Integrate Apache and Tomcat for HTTP SSO

JFrog Platform Administration Documentation
Content Type
Administration / Platform

When Artifactory is deployed as a webapp on Tomcat behind Apache:

  • If using mod_proxy_ajp - Make sure to set tomcatAuthentication="false" on the AJP connector.

  • If using mod_jk - Make sure to use the JkEnvVar REMOTE_USER directive in Apache's configuration.

  • If using mod_proxy (requires mod_proxy_http, mod_headers and mod_rewrite - There are two known working methods that forward the header:

RequestHeader set REMOTE_USER %{REMOTE_USER}e

or

RewriteEngine On
    RewriteCond %{REMOTE_USER} (.+)
    RewriteRule . - [E=RU:%1]
    RequestHeader set REMOTE_USER %{RU}e