a single web application on struts. My server is tomcat. I need a complete documentation. Some help me please.

  If you are terminating SSL on ACE then there is no way to do it with one policy because of ssl-proxy command. However it is possible to use same serverfarms with two VIP like this:
  access-list ACL line 10 extended permit ip any any
  rserver host TEST
    ip address 20.20.2.11
    inservice
  serverfarm host TEST
    rserver TEST
      inservice
  ssl-proxy service SSL_SERVER
    key KEY12.PEM
    cert CERT12.PEM
  class-map match-any SSL
    2 match virtual-address 10.10.2.101 tcp eq https
  class-map match-any HTTP
    2 match virtual-address 10.10.2.101 tcp eq http
  policy-map type loadbalance first-match L7_POL
     class class-default
       serverfarm TEST
  policy-map multi-match L7
     class SSL
       loadbalance vip inservice
       loadbalance policy L7_POL
       loadbalance vip icmp-reply
       ssl-proxy server SSL_SERVER
      class HTTP
      loadbalance vip inservice
      loadbalance policy L7_POL
      loadbalance vip icmp-reply
  interface vlan 210
     ip address 10.10.2.1 255.255.255.0
     service-policy input L7
     access-group input ACL
     no shutdown
  interface vlan 220
     ip address 20.20.2.1 255.255.255.0
     no shutdown
  ip route 0.0.0.0 0.0.0.0 10.90.15.1
  However, if you are not doing SSL termination on ACE and you are just doing L4 load-balancing, you will most likely need to configure SSL stickiness, which again leads to having separate policies because of the sticky serverfarms which need separate loadbalance policy lines.

• Upload XML data using XSQL and HTTP Post ?

  Upload XML data using XSLQ and HTTP Post: is that possible ?
  An xsql contains an <xsql:insert-request table="aTable">
  The XML data file follows the ROWSET/ROW paradigm.
  What is the HTML form to upload the xml file to the XSQL ?
  I tried:
  <form action="myXSQL.xsql" method="POST" ENCTYPE="multipart/form-data">
  XML data file to upload: <input type="file">
  <input type="submit">
  </form>
  But the answer of myXSQL is:
  <xsql-status action="xsql:insert-request" result="No posted document to process" />
  Where is the problem ?
  Thank you.

  Hello,
  You are posting your XML file as a parameter therefore you should use the <xsql:insert-params/> tag, not the <xsql:insert-request/>. The insert-request can only handle data not posted via a parameter.
  Usage:
  <form action="myXSQL.xsql" method="GET" ENCTYPE="multipart/form-data">
  XML data file to upload: <input type="file" name="myXML">
  <input type="submit">
  </form>
  in combination with
  <xsql>
  <xsql:insert-params name="myXML" table="your table"/>
  </xsql>
  2 remarks:
  I was not able to succesfully POST the form. The answer was <xsql-status action="xsql:insert-request" result="No posted document to process" />. With GET is was succesfull.
  Second, if you use MSInternet explorer 5 or higher use could post the XML directly (not aw parameter) using an ActiveX object.
  Regards,
  Harm Verschuren

• Load Balance Reverse Poxy using ACE and HTTP Header Sticky

  Dear all,
  I have a reverse proxy that makes HTTP and HTTPS requests to an ACE.
  For implement persistence I want to configure HTTP HEADER Stickyness using the X-Forwarder-For information but I don't know:
  How to implement it ( I'l apreciate a little example about it).
  Which values I need for OFFSET and LENGHT fields.
  Can you help me please?
  Thanks a lot!!

  Hi Cesar.
  Thanks a lot for your answer but I think you misunderstand the question or I'm not explaninig very well
  I don't need to insert anything.
  The serverfarm X will be accesed by a reverse proxy. This reverse proxy already inserts the X-Forearder-From header, so the request from the reverse proxy comes with this header to the serverfarm X.
  The problem is that now, the serverfarm X sticky the client based on source IP. This is a wrong behavior becasue all the request comes form the same source (Reverse proxy) and all the load forwards to the same real IP address.
  This is because I want to change the sticky from source IP to HTTP header and looks for the X-Forwarder-For filed.
  Hop it will clarify the question!

