I have deployed a very simple Grails test app on Cloud Foundry which uses spring-security for the login page.
I want to require HTTPS access for this login page so that passwords are not sent in clear text.
First thing I did was to browse to my test app using HTTPS which worked fine, so that confirmed that Cloud Foundry can service HTTPS requests for my app.
Next I added the following to Config.groovy to require HTTPS access to my pages:
grails.plugins.springsecurity.auth.forceHttps = true
grails.plugins.springsecurity.secureChannel.definition = [
'/': 'REQUIRES_SECURE_CHANNEL'
]
Now when I try to deploy using grails cf-update
it hangs when Trying to start application...
If if I remove the requirement for HTTPS it succeeds.
I'm guessing that maybe there is a problem with the check for whether the application has started. Is this using a HTTP url which is then getting redirected to HTTPS as I cannot see any problems in the logs?
Any ideas?