tomcat webdav
Hi, I am trying to configure webdav to provide web resource to multiple user. For example, inside webdav directory I create multiple user directory ( user1, user2 ,user3 ). I am authenticating users using mysql database ( authentication works fine for single user ( let us say user1) with role name user1). But it doesn't work for multiple users. Here is snippet of web.xmlfile in webapps/webdav/WEB-INF/ web.xml ( specifically security constraint I am trying to set). Please note that as specified in following XML parameters, admin and user1 are able to authenticate with database. All users/roles are correctly specificed. what i want is to provide admin access to admin for /webapps/webdav/ directory and user1 access of /webapps/webdav/user1 directory. I have created user1 directory inside webapps. security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/*/url-pattern /web-resource-collection auth-constraint role-nameadmin/role-name /auth-constraint /security-constraint security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/user1/*/url-pattern /web-resource-collection auth-constraint role-nameuser1/role-name /auth-constraint /security-constraint login-config auth-methodBASIC/auth-method realm-nameTomcat Manager Application/realm-name /login-config security-role description The role that is required to log in to the Manager Application /description role-nameadmin/role-name role-nameuser1/role-name /security-roleif i try webdav access through http://xxx.xxx.xxx.xxx:8080/webdav/user1 and enter username and password, it gives following error on web page: java.lang.NullPointerException org.apache.catalina.servlets.DefaultServlet.renderHtml(DefaultServlet.java :1345) org.apache.catalina.servlets.DefaultServlet.render(DefaultServlet.java:1102) org.apache.catalina.servlets.DefaultServlet.serveResource( DefaultServlet.java:807) org.apache.catalina.servlets.DefaultServlet.doGet(DefaultServlet.java:335) javax.servlet.http.HttpServlet.service(HttpServlet.java:689) org.apache.catalina.servlets.WebdavServlet.service(WebdavServlet.java:287) javax.servlet.http.HttpServlet.service(HttpServlet.java:802) tomcat log file indicates following: java.lang.NullPointerException at org.apache.catalina.servlets.DefaultServlet.renderHtml(DefaultServle t.java:1345) at org.apache.catalina.servlets.DefaultServlet.render(DefaultServlet.ja va:1102) at org.apache.catalina.servlets.DefaultServlet.serveResource(DefaultSer vlet.java:807) at org.apache.catalina.servlets.DefaultServlet.doGet(DefaultServlet.jav a:335) at javax.servlet.http.HttpServlet.service(HttpServlet.java:689) at org.apache.catalina.servlets.WebdavServlet.service(WebdavServlet.jav a:287) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(App licationFilterChain.java:252) at org.apache.catalina.core.ApplicationFilterChain.doFilter(Application FilterChain.java:173) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapper Valve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContext Valve.java:178) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authentic atorBase.java:482) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve. java:126) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve. java:105) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVa lve.java:107) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.ja va:148) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.jav a:856) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.proc essConnection(Http11Protocol.java:744) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndp oint.java:527) at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFo llowerWorkerThread.java:80) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(Thread Pool.java:684) at java.lang.Thread.run(Thread.java:595) Please help. Can we configure webdav application to provide exclusive access of a subdirectory to multiple user ? Regards, Vineet
RE: tomcat webdav [255807:132333]
Many thanks for your email. This is an automated response acknowledging receipt. Please be advised that Badge mailing commences beginning of October 2005. Should your message require a response we will respond shortly. Regards Meridian Club -Original Message- From: Vineet Chadha [EMAIL PROTECTED] Received: 10/7/2005 5:15 PM To: tomcat-user@jakarta.apache.org Subject: tomcat webdav Hi, I am trying to configure webdav to provide web resource to multiple user. For example, inside webdav directory I create multiple user directory ( user1, user2 ,user3 ). I am authenticating users using mysql database ( authentication works fine for single user ( let us say user1) with role name user1). But it doesn't work for multiple users. Here is snippet of web.xmlfile in webapps/webdav/WEB-INF/ web.xml ( specifically security constraint I am trying to set). Please note that as specified in following XML parameters, admin and user1 are able to authenticate with database. All users/roles are correctly specificed. what i want is to provide admin access to admin for /webapps/webdav/ directory and user1 access of /webapps/webdav/user1 directory. I have created user1 directory inside webapps. security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/*/url-pattern /web-resource-collection auth-constraint role-nameadmin/role-name /auth-constraint /security-constraint security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/user1/*/url-pattern /web-resource-collection auth-constraint role-nameuser1/role-name /auth-constraint /security-constraint login-config auth-methodBASIC/auth-method realm-nameTomcat Manager Application/realm-name /login-config security-role description The role that is required to log in to the Manager Application /description role-nameadmin/role-name role-nameuser1/role-name /security-roleif i try webdav access through http://xxx.xxx.xxx.xxx:8080/webdav/user1 and enter username and password, it gives following error on web page: java.lang.NullPointerException org.apache.catalina.servlets.DefaultServlet.renderHtml(DefaultServlet.java :1345) org.apache.catalina.servlets.DefaultServlet.render(DefaultServlet.java:1102) org.apache.catalina.servlets.DefaultServlet.serveResource( DefaultServlet.java:807) org.apache.catalina.servlets.DefaultServlet.doGet(DefaultServlet.java:335) javax.servlet.http.HttpServlet.service(HttpServlet.java:689) org.apache.catalina.servlets.WebdavServlet.service(WebdavServlet.java:287) javax.servlet.http.HttpServlet.service(HttpServlet.java:802) tomcat log file indicates following: java.lang.NullPointerException at org.apache.catalina.servlets.DefaultServlet.renderHtml(DefaultServle t.java:1345) at org.apache.catalina.servlets.DefaultServlet.render(DefaultServlet.ja va:1102) at org.apache.catalina.servlets.DefaultServlet.serveResource(DefaultSer vlet.java:807) at org.apache.catalina.servlets.DefaultServlet.doGet(DefaultServlet.jav a:335) at javax.servlet.http.HttpServlet.service(HttpServlet.java:689) at org.apache.catalina.servlets.WebdavServlet.service(WebdavServlet.jav a:287) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(App licationFilterChain.java:252) at org.apache.catalina.core.ApplicationFilterChain.doFilter(Application FilterChain.java:173) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapper Valve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContext Valve.java:178) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authentic atorBase.java:482) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve. java:126) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve. java:105) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVa lve.java:107) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.ja va:148) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.jav a:856) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.proc essConnection(Http11Protocol.java:744) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndp oint.java:527) at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFo llowerWorkerThread.java:80) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(Thread Pool.java:684) at java.lang.Thread.run(Thread.java:595) Please help. Can we configure webdav application to provide exclusive access of a subdirectory to multiple user ? Regards, Vineet -- Meridian Club Unit 5, Caxton Centre Porters Wood St Albans Herts UNITED KINGDOM AL3 6XT Tel: +44 1727 738855 Fax: +44
Tomcat WebDAV access via httpd/jk
Hi guys, I have run in to