LG: interesting but if there were security vulnerabilities in Jetty, in the login.jsp page, or by crafting a SESSION cookie.dat file then this may pose issues.
Yes, it works. Here I forwarded all traffic on port 9091 (e.g. HTTPS), but one could protect that with mod_auth. For Fastpath, only ProxyPass (forward) port 9090 (non-https) to dir /webchat/. Another way to prevent traffic to the admin console, simply use rewrite rules.