javascript python java c# php android html jquery c++ css ios mysql sql r node.js arrays reactjs c asp.net json ruby-on-rails .net sql-server swift python-3.x objective-c django angular angularjs excel regex pandas ruby iphone ajax linux xml vba asp.net-mvc spring laravel database wordpress typescript string wpf mongodb windows xcode postgresql bash oracle git vb.net amazon-web-services multithreading list firebase flutter eclipse spring-boot dataframe azure react-native algorithm docker macos forms image visual-studio scala powershell function twitter-bootstrap numpy api performance selenium winforms python-2.7 matlab vue.js sqlite apache hibernate entity-framework loops rest shell facebook express android-studio csv linq maven qt swing unit-testing file tensorflow

[ACCEPTED]-https only in google app engine-maven-gae-plugin

Accepted answer
Score: 67

It is possible to configure the individual 7 handlers to require HTTPS in the app.yaml 6 file in the WEB-INF folder as described 5 here: Java Application Configuration Using app.yaml - Google App Engine.

You just have to add these two words 4 to your app.yaml file under the appropriate url entry:
secure: always

For 3 example:

- url: .*
  script: main.app
  secure: always

Then if a user tries to access the 2 URL with HTTP she will be automatically 1 redirected to HTTPS. Pretty cool.

Score: 16

If you want to stick with "web.xml" rather 3 than using the "app.yaml" option 2 (which will overwrite your web.xml & appengine-web.xml 1 files at deploy time), you can add in:

<security-constraint>
    <web-resource-collection>
        <web-resource-name>everything</web-resource-name>
        <url-pattern>/*</url-pattern>
    </web-resource-collection>
    <user-data-constraint>
        <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>
</security-constraint>

Reference: https://cloud.google.com/appengine/docs/java/config/webxml#Security_and_Authentication

Score: 4

Are you using your own domain? At present, GAE 4 supports SSL for *.appspot.com domains only. They 3 have been promising SSL support for non-appspot domains 2 for some time now and we're all waiting 1 for news on that front.

Score: 1

This is for future folks !!!

  1. In java adding the 2 code below in my web.xml file worked for me 

    <security-constraint>
   <web-resource-collection>
      <web-resource-name>HTTPS redirect</web-resource-name>
      <url-pattern>/*</url-pattern>
   </web-resource-collection>
   <user-data-constraint>
      <transport-guarantee>CONFIDENTIAL</transport-guarantee>
   </user-data-constraint>
</security-constraint>

  2. For 1 other project add secure: always under all urls in app.yaml file

Score: 0

Add this to your web.xml file

<security-constraint>
        <web-resource-collection>
            <web-resource-name>all</web-resource-name>
            <url-pattern>/*</url-pattern>
        </web-resource-collection>
        <user-data-constraint>
            <transport-guarantee>CONFIDENTIAL</transport-guarantee>
        </user-data-constraint>
    </security-constraint>

0

Source: stackoverflow.com

More Related questions

How to clear cookies from NSHTTPCookieStorage more then once?

What is the mechanism of the `ghs.google.com` domain?

How to enable {% trans %} tag for jinja templates?

NoSuchMethodError: org.slf4j.helpers.MessageFormatter.format

cron.yaml in Google App Engine: how to schedule task every hour at specific minute?

Sending automated emails from Firebase through Google Cloud Platform (no third parties)

Java: dynamic properties

How to make a field conditionally optional in WTForms?

How to Create a Blob from Bitmap in Android Activity?

EOFError: EOF read where object expected