Re: [OT] [Fwd: TomEE Professional Support]
On 13/11/2013 14:53, Gurkan Erdogdu wrote: Hello all, When an Apache project founder[1] starts spamming the Apache community, Sorry but how could you say spamming the Apache Community? without knowing me and how I have been contributing to the Apache community and projects? It's obviously unsolicited commercial email, which is the common base definition of spam. It also seems to me that sending it falls below the standard that one expects from members of the Apache community - I don't recall it happening before. there can and ought to be consequences. What do you mean? Doesn't Apache have some minimu standards for this? He seems to be a project committer, but hasn't contributed any code in about a year. I am PMC Chair of OpenWebBeans project. I think you don't know the roles of PMC Chair, please learn from here before talking. Lastly, I get everyday huge amount of such marketing emails from all big known software vendors. I am sure you also receive such emails. If I am not interested, I simply unsubscribe from the list, this is not a really big problem to discuss! If you received such email from my email address, and not interested please unsubscribe from the list and you will never get a such email again. Best Gurkan On Wednesday, November 13, 2013 4:24 PM, Tim Watts t...@cliftonfarm.org wrote: On Wed, 2013-11-13 at 14:56 +0100, Leon Rosenberg wrote: I got it too. I think its easier to delete and forget it, as to debate about it. ;-) When an Apache project founder[1] starts spamming the Apache community, there can and ought to be consequences. ___ [1] At least that's his claim in the email. Their website doesn't post any PMC member list that I could find. Doesn't Apache have some minimum standards for this? He seems to be a project committer, but hasn't contributed any code in about a year. regards Leon On Wed, Nov 13, 2013 at 2:15 PM, André Warnier a...@ice-sa.com wrote: Hi. I got the following email in my personal email inbox. Isn't there some rule, or at least some matter of self-control, in not using email addresses collected on this list for commercial promotion ? Original Message From: - Wed Nov 13 13:48:37 2013 X-Mozilla-Status: 0001 X-Mozilla-Status2: Return-Path: bounce-mc.us3_22715643.227889-aw=ice-sa.com@mail173. us4.mcsv.net X-Original-To: a...@ice-sa.com Delivered-To: andre.warn...@ice-sa.com Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=205.201.128.173; helo=mail173.us4.mcsv.net; envelope-from=bounce-mc.us3_22715643.227889-aw=ice-sa.com@ mail173.us4.mcsv.net; receiver=a...@ice-sa.com Received: from mail173.us4.mcsv.net (mail173.us4.mcsv.net[205.201.128.173]) by tor.combios.es (Postfix) with ESMTP id DCFAB3C0AD2 for a...@ice-sa.com; Wed, 13 Nov 2013 13:48:25 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=k1; d= mail173.us4.mcsv.net; h=Subject:From:Reply-To:To:Date:Message-ID:List- Unsubscribe:Sender:Content-Type:MIME-Version; i=gurkanerdogdu=3Dyahoo.com@ mail173.us4.mcsv.net; bh=Mxp5nGTBAhJ4tiDlAEgNxpJYWwM=; b=Ocyx3ymgzmK11vA3/+524g885jWe0hlVlLQwFLGw052EepxX/u3JqrGTIZv6+afps8yWKhHqpMRz DR1JqSg9JPIfmn6xVzPvr5X/5Ve5g78ZKmZm5BmxmCRNyqB4fIc5+iLuIas31KKRImjm5cpEh8P5 RAauIo5RquVVHcBgVbU= DomainKey-Signature: a=rsa-sha1; c=nofws; q=dns; s=k1; d= mail173.us4.mcsv.net; b=BmLvRK7R5zl2/VRFdLZ09BJy50nOQFBXLcUoHLPQqfO o7DkgQbmi8Ug7bwNHNpotAwBLuXBIp2sW w8nzt6XeIcHys59itcvcLBKCt6zoR1 vBv1RFw1OMSwlwuilV8u0zcNtNcav+LdWoW8zAnksyWOWL /knOPWkSMr9PbtPhtB4=; Received: from (127.0.0.1) by mail173.us4.mcsv.net id hgdqg0174lg1 for a...@ice-sa.com; Wed, 13 Nov 2013 12:47:58 + (envelope-from bounce-mc.us3_22715643.227889-aw=ice-sa@mail173.us4.mcsv.net) Subject: TomEE Professional Support From: Apache TomEE Support gurkanerdo...@yahoo.com Reply-To: Apache TomEE Support gurkanerdo...@yahoo.com To: a...@ice-sa.com Date: Wed, 13 Nov 2013 12:47:58 + Message-ID: 9781cf0ccdac7604f1f7fd52ea052bfdbb3.20131113124746@mail173. us4.mcsv.net X-Mailer: MailChimp Mailer - **CID105b909b64a052bfdbb3** X-Campaign: mailchimp9781cf0ccdac7604f1f7fd52e.105b909b64 X-campaignid: mailchimp9781cf0ccdac7604f1f7fd52e.105b909b64 X-Report-Abuse: Please report abuse for this campaign here: http://www.mailchimp.com/abuse/abuse.phtml?u=9781cf0ccdac7604f1f7fd52eid= 105b909b64e=a052bfdbb3 X-MC-User: 9781cf0ccdac7604f1f7fd52e x-accounttype: ff List-Unsubscribe: mailto:unsubscribe-9781cf0ccdac7604f1f7fd52e- 105b909b64-a052bfd...@mailin1.us2.mcsv.net?subject=unsubscribe, http://blogspot.us3.list-manage.com/unsubscribe?u= 9781cf0ccdac7604f1f7fd52eid=b75a8245a1e=a052bfdbb3c=105b909b64 Sender: Apache TomEE Support gurkanerdogdu=yahoo.com@ mail173.us4.mcsv.net x-mcda: FALSE Content-Type: multipart/alternative; boundary=_--=_MCPart_ 1458955636 MIME-Version: 1.0 20% off TomEE Support from Java
RE: FormAuthenticator: saveRequest does not preserve body