• Maintaining Sessions between http and https

  I have a web application in which I want my users to view the login page over SSL and send the login request via SSL also, but then I want to revert back to http://
  My problem is, and i've seen this problem on loads of boards with no real resolution, during the login I set some objects with in the session that are used to display information in other parts of the site... but the session object is being lost!!!
  I am using Tomcat as my web server, I saw an article on JavaWorld titled "mix protocols transparently in web applications", and apparently to over come this problem if you are using WebLogic 6.1 there is a parameter in the weblogic.xml file that must be configured, but I cant find a similar one on Tomcat!!!
  Thanks in advance

  Thanks a million for the answer, I have got it working now, but I had to do something a little different for any one else who experiances this problem I'll go through it... I set an attribute in the context which was named the the value of the current session id and contianed the session object. Then when leaving the login handeling in my dispatcher servlet I apended the session id to the url of the next jsp called. In this jsp then I retrived the "secure session" object from the context, this so far is what you suggested.
  But then I had to loop through "non secure session" object's attributes and set them in the "non secure session" object, that is I was not just able to reset the "non secure session" object equal to the "secure session" object as when I went on to the next page it was reset to the "non secure session" object again!
  The fact that the session object is changed when moving between http and https is (according to Tomcat buglist) a bug of Tomcat 4.1 and did not occur in tomcat 3.2

• JSF / Switch between HTTP and HTTPS

  Hello!
  I want to switch between HTTP and HTTPS using JSF.
  Under Apache Struts framework I can use struts extension "sslext.jar" to configure switching between http and https in one web application.
  e.g. Login-jsp should be secured, all other jsp's should run unsecured.
  Any ideas?
  regards
  Harald.

  Thanks,
  I made the necessary enhancement for the second phase, password confirmation required when return to SSL zone after leaving it after a succesful login.
  I did the following:
  1) create a class in the application scope and/or singleton class with the servlet paths that require SSL
  2) create a plugin that reads ActionConfigs from the ModuleConfig
  3) create a filter that sets a request scope flag that says that password must re-entered.
  Code Extracts:
  1) MainshopContainer application level parameter singleton class:
  private static HashMap sslZoneMap = new HashMap(50); // key = servlet path of request, example /login.do
  public boolean isInSSLZone(String servletPath)
  return this.sslZoneMap.containsKey(servletPath);
  public void addToSSLZone(String servletPath)
  this.sslZoneMap.put(servletPath,null);
  public int getNumberOfActionsInSSLZone()
  return this.sslZoneMap.size();
  2) Struts plugin
  add a call to loadSSLZoneMap in plugin init method:
  loadSSLZoneMap(config, mainshopContainer);
  private void loadSSLZoneMap(ModuleConfig config, MainshopContainer mainshopContainer)
  throws ServletException
  try {       
  ActionConfig[] actionConfigs = config.findActionConfigs();
  for (int i = 0; i < actionConfigs.length; i++)
  if (actionConfigs.getParameter().indexOf("/jsp/account/") < 0) // /account/* = URL path for SSL zone
  // not found = not ssl zone
  System.out.println("loadSSLZoneMap, following actionConfigs excluded from SSL Zone: "+actionConfigs[i].getPath());
  else
  // found = ssl zone
  String servletPath = actionConfigs[i].getPath()+".do";
  mainshopContainer.addToSSLZone(servletPath);
  System.out.println("loadSSLZoneMap, following servletPath added to SSL Zone: "+servletPath);
  System.out.println("loadSSLZoneMap, number of actions in SSL Zone: "+mainshopContainer.getNumberOfActionsInSSLZone());
  catch (Exception ex)
  ex.printStackTrace();
  throw new ServletException("Exception caught in loadSSLZoneMap: "+ex.toString()+" Initialization aborted.",ex);
  3)
  public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
  throws IOException, ServletException {
  HttpServletRequest req = (HttpServletRequest) request;
  HttpServletResponse res = (HttpServletResponse) response;
  String servletPath = req.getServletPath();
  boolean secure= this.mainshopContainer.isInSSLZone(servletPath);
  The wole picture:
  The filter adds a RequestDTO object that includes all request parameters, one of them is the secure flag.
  I have a session scope class UserContainer that includes all the session parameters, one of them is the lastRequestDTO.(last made request)
  At the end of all my jsp's I set the lastRequestDTO variable.
  In that method I set the passwordConfirmationRequired flag if needed:
  public void setLastRequestDTO(RequestDTO _lastRequestDTO)
  if (this.lastRequestDTO != null && this.lastRequestDTO.isSecure() != _lastRequestDTO.isSecure())
  this.setPasswordConfirmationRequired(true);
  this.lastRequestDTO = _lastRequestDTO;
  I read the passwordConfirmationRequired in all my jsp's in the SSL zone that allow editing or deleting and if that flag is true, a valid password must be re-entered in order to make the updates.
  When the password is OK I reset the passwordConfirmationRequired to false.
  I need some help for the first phase, that is SSL setup for all actions related to jsp's with url path /account/*
  I tought I could define it in the web.xml:
  <security-constraint>
  <web-resource-collection>
  <web-resource-name>All Account Related Pages</web-resource-name>
  <url-pattern>/account/*</url-pattern>
  </web-resource-collection>
  <user-data-constraint>
  <transport-guarantee>CONFIDENTIAL</transport-guarantee>
  </user-data-constraint>
  </security-constraint>
  but that doesn't work and finnaly understood why:
  Example: /WEB-INF/jsp/account/login.jsp corresponds to /login.do
  The url pattern /account/* at the container level is never encountered.
  Is it allowed to declare the following action path: /account/login instead of /login?
  If yes I could add following prefix /account to all my action paths and forward paths and this could resolve my problem.
  What's your opinion?
  If no, would your library resolve this?
  Will all the Struts/JSP/JSTL url generating tags pick-up the required protocol (http/https) according to your configuration file?
  Regards
  Fred

