HTTPS login with Spring Security redirects to HTTP

Question

I have a Spring web app, secured with Spring Security, running on EC2. In front of the EC2 instance is an Elastic Load Balancer with an SSL cert (https terminates at the load ba

Answer 1

I set requires-channel="any" on all intercept-urls. This allows it to still work in my dev environment where I don't use SSL.

Then, create an apache virtual host that redirects all traffic to the HTTPS version.

  ServerName www.mywebsite.com
  Redirect permanent / https://www.mywebsite.com/