Yes we have our own Valve which, through the inheritance structure of Picketlink, extends FormAuthenticator. When it comes to saveRequest() the is.read() returns -1. If in.read() returns -1 it means that the stream has no more data in it. Does that mean the stream has already been read? Or reset? Because I can see the form data in the coyote request input buffer. It is just the stream that can't be read. is.available() also returns 0. Stefan - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: [OT] [Fwd: TomEE Professional Support]
Pid wrote: On 13/11/2013 14:53, Gurkan Erdogdu wrote: Hello all, When an Apache project founder[1] starts spamming the Apache community, Sorry but how could you say spamming the Apache Community? without knowing me and how I have been contributing to the Apache community and projects? It's obviously unsolicited commercial email, which is the common base definition of spam. It also seems to me that sending it falls below the standard that one expects from members of the Apache community - I don't recall it happening before. To add maybe a final note to this thread : From further analysis, it seems that in order to send these undoubtedly spam emails, Gurkan seems to have used the services of an organisation which, according to their own website at least (http://mailchimp.com/legal/privacy/) is taking some steps to insure that their lists of recipients would not be spread further. Whether this was intentional or not, that is to his credit. As an information professional, I feel however that I should add that this is far from being the general case, and that in my experience it happens frequently that such recipient lists are subsequently copied, re-distributed, re-sold or leaked to other related-or-not entities, even by organisations which very ponderously /pretend/ otherwise on their public website (or in public hearings, for that matter). - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: [OT] [Fwd: TomEE Professional Support]
I received this too. This is deeply wrong. I subscribed to Apache lists, not a commercial one. I look forward to seeing what the investigation reveals and what actions take place. On 14 November 2013 08:25, Pid p...@pidster.com wrote: On 13/11/2013 14:53, Gurkan Erdogdu wrote: Hello all, When an Apache project founder[1] starts spamming the Apache community, Sorry but how could you say spamming the Apache Community? without knowing me and how I have been contributing to the Apache community and projects? It's obviously unsolicited commercial email, which is the common base definition of spam. It also seems to me that sending it falls below the standard that one expects from members of the Apache community - I don't recall it happening before. there can and ought to be consequences. What do you mean? Doesn't Apache have some minimu standards for this? He seems to be a project committer, but hasn't contributed any code in about a year. I am PMC Chair of OpenWebBeans project. I think you don't know the roles of PMC Chair, please learn from here before talking. Lastly, I get everyday huge amount of such marketing emails from all big known software vendors. I am sure you also receive such emails. If I am not interested, I simply unsubscribe from the list, this is not a really big problem to discuss! If you received such email from my email address, and not interested please unsubscribe from the list and you will never get a such email again. Best Gurkan On Wednesday, November 13, 2013 4:24 PM, Tim Watts t...@cliftonfarm.org wrote: On Wed, 2013-11-13 at 14:56 +0100, Leon Rosenberg wrote: I got it too. I think its easier to delete and forget it, as to debate about it. ;-) When an Apache project founder[1] starts spamming the Apache community, there can and ought to be consequences. ___ [1] At least that's his claim in the email. Their website doesn't post any PMC member list that I could find. Doesn't Apache have some minimum standards for this? He seems to be a project committer, but hasn't contributed any code in about a year. regards Leon On Wed, Nov 13, 2013 at 2:15 PM, André Warnier a...@ice-sa.com wrote: Hi. I got the following email in my personal email inbox. Isn't there some rule, or at least some matter of self-control, in not using email addresses collected on this list for commercial promotion ? Original Message From: - Wed Nov 13 13:48:37 2013 X-Mozilla-Status: 0001 X-Mozilla-Status2: Return-Path: bounce-mc.us3_22715643.227889-aw=ice-sa.com@mail173. us4.mcsv.net X-Original-To: a...@ice-sa.com Delivered-To: andre.warn...@ice-sa.com Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=205.201.128.173; helo=mail173.us4.mcsv.net; envelope-from=bounce-mc.us3_22715643.227889-aw=ice-sa.com@ mail173.us4.mcsv.net; receiver=a...