• Please give me advices when to use black and white sliders in LR4.

  Please give me advices when to use black and white sliders in LR4.

  I use blacks and white sliders on every photo (this does not necessarily imply non-zero values). I consider them as important as any other slider. Not optional, not for fine tuning - include consideration each iteration.
  Although that is contrary to what Adobe and many "experts" recommend, I tried doing it their way too but I could not get the results I wanted in most cases.
  The "concept" and original intent is for fine tuning, but the implementation is not. I often set whites to +20, +30, +40. This has a radical effect on overall exposure which is the most important thing to get right in PV2012. And it generally requires compensatory adjustment of highlights, shadows, and sometimes contrast...
  Likewise, optimal shadow toning can include radical blacks adjustment  - sorry Adobe/experts/defenders, but for me - it's true. And, blacks slider, like whites, affects entire histogram, a lot.
  Summary:
  ========
  If you want to keep things as simple as possible, then use sparingly and use last (gag), but if you want your photos to look how you want them to look - as good as possible, then use liberally, and pay the price...
  More info here: http://forums.adobe.com/message/4259091#4259091
  Rob

• When i use Firefox and do a Google search, find what i need and click on the link I keep getting automatically redirected to another search site

  When i use Firefox and do a Google search, find what i need and click on the link I keep getting automatically redirected to another search site called http://www.scour.com
  Can someone tell me if this is a problem with Google or Mozilla? or both? or neither?

  This type of behaviour can be caused by malware. Try running several malware scanners. It is best to run several as each will pick up things that the others miss. Some scanners you can try are:
  * [http://www.malwarebytes.org/mbam.php Malwarebytes]
  * [http://www.superantispyware.com/ SUPERAntiSpyware]
  * [http://www.lavasoft.com/products/ad_aware_free.php Ad-Aware]
  * [http://www.microsoft.com/windows/products/winfamily/defender/default.mspx Windows Defender]
  * [http://www.safer-networking.org/en/home/index.html Spybot S&D]
  This link may help - http://deletemalware.blogspot.com/2010/02/remove-google-redirect-virus.html
  If the above malware scanners do not find any malware or can not clear it, you should consider posting in one of these forums for specialized malware removal help:
  * http://forums.spybot.info/
  * http://www.spywarewarrior.com/index.php
  * http://forum.aumha.org/
  * http://www.bleepingcomputer.com/forums/
  * http://www.spywareinfoforum.com/

• IWeb protocol support for anything OTHER than http and https

  I am extremely disappointed in iWeb. It doesn't even seem to be able to do very simple things.
  All I want to do is to create HTML links to external pages with protocols other than "http" and "https" and it always prepends "http" to the beginning of the URL. This is really really really annoying.
  Apple I hope you are paying attention. iWeb is poorly designed. You are trying to anticipate what end users want...this is a development practice right from the Microsoft Windows Developer book. I sure how the next update to iWeb works properly. I'm so upset about all this...I can't publish podcasts to the web because of all the foolishness with how you handle that, and the confusing directory name issues.
  My podcast URL looks like this:
  http://itpc://www.mysite.com/podcast/News/rss.xml
  I tried (unsuccesfully) to manually create the podcast since the automated version created this:
  itpc://www.bradyconsult.com/podcast/podcast/News/rss.xml
  I'm sure I could fiddle with iWEb and get this to work, but why should I? I've already fiddled with it and simple changes to my site structure totally screw this up. Not to mention, that when it did work, it didn' t even post all my podcasts!!! It skipped the first one and the last one.
  And, for those wondering, i'm not technically clueless. I have a podcast working just fine on two other sites. The appeal to iLife with iWeb and the new podcast feature of GarageBand was to bring all this together in one easy to use, nice package. But it's not nice. Garageband's update is awesome! But iWeb and it's attempts to work with the other iApps is gruesome.
  I expect this garbage from Microsoft...not Apple.
  Can anyone recommend a workaround (and yes, I understand I can manually edit HTML...but I was hoping for a workaround within iWeb) to create html links with support for protocols (aside from http and https) ??
  It's bad enough I have to publish to a folder and then FTP to my site since apple makes that exceedingly difficult to do (I'm sure to increase .mac sales) but all this other foolishness is just bunk. I feel ripped off on my iLife '06 purchase.
  Grrrrrrr......
  G5 Dual 2.3 GHz   Mac OS X (10.4.5)  

  I don't know if this helps you any, but in my humble
  opinion Drake is absolutely correct. iWeb really
  wasn't designed for the pro site builder; it's just
  an entry level site builder. Moreover, it isn't
  really geared for the professional world of internet
  marketing; I think it is really more for the home
  and family group who have at least one thing in
  common: Macs.
  I don't think it was even designed for them. I mean, you can't create an ftp: link, you can't manage multiple site files, there's no way to add "aim:" or "yahoo:" links, etc. It's not mac's they're supporting. It's .mac in particular, maybe, if that.
  The art is kinda nice, but really, the grief in trying to do simple things like a basic href is just absurd. I can do these things easily in Pages. iWeb should certainly be no more difficult.
  Btw, I'm here because I have the same problem - overly restrictive URL's on hyperlinks. I'll probably solve my with a trivial sed script. But even that's tough because they mangle the url. It's not easy to find an encoding suitable for automatic post processing.
  Automator anyone?

• Issues deploying a cloud service with two endpoints (HTTP and HTTPS)

  I ran into an issue this week in the azure portal when I tried to deploy a cloud service with two endpoints.  (I am using the azure sdk 2.2).  I deployed the cloud service to production with the following endpoints in the ServiceDefinition.csdef:
  <WebRole name="NameChanged.Web" vmsize="Small">
  <Sites>
  <Site name="Web">
  <Bindings>
  <Binding name="HttpsIn" endpointName="HttpsIn" />
  <Binding name="HttpIn" endpointName="HttpIn" />
  </Bindings>
  </Site>
  </Sites>
  <Endpoints>
  <InputEndpoint name="HttpIn" protocol="http" port="80" />
  <InputEndpoint name="HttpsIn" protocol="https" port="443" certificate="NameChangedCertificate" />
  </Endpoints>
  <Imports>
  <Import moduleName="Diagnostics" />
  </Imports>
  <Certificates>
  <Certificate name="NameChangedCertificate" storeLocation="LocalMachine" storeName="My" />
  </Certificates>
  </WebRole>
  I followed the directions here (http://azure.microsoft.com/en-us/documentation/articles/cloud-services-configure-ssl-certificate/)
  in Step 3 for deploying the cloud service to the azure portal.  And HTTP worked just fine, but the HTTPS endpoint didn't work, we would get a 502 error whenever we tried to access the service via HTTPS.
  We spent a lot of time to debug and see why HTTPS wasn't working, but everything we tried resulted in the same result:  502 error code when accessing the site
  via HTTPS.
  The only way that we were able to get HTTPS working for the cloud service in azure, was to completely delete our instance in the azure portal, and then do a two step deployment:
  Step 1 - Remove the HTTP endpoint from our ServiceDefinition.csdef, like so:
  <Site name="Web">
  <Bindings>
  <Binding name="HttpsIn"
  </Bindings>
  </Site>
  </Sites>
  <Endpoints>
  <InputEndpoint name="HttpsIn" protocol="https" port="443" certificate="staging" />
  </Endpoints>
  </WebRole>
  We then deployed the service to the azure portal.  AND THE SERVICE WORKED WITH HTTPS!!!
  Step 2 - We added the HTTP endpoint back into the ServiceDefinition.csdef, redeployed and both HTTP and HTTPS worked on the site.
  I wanted to post this to help others that may have the same issue, and to see if anyone else has experienced this same thing?  Is this an issue in the azure 2.2 SDK?  This seems like a work around for getting both HTTP and HTTPS endpoints for a
  cloud service, and it seems "wrong".  Does anyone have a better way to do this?
  Tim