@ice-sa.com Received: from mail173.us4.mcsv.net (mail173.us4.mcsv.net[205.201.128.173]) by tor.combios.es (Postfix) with ESMTP id DCFAB3C0AD2 for a...@ice-sa.com; Wed, 13 Nov 2013 13:48:25 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=k1; d= mail173.us4.mcsv.net; h=Subject:From:Reply-To:To:Date:Message-ID:List- Unsubscribe:Sender:Content-Type:MIME-Version; i=gurkanerdogdu=3Dyahoo.com@ mail173.us4.mcsv.net; bh=Mxp5nGTBAhJ4tiDlAEgNxpJYWwM=; b=Ocyx3ymgzmK11vA3/+524g885jWe0hlVlLQwFLGw052EepxX/u3JqrGTIZv6+afps8yWKhHqpMRz DR1JqSg9JPIfmn6xVzPvr5X/5Ve5g78ZKmZm5BmxmCRNyqB4fIc5+iLuIas31KKRImjm5cpEh8P5 RAauIo5RquVVHcBgVbU= DomainKey-Signature: a=rsa-sha1; c=nofws; q=dns; s=k1; d= mail173.us4.mcsv.net; b=BmLvRK7R5zl2/VRFdLZ09BJy50nOQFBXLcUoHLPQqfO o7DkgQbmi8Ug7bwNHNpotAwBLuXBIp2sW w8nzt6XeIcHys59itcvcLBKCt6zoR1 vBv1RFw1OMSwlwuilV8u0zcNtNcav+LdWoW8zAnksyWOWL /knOPWkSMr9PbtPhtB4=; Received: from (127.0.0.1) by mail173.us4.mcsv.net id hgdqg0174lg1 for a...@ice-sa.com; Wed, 13 Nov 2013 12:47:58 + (envelope-from bounce-mc.us3_22715643.227889-aw=ice-sa@mail173.us4.mcsv.net) Subject: TomEE Professional Support From: Apache TomEE Support gurkanerdo...@yahoo.com Reply-To: Apache TomEE Support gurkanerdo...@yahoo.com To: a...@ice-sa.com Date: Wed, 13 Nov 2013 12:47:58 + Message-ID: 9781cf0ccdac7604f1f7fd52ea052bfdbb3.20131113124746@mail173. us4.mcsv.net X-Mailer: MailChimp Mailer - **CID105b909b64a052bfdbb3** X-Campaign: mailchimp9781cf0ccdac7604f1f7fd52e.105b909b64 X-campaignid: mailchimp9781cf0ccdac7604f1f7fd52e.105b909b64 X-Report-Abuse: Please report abuse for this campaign here: http://www.mailchimp.com/abuse/abuse.phtml?u=9781cf0ccdac7604f1f7fd52eid= 105b909b64e=a052bfdbb3 X-MC-User: 9781cf0ccdac7604f1f7fd52e x-accounttype: ff List-Unsubscribe: mailto:unsubscribe-9781cf0ccdac7604f1f7fd52e- 105b909b64-a052bfd...@mailin1.us2.mcsv.net?subject=unsubscribe,
Re: Tomcat restart utility
Hello Vicky, et al, I think the easiest way to give the developers the restart capabilities is to get them ssh access to the user that is running tomcat. This is easy, secure and convenient. regards Leon On Thu, Nov 14, 2013 at 4:50 AM, vicky vicky007aggar...@yahoo.co.in wrote: Thanks Chris, I'm looking for restart capability only. Actually I have dozen of tomcat instances running on Linux machines, I want to give the restart capability to the developers team, can you please explain a bit that how I can achieve that . Many thanks again for responding sharing the knowledge From: Christopher Schultz ch...@christopherschultz.net To: Tomcat Users List users@tomcat.apache.org Sent: Wednesday, 13 November 2013 7:58 PM Subject: Re: Tomcat restart utility -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Vicky, On 11/13/13, 5:52 PM, vicky wrote: Is there any other tool/utility with which we can do the deployment tomcat restart like PSI-PROBE. I'm having issues with PSI-PROBE ,restart functionality is not available over there following message is coming on restart screen :- This JVM is not controlled by Java Service Wrapper Unable to figure out how to fix this Looks like PsiProbe only allows restart capabilities when you are using jsvc. In any case, using jsvc is probably the easiest way to control your JVM if you intend to make it restartable. If you're on Windows, just use the Windows Service and use the service controller to restart Tomcat. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.15 (Darwin) Comment: GPGTools - http://gpgtools.org/ Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJShC4oAAoJEBzwKT+lPKRYUCIP/3+Mcq+8a1Nve4OUWQrMkKsz EqRwgFDuCdHLwiqBoDFQDufiH3cKOL2h19FVPopNkf6eA4lnZjZF9bjGaPH7W/m7 dLF53o1eeeDdFHYLvuO4I5ysJ5a3csx9VgCk7R+GHrw09z8LWsU3rS5pU4EyEy4i cbQo00h21Q2PlYZElRj35pCnQzVz1FmpDNqQ802gxyzDXDaexQQEnjEz/yMUg7VG 2d0igYnzu2Llzc2isNIdvbHb9FjpIJn713P1C093jAEOYtKUPwjvBn98QH7EJMvL 61QSKx85g+QT+r4k2BJ9MrqQ6BB90NojIYYfNdc8SySM7WRcNJvanGAuoPI0+uka MSZby7pji7UqIr/eLWNid42yJ57DJ0zbnaBHjkXH31QPwn3MWBZEwfAnI55ixyAJ +M9ZnjeNRxNRJoUjd/t5Amn4eB/Tv6tD2Sk1DTr5vZ2EWYi1mmp6CAAL6yjf1W2+ nc2UhTwz3s0yNXiIQOfGI4jUpuoMZ0vJDFnkqyWOeMUjBhmLeAG9fF8xDuU2Uvhs Y8mfZjGdY6l+WxWfvrgMbrsindQ30RoNBxE+g3rLOEWC3AxV0W3l4Hg7l5MZ9b7H qx2GWZ5zCDbsHhwtS9N4qX2cxXtxVb7BlZegLh33CiCsyCU54OuY1rqUzK0E2xFC dSvhXBb6CNNaW5rljS38 =3Bpd -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: [OT] [Fwd: TomEE Professional Support]
On 14/11/2013 09:38, James Green wrote: I received this too. This is deeply wrong. I subscribed to Apache lists, not a commercial one. I look forward to seeing what the investigation reveals and what actions take place. With my list moderator/owner hat on. I have confirmed that only the list moderators and the infrastructure team have direct access to the subscription lists. The evidence available points to the e-mail addresses having been harvested either by parsing one of the list archives or simply by virtue of being a subscriber to the list. There is no evidence that the subscriber list was accessed directly. The action taken has been to make clear (both publicly in this thread and privately elsewhere) that this was not acceptable and should not be repeated. An assurance has been given that this will not be repeated. At this point, I think the matter can be considered closed. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat restart utility