  Hi Tim;
  This seems to be an very useful workaround thanks for sharing it. Hopefully this will come in handy for many of us.
  Warm Regards
  Prasant

• PORTAL ACCESS  THROUGH HTTP and HTTPS BOTH

  Hi,
  Is it possible to make the portal listen on both http and https ports at the same time? What is the required configuration for the same?
  Please let me know for any other details.
  Any input is highly appreciated.
  regards,
  Chandra

  Hello Chandra,
  you can activate SSL in the J2EE engine and then you have both Protocolls avaliable. The documentaiton can be found at <a href="http://help.sap.com/saphelp_nw04/helpdata/en/f1/2de3be0382df45a398d3f9fb86a36a/frameset.htm">Configuring the Use of SSL on the SAP J2EE Engine</a>.
  Regards
  Gregor

• How to protect both access (http and https) with a Policy Agent

  Hi,
  During the installation of a web Policy Agent (i.e. Policy Agent for IIS) we have to choose the protocol (and port) of the web server we want to protect.
  If we have an IIS with secure (https) and non secure (http) applications, how we manage this scenario with the policy agent?
  Regards,

  Hi,
  Finally, i have installed the agent in IIS5 in the non secure port (http) and in fact it detects both access (http and https) fine.
  The problem now is that if i try to access to a non secure url ( http://mynonsecureapp.com ) all works fine, the agent redirects to https://myaccessmanager.com:443/amserver/UI/Login?goto=http://mynonsecureapp.com but when i try to access to a secure url ( https://mysecureapp.com ) the agent try to redirects me to: https://myaccessmanager.com:443/amserver/UI/Login?goto=http://mysecureapp.com (notice that the agent removes the 's' in the url).
  The amAgent log file shows:
  +2008-07-17 09:44:08.296MaxDebug 656:d8f6b0 PolicyAgent: am_web_is_notification(), https://sigcit.agp.gva.es:443/fullcitriweb is not notification url http://sigcit.agp.gva.es:80/amagent/UpdateAgentCacheServlet?shortcircuit=false.+
  +2008-07-17 09:44:08.296 Warning 656:d8f6b0 PolicyAgent: OnPreprocHeaders(): Access Manager Cookie not found.+
  +2008-07-17 09:44:08.296 Debug 656:d8f6b0 PolicyAgent: am_web_is_access_allowed(): url 'https://sigcit.agp.gva.es:443/fullcitriweb' path_info ''.+
  +2008-07-17 09:44:08.296MaxDebug 656:d8f6b0 PolicyAgent: am_web_is_access_allowed(): processing url http://sigcit.agp.gva.es:80/fullcitriweb.+
  +2008-07-17 09:44:08.296 Debug 656:d8f6b0 PolicyAgent: am_web_is_access_allowed(): client_ip 172.27.65.62 not found in client ip not enforced list+
  Any ideas?
  Regards,
  Edited by: idm_oceanic on Jul 17, 2008 1:33 AM

• WCCP Configuration HTTP and HTTPS

  Looking for anyone that might have a clue in on this, im attempting to configure a pair of routers to use WCCP to redirect HTTP and HTTPS traffic to two content keeper devices. The network im building is going to be used for a guest internet connection where defining proxies on end devices would be unusable.
  I'll drop the configs in below but for now what i have are 2 cisco 3925 routers configured for HSRP. 2 content keeps running squid for the cache engine. with my current configurations, I have wccp web-cache and wccp service 70 configured (all 4 devices are available/usable in both services). this is a layer 2 setup. HTTP traffic is picked up and redirected to the content keepers without issue. https traffic does not appear to be detected by the routers. I have chosen not to use ACLS for WCCP and use the redirect in because we want to capture http(s) traffic from all hosts.
  for HTTP, I see hits counters rise on the router under show ip wccp, i see hit counters for the content keepers increase, i see http traffic on the firewall from the content keepers and I get the web page on the device
  For HTTPS I do not see hit counters under wccp increase, I do not see any traffic on the content keepers bridge, and i see traffic on the firewall from the hosts orginal ip address.
  interface0/2 internal LAN
  interface 0/0 content keepers (no WCCP commands)
  interface 0/1 gateway firewalls. (no WCCP commands
  ip wccp check services all
  ip wccp web-cache
  ip wccp 70
  interface GigabitEthernet0/2
  description To Lan
  ip address x.x.x.x
  ip wccp web-cache redirect in
  ip wccp 70 redirect in
  standby 1 ip x.x.x.x
  standby 1 priority 150
  standby 1 preempt
  duplex auto
  speed auto
  Global WCCP information:
      Router information:
          Router Identifier:                   x.x.x.2
      Service Identifier: web-cache
          Protocol Version:                    2.00
          Number of Service Group Clients:     2
          Number of Service Group Routers:     2
          Total Packets Redirected:            17999
            Process:                           0
            CEF:                               17999
          Service mode:                        Open
          Service Access-list:                 -none-
          Total Packets Dropped Closed:        0
          Redirect access-list:                110
          Total Packets Denied Redirect:       0
          Total Packets Unassigned:            0
          Group access-list:                   -none-
          Total Messages Denied to Group:      0
          Total Authentication failures:       0
          Total GRE Bypassed Packets Received: 0
            Process:                           0
            CEF:                               0
      Service Identifier: 70
          Protocol Version:                    2.00
          Number of Service Group Clients:     2
          Number of Service Group Routers:     2
          Total Packets Redirected:            0
            Process:                           0
            CEF:                               0
          Service mode:                        Open
          Service Access-list:                 -none-
          Total Packets Dropped Closed:        0
          Redirect access-list:                -none-
          Total Packets Denied Redirect:       0
          Total Packets Unassigned:            0
          Group access-list:                   -none-
          Total Messages Denied to Group:      0
          Total Authentication failures:       0
          Total GRE Bypassed Packets Received: 0
            Process:                           0
            CEF:                               0
  Show details and show service attached.

  Hello Josh,
  1. Yes, port-specific ACL is not supported. But it is not a big problem. Usually on WCCP server you can configure very specific bypass (Cisco WSA supports that - do not know about Sophos). For bypassed traffic WCCP server will reinject that packet in GRE and send back to ASA which will decapsulate it and send as normal packets.
  It's a good design, because you can have very granural bypass policy on WCCP server.
  2. Yes, configuration is correct, although it's better to be more specific (not send all traffic to WCCP if there is no need for that).
  3. Yes, you can use deny in redirect-list to exclude traffic.
  4. WCCP keepalives are being send by WCCP server by default every 10 seconds. If ASA does not see that replies for some time it marks server as dead and uses other ones.
  Michal

• In OS 10.6 and Safari 6, http: and https: are no longer displayed.

  In OS 10.6 and Safari 6, http: and https: are no longer displayed.
  Can this behaviour be restored??
  In 10.5.8 with Safari 5.x some sites will show up as https: while the same
  site in Safari 6 may, or may not, show the grey or green box https: box.
  Is this this a certificate problem?
  Can I set the address bar to for the URL prefix?
  I have both systems on separate disks and consistantly see this behaviour on some sites.
  How can I feel assured that a site is or is not secure using Safari 6??
  A relative also shares this same issue
  Thanks for your Help!

  Safari 6 : http is not shown in the URL (& Search combined) bar, but https is always shown, often with a symbol lock. The URL address font is black, after the / it is grey.
  All as expected.
  Best.

• Clarification for HTTP and HTTPS Sender Adapter

  Hello together,
  after some investigating concering scenarios with HTTP and HTTPS sender there are still some points that are not absolutely clear for me.
  I know that it is not necessary to configure an HTTP sender communication channel. However if I want to enforce HTTPS sender communication I think I need to add an HTTP sender communication channel with security settings enabled as well as a sender agreement.
  To my understanding these settings are activated on the Adapter Engine (Java Stack), HTTP requests however call the ABAP stack directly. How does this work exactly?
  Thank you very much for your additional explanation.

  Hi,
  see below is the format for HTTP URL
  http://<hostname:port>/<path>?<query-string>
  now query straing can only have values as given in the below link
  http://help.sap.com/saphelp_nw2004s/helpdata/en/43/64db4daf9f30b4e10000000a11466f/content.htm
  a way around can be to specify the payload for &party or &agency or &schema(if you are not using them) but then XI should be able to identify them correctly(which i m not sure how it will do),secondly the length can be a constraint coz if you add the whole payload ,the URL will become really long.
  so i would suggest you not to use it but if you really have to,then explore it properly first and then only use
  plz reward points
  thnq