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Leon, On 11/14/13, 5:37 AM, Leon Rosenberg wrote: Hello Vicky, et al, I think the easiest way to give the developers the restart capabilities is to get them ssh access to the user that is running tomcat. This is easy, secure and convenient. +1 You can even do it via sudo if you don't want your devs to do anything else. Remote restart capabilities are a dangerous business (e.g. an HTTP listener that knows how to restart services), so I would avoid them if I were you. Restarting a Tomcat instance should be fairly rare, no? If you use jsvc, all your devs need to be able to do is send a signal using kill. Read the jsvn documentation to figure out which signal that is. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.15 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJShNoLAAoJEBzwKT+lPKRYJwQQAKu6G2442plLdT4nUObgXB1D xAozHvNLPMLIiHppp9ssBpHSfLoQglYsMl4Y4XKIczcMSN/Zizjirhbgy0BKX/NA I5WZUu3Fa6lMP6astd3Uf0T9P7232hnKL5NjL6FLFW6BJlR40dZdp73Fih2cbYsV 5R/sidSKriGChCQpvLYqNoYsegEvNqbz2VFB9fFzPeIZkIDUkqoMcKXlZmS3ACQM 9CrSaJWGepAmwio5kxwvHu1VZ1VMmYnCnzuj/ALFFU0/9Cy2HfmSfC26+J/XnVjk h30dEiudCHFEE04YrmYXMrWfBUlALAtLO6LbJugdXLJl6+3dJXAubelWFBTIyItQ QCZFSv5edQ5qKpjo8UPKaRF01NIvT3lWX3soPqnr0OVBZ0V1S/xIMwE50zIksDLw PpjgBiMkz8tm6zSAuC/2JS0/JIKi+Vlb7Ko0g4JyU6Xa0PfYsh2deGLnOpI2luU4 V8i4/wd17x00W53w3LAPd+CycvWX4VS9/6eOfjzioldlnruNInrTyZQvQAv+cum/ I9Xk6Rf/xF2W84rSuuRR4CXPmxJ/g06GZuqqMm484uQvylBaqmjt4GymRJoeG+N8 FWWBXdlIhiUAzCjmKxtuB02oU+ZZfp8mirg5P8NSMRxGigZxa/ANHVSkuqBYiH0R vT4f/fxaOOiMwVdlmbK0 =uLpu -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: FormAuthenticator: saveRequest does not preserve body
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Stefan, On 11/14/13, 3:51 AM, Bley, Stefan wrote: Yes we have our own Valve which, through the inheritance structure of Picketlink, extends FormAuthenticator. When it comes to saveRequest() the is.read() returns -1. Okay. If in.read() returns -1 it means that the stream has no more data in it. Does that mean the stream has already been read? Or reset? It means that the stream is out of data. That can be due to a number of different reasons. It may have been drained. I'm not sure it can be reset in any meaningful way. Because I can see the form data in the coyote request input buffer. It is just the stream that can't be read. is.available() also returns 0. When you say request input buffer, which buffer do you mean? I haven't looked at the code in a while, but the FormAuthenticator may parse POST multipart/form-data into individual parameters, thus draining the input stream in the process. Perhaps you are looking for your missing data in the wrong place? - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.15 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJShNrwAAoJEBzwKT+lPKRYhzkP/iI09+lBbXaU4UyJNzmVZN77 pBz9U+TLXW5VXYJMQPYtngjEcihWwj1Sy+9UT4xb07soNPXBHfHfiYBUlE24ulAs wvl2asAYVufhlIObsLX5NOSZpUtvchH7chM7atKmbQ8mdIF+GvBc6q6Ij0ovcOMg a6hz3xF3BKUyDCzI03Nd4Z1pWo/Noxyq6CTzIBQw4qMDgtsZlFM1JqhxpTh39p46 uRMTi2rlLk7WEG2BCQrng/PzTC7AJ6XbXTcd41Wonwf2f+tY12YREtMTX9YTEk4N z4UYFXgyIM+lZBhcZup/g7V71RStXIpWEYpgptY2CTXRPVkIIM65QKsak1OMtgx0 TIFoZpf3C0KWZBQaFNjvWyorNJuKw0lviYSuypzhhz759uqUoWEOJsKqBfl3IMnP D8OU5aR+3XT7lkSArdX5FL1EiRLehB+fPVBnqAN1cRIMvUtTrzbYmqzcpd/hpoQv 3I9KLPS3aEViU6asyw84zs3Pe75g8xNtEMBZZD4d4x5R+mJW9jqr1fRztvyMQrpu eJ/s1NjgOEKC4FR5Zl8VoPo8v8n813G7toiB3amVeGnGa1qv+kBH6L7DL3bmAT3Z jRjAyo8vctxSLF0FVYIMLCpuYXreqOSQ8cCbch1Jz6Boo3TkaN6iR/bdwhEaeSEH yvo+lClY3gW3WESCXXgn =FYni -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: FormAuthenticator: saveRequest does not preserve body
Thanks Chris. When you say request input buffer, which buffer do you mean? I haven't looked at the code in a while, but the FormAuthenticator may parse POST multipart/form-data into individual parameters, thus draining the input stream in the process. Perhaps you are looking for your missing data in the wrong place? I can see the data in request.coyoteRequest.parameters and request.coyoteRequest.inputBuffer.buf. But FormAuthenticator#saveRequest() doesn't retrieve any data from those fields but instead tries to preserve the request body from the request inputstream. Are you suggesting the inputstream might not be available anymore because it had already been read to extract the post params into individual parameters in an earlier stage? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: FormAuthenticator: saveRequest does not preserve body
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Stefan, On 11/14/13, 9:27 AM, Bley, Stefan wrote: When you say request input buffer, which buffer do you mean? I haven't looked at the code in a while, but the FormAuthenticator may parse POST multipart/form-data into individual parameters, thus draining the input stream in the process. Perhaps you are looking for your missing data in the wrong place? I can see the data in request.coyoteRequest.parameters and request.coyoteRequest.inputBuffer.buf. But FormAuthenticator#saveRequest() doesn't retrieve any data from those fields but instead tries to preserve the request body from the request inputstream. Are you suggesting the inputstream might not be available anymore because it had already been read to extract the post params into individual parameters in an earlier stage? Does your extended-FormAuthenticator ever call any of the getParameter* family of methods (that is, before saveRequest is called)? If so, you are triggering the parsing of the input stream, which evidently is discarded if the FormAuthenticator decides it needs to save the request. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.15 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJShOLeAAoJEBzwKT+lPKRYl04P/jB/3EsWQ+VsAtR7lIdn8hhJ aOx1xaVMYuzd7pJ9AmSIvX5IKRcWFgt+/7Nc7hykv4qyqA1MtHabxOPgPYdAe4Xg IeECQC1RGw9txbZrkW4zv7tJWyCzb0hk9T8Q3G4SIrTm+A24Wo4D9bVSy8iUMU/r n/J/KCihSqDDV9ZPSgK0FYf5fiyjMNrwEAgzbx18uygOfwxYiPxJJdM7XDIulNiP 7wi/d80KPyYXYtZ36JQttr7lq+oMkEQniIdG00X6Ulln9jszFjt22yn8DdD0K6Cr TOdxoaUClwqJD5DG3leEcyL31G3bcePr6KutFV4CTFWFfwmqmr36wdlqibaCQC9A nYvelFlJxFLXx18QVJVI6SG6p8glw7dYcxJqdJOB/aFutV3BFYTKXbsFOmApfOHr QQlIbf5e79BlserQmxqcWJuw+4GM4QmOvxVXg5ihjMOGrxSn4LS6ZGe5po0CUNk3 N9/XCfVIMTOQIilgeF9E+scEUg7gbXdd+/7xAeAMIpqGBu9WBLcEoeje6rVE8Nr+ dQnH9iWOumpUxhEK8NbS4g85lD0sk9m1hyRFsC03Z2QKk9Sfdmiqm7vdcP/tjoaP c3VVuP5VJtwhdJ58aCEYldcX4v4po+1nAdnAkIaAwKYeSoMHVIFZooFwfntS+DdI sERwZpkvYHCKlb4MGL9G =wQtD -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: FormAuthenticator: saveRequest does not preserve body
Does your extended-FormAuthenticator ever call any of the getParameter* family of methods (that is, before saveRequest is called)? If so, you are triggering the parsing of the input stream, which evidently is discarded if the FormAuthenticator decides it needs to save the request. If you mean getParameter* from the request, then yes. We call request.getParameter(SAMLRequest) in order to find out wether it is a SAML request. So you are stating that once a Request#getParameter* method has been called the request inputstream is consumed and might not be used again? Stefan - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: FormAuthenticator: saveRequest does not preserve body
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Stefan, On 11/14/13, 10:01 AM, Bley, Stefan wrote: Does your extended-FormAuthenticator ever call any of the getParameter* family of methods (that is, before saveRequest is called)? If so, you are triggering the parsing of the input stream, which evidently is discarded if the FormAuthenticator decides it needs to save the request. If you mean getParameter* from the request, then yes. We call request.getParameter(SAMLRequest) in order to find out wether it is a SAML request. So you are stating that once a Request#getParameter* method has been called the request inputstream is consumed and might not be used again? That'll do it. It seems the FormAuthenticator expects that the POST data is still in the input stream and hasn't been parsed. You could try wrapping the request and re-inserting the data back into the input stream, or you could patch saveRequest to save (and subsequently re-load) the parameters. Since you have broken the FormAuthenticator, you're going to have to fix it. It seems reasonable to request an enhancement to support this kind of thing, so go ahead and file a Bugzilla enhancement request. Patches are always welcome. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.15 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJShOkhAAoJEBzwKT+lPKRYSMIQAKYzDacnJ1k3yRLu5Q5nn0qf 0uM2sUa3ZK7APpD48iDOEi/HerzIkPqHHF3Ud2nHmDhtqgnavjhbxHy/QUI6ONbZ 9foxQsa8y5L1Vt2uJDmjKTjJN5tRlcEyD6EZhhcopc6Ssz20AtOMwdPw0rIJppFm ehdHb04PDZSF2a1+w+Rweif3Co0eDiNJnSzxe80aTMRxOKC7aGQjrgIWKDS29iNV cicE7SMu38b3h+mgGK7qBALbR2qfHy+X44ungDyY67IKilSthDwDZMKg/z9hj9Y1 nvPRAXV4xWbgnukQ7AHbjgiAERl2Kg1CHk2rggGNE9PzaYCxXmOY7M2Lh1NrzPN1 Y0hX1J7hTJAwAmsJzE9ejeb6v5tYq0GrmS0DqMeGXPcn5yNmZI05HLoIDX9ATJOo 5UUxDZ8FCJfcrmhxY9TXdUYhBkI0m/HGS4FFMrF8/RrzDOhT6NA/Ej4+mIsfR56a r51fIzr+IKNSc/wQ2TrNc6cJonZvQjZpz22gnaUkdXsVIdINe90jclz/Flge6+dm /oCpGymwbuOkc4kJaIfYiopvscPnh3AG0jMD5MmzX9MqDkYJ6rvjCLrgqq+7l+Hz BrEIsNFpw1nPHO/gLtvTMYEYkymMlXNcEUbopd/JlLjFSGFTKrLTsrlC/Lbba1yW 1gNw2qhSQLUaIfmPSSrp =3Fr6 -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Reg: Connection pool stats
On Nov 14, 2013, at 2:23 AM, Anu Prab anupr...@gmail.com wrote: On Nov 11, 2013, at 12:59 AM, Anu Prab anupr...@gmail.com wrote: On Nov 7, 2013, at 11:58 PM, Anu Prab anupr...@gmail.com wrote: I am using Tomcat 7.0.42 and Tomcat jdbc pool. Just to be perfectly clear, how are you using this? With a Resource/ tag in your Tomcat configuration or are you creating the pool in your code? Either way, include the necessary config or code which shows how you've defined the pool. The pool configuration is in context.xml. A sample of the config looks like this: Resource name=jdbc/name auth=Container type=javax.sql.DataSource fairQueue=true factory=customized-factory timeBetweenEvictionRunsMillis=180 validationQuery=SELECT 1 from dual validationInterval=3 maxActive=50 minIdle=4 maxIdle=4 maxWait=1 initialSize=4 removeAbandonedTimeout=60 removeAbandoned=true logAbandoned=false What factory are you using? It's important to share. Without it we don't know which pool you're using. A customized factory which extends org.apache.tomcat.jdbc.pool. DataSourceFactory Few minutes, not sure of the exact timing. Yes, all are 0. Also, what happens when you try to get a connection after the pool count has dropped to 0? Does it get a new connection? Does it hang waiting? Does it generate any error messages? Is there any reason why you might be getting disconnected from the database side or from a firewall in between your application and the database? I can still get newer connections even after the count drops to 0. Hi, Also, when I enabled logAbandoned as you suggested, I see this exception after about 17-18 minutes. org.apache.tomcat.jdbc.pool.ConnectionPool abandon WARNING: Connection has been abandoned PooledConnection[oracle.jdbc.driver.T4CConnection@2726965a ]:java.lang.Exception at org.apache.tomcat.jdbc.pool.ConnectionPool.getThreadDump(ConnectionPool.java:1065) at org.apache.tomcat.jdbc.pool.ConnectionPool.createConnection(ConnectionPool.java:707) at org.apache.tomcat.jdbc.pool.ConnectionPool.borrowConnection(ConnectionPool.java:634) at org.apache.tomcat.jdbc.pool.ConnectionPool.getConnection(ConnectionPool.java:188) This explains the behavior that you're seeing. It appears that your connections are being flagged as abandoned and thus removed from the pool. Take a look at the generated stack trace and see what part of your code is holding onto the connection. This could be legitimate, in the case where you have a long running process (like a batch job) or it could be a code error (like you don't have proper try..catch..finally blocks setup to close connections). Dan Hi, The problem that we are facing now is that the connections are showing idle when they are not being used. When we queried the gv$session table in the database, we could still find the entry of this inactive/idle connection. Ok, what does the pool think? Have you looked at the active idle count there (like with jconsole)? The reason I ask is because based on your configuration you should see some idle connections in the pool. They are not being recycled after the min idle and eviction time had passed. How are you making this determination? It would be helpful if you could post the active idle counts from your pool when it's in this state so that we can determine if it should actually be evicting idle threads. Based on the configuration you listed above, I would not expect the pool to evict a connection because it's been idle too long. You have both minIdle and maxIdle set to four and the idle check only runs when you have more than minIdle idle connections in your pool. Because you also have maxIdle set to four I don't think you'll ever have more than four idle connections in your pool. This is because when connections are returned to the pool, the pool checks to see if that connection would push it over maxIdle. If it would then the connection is discarded instead of being returned to the pool. Here's an example: 1.) You start with 4 connections in the pool (that's your initialSize). 2.) The pool cleaner thread runs and no idle check is performed because you don't have more than minIdle idle connections in the pool. 3.) Your application take a connection. 4.) The pool cleaner thread runs again. There is still no idle check is performed, because you don't have more than minIdle idle connections in the pool. 5.) Your application takes four more connections. This causes the pool to create a fifth connection. 6.) The pool cleaner thread runs. Still no idle checks being performed. This time because there are no idle connections. 7.) Your application returns four of the connections.
Re: Tomcat restart utility
Isn't the tomcat restart is needed in case I need to deploy the war files manually cleaning the work temp directories (just to clean the cache) From: Christopher Schultz ch...@christopherschultz.net To: Tomcat Users List users@tomcat.apache.org Sent: Thursday, 14 November 2013 8:11 AM Subject: Re: Tomcat restart utility -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Leon, On 11/14/13, 5:37 AM, Leon Rosenberg wrote: Hello Vicky, et al, I think the easiest way to give the developers the restart capabilities is to get them ssh access to the user that is running tomcat. This is easy, secure and convenient. +1 You can even do it via sudo if you don't want your devs to do anything else. Remote restart capabilities are a dangerous business (e.g. an HTTP listener that knows how to restart services), so I would avoid them if I were you. Restarting a Tomcat instance should be fairly rare, no? If you use jsvc, all your devs need to be able to do is send a signal using kill. Read the jsvn documentation to figure out which signal that is. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.15 (Darwin) Comment: GPGTools - http://gpgtools.org/ Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJShNoLAAoJEBzwKT+lPKRYJwQQAKu6G2442plLdT4nUObgXB1D xAozHvNLPMLIiHppp9ssBpHSfLoQglYsMl4Y4XKIczcMSN/Zizjirhbgy0BKX/NA I5WZUu3Fa6lMP6astd3Uf0T9P7232hnKL5NjL6FLFW6BJlR40dZdp73Fih2cbYsV 5R/sidSKriGChCQpvLYqNoYsegEvNqbz2VFB9fFzPeIZkIDUkqoMcKXlZmS3ACQM 9CrSaJWGepAmwio5kxwvHu1VZ1VMmYnCnzuj/ALFFU0/9Cy2HfmSfC26+J/XnVjk h30dEiudCHFEE04YrmYXMrWfBUlALAtLO6LbJugdXLJl6+3dJXAubelWFBTIyItQ QCZFSv5edQ5qKpjo8UPKaRF01NIvT3lWX3soPqnr0OVBZ0V1S/xIMwE50zIksDLw PpjgBiMkz8tm6zSAuC/2JS0/JIKi+Vlb7Ko0g4JyU6Xa0PfYsh2deGLnOpI2luU4 V8i4/wd17x00W53w3LAPd+CycvWX4VS9/6eOfjzioldlnruNInrTyZQvQAv+cum/ I9Xk6Rf/xF2W84rSuuRR4CXPmxJ/g06GZuqqMm484uQvylBaqmjt4GymRJoeG+N8 FWWBXdlIhiUAzCjmKxtuB02oU+ZZfp8mirg5P8NSMRxGigZxa/ANHVSkuqBYiH0R vT4f/fxaOOiMwVdlmbK0 =uLpu -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat restart utility
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Vicky, On 11/14/13, 1:56 PM, vicky wrote: Isn't the tomcat restart is needed in case I need to deploy the war files manually cleaning the work temp directories (just to clean the cache) A re-deploy should clean everything, and can be done while the server continues to run. If you are using auto-deploy, you can simply update the WAR file on the disk and your application will re-load automatically. If you aren't using auto-deploy, you can use the Manager webapp to manage your deployments. Your users may experience interruptions, though, during the redeployment process. You can also use Tomcat's parallel-deployment which allows you to deploy an updated instance. All new sessions will be directed to the new webapp, and the old ones will continue to be served by the old instance. I haven't checked recently, but you used to have to manually un-deploy the old instance once the session-count reached zero. You can use the Manager webapp to undeploy these old versions. Hope that helps, - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.15 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJShSCSAAoJEBzwKT+lPKRYti8P/1ULcIWnxec9hq6J7fqHs4t4 8j8mWRXhCtfS17Qx/uNIcif+xIlxkkcy6Cq+fsvqjf3MqBwmfQHYmPSOXphlQxkf jiqfZnDXqIF9OiBq6cwF5I73oK6xnmQAHids9HjSu4Lsgl1fXHkE+2f63G506Ch/ G9SpdLWMOXXluQ6cdOL0aEwCb3IWwppEhRrQO9GtsRJ52+Btf41bJJKnP7hUHABQ 1LNP9FXkah+1UdyPzTBVPWKiGasfu7gAMMnjK9fLZOf+IW/WQvvayB0jdrUimkzV jxCmEWLOdLZgtc+VB7+5zK0bpMaxTkpDa5L7+h6PvCVdZZKwDdXLWDIt3zVt/2YQ KUF3GyxH7M6xSKhQLOyjr47H6fbKno/uq/IBW3ShPLNxkokkghAY1r33a3NKNoR3 Vvt0wJUbJXI5ojoIXPHzTiiQnV9bjqWMbg2C0gdpoCjbuQzDoctYO931O46vdseC 2eGHTwVZw6n0U0DAQ6wl5Wto98WwaAXJEDIBtSCKznmG1Ta3DXwvlIm9pwDuSu5f wPrAHHZujGjguDq9GmCJIq99mdcx3pzBOx0bO1mX+/aBHyK0XdIuzzRQbIOJZ7A9 jBjHrA55km1ubIwCOKYlS3NHOw/vv89Ajc/LEjUy8nTl2/LjUeTC+7HyoCDgQn1F bx1bsEZD8ettjMU8D8oq =AaiP -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
webdav servlet - embedding and customized access
Hello there, I have to implement a webdav server integrated with my Java application and I wish to know if I can use tomcat Webdav Servlet. I have some accounts, each account with it's own space and it's own users. I wish to give users access to their account space. I've tried milton and I'm not satisfied with the integration so I'm looking for alternatives. Basically I need help/info about the following: - can I implement my own authorization (users are in DB) - can I implement my own authorization - to allow users access only to their own home directories - can I plan to deploy it on Apache Karaf 2.3.3 which uses jetty as embeded server so I would be curious to know if using it in another servlet container is possible. Best regards, -- Ioan Eugen Stan - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: minIdle not being enforced and connections are getting closed instead of returning to the pool
Hi Daniel, Thank you very much for responding to the query. How do you know it is creating a new connection? Are you monitoring the number of active / idle connections in the pool? What numbers do you see? Actually I was logging the time taken to get the Connection from pool and it was taking around 2300 milli seconds to get connection from pool after *initialSize* connections(10) are retrieved. I checked it for around 100 fetches in a span of 5 minutes as my *timeBetweenEvictionRunsMillis* was 60 and after each run of evictor thread *minIdle* should be validated. This is unlikely as the pool returns a proxy that wraps the actual connection. Unless you are specifically accessing the underlying JDBC connection, what you are indicating shouldn't happen. http://tomcat.apache.org/tomcat-7.0-doc/jdbc-pool.html#Getting_the_actual_JDBC_connection Do you have a code example of what you're doing? Yes, I was unwrapping each connection before returning it using the below piece of code. con = ds.getConnection().unwrap(oracle.jdbc.OracleConnection.*class*); *return* con; As explained by you, this is where the problem was. I needed a OracleConnection in some parts of my application as I was creating ArrayDescriptor, which failed when I passed the proxy Connection. Now I am unwrapping the proxy Connection only when required and calling *con.close()* on the Proxy returned from the pool, not on the unwrapped connection. This fixed my issue J. Once again thanks for the clarifying my doubts and helping me resolving my issue. Best Regards Srikanth R Patlolla On Wed, Nov 13, 2013 at 5:42 PM, Daniel Mikusa dmik...@gopivotal.comwrote: On Nov 13, 2013, at 4:01 AM, Srikanth gaadi...@gmail.com wrote: Hi, I am using the below configuration for creating a datasource in Tomcat 7.0.42. And the backend database is Oracle 10g. Resource name=jdbc/crd auth=Container type=javax.sql.DataSource factory=org.apache.tomcat.jdbc.pool.DataSourceFactory driverClassName=oracle.jdbc.driver.OracleDriver username= password= url=jdbc:oracle:thin:@:: initialSize=10 minIdle=20 maxIdle=40 maxActive=100 maxWait=6 validationQuery=SELECT 1 FROM DUAL validationInterval=30 testOnBorrow=true testOnReturn=true testWhileIdle=true minEvictableIdleTimeMillis=180 timeBetweenEvictionRunsMillis=6 removeAbandoned=true removeAbandonedTimeout=600 logAbandoned=true jmxEnabled=true jdbcInterceptors=org.apache.tomcat.jdbc.pool.interceptor.ConnectionState; org.apache.tomcat.jdbc.pool.interceptor.StatementFinalizer; org.apache.tomcat.jdbc.pool.interceptor.SlowQueryReportJmx(threshold=1) /Resource Now the problem is whenever I try to get a connection from pool, it is creating a new connection and returning back. How do you know it is creating a new connection? Are you monitoring the number of active / idle connections in the pool? What numbers do you see? minIdle connections are not maintained in the pool minIdle is only enforced if you have more than minIdle connections in the pool. For example, if you have 10 connections idle in the pool and minIdle is 20, the idle check will not run. If you have 30 connections idle in the pool and minIdle is 20 then the idle check will run. In addition, the idle check will only remove idle connections from the pool. It will not add connections to the pool. and when I call con.close(), the connections are getting closed instead of returning to the pool (closing the connection in finally block by passing con object to a different method) This is unlikely as the pool returns a proxy that wraps the actual connection. Unless you are specifically accessing the underlying JDBC connection, what you are indicating shouldn't happen. http://tomcat.apache.org/tomcat-7.0-doc/jdbc-pool.html#Getting_the_actual_JDBC_connection Do you have a code example of what you're doing? Getting connection is taking considerable amount of time in my application, so I need the tomcat server to maintain the idle connections at any point of time. Again, how do you know it is not maintaining idle connections. Do you see any messages in the logs? Dan Kindly help me resolve the issue. Thanks Srikanth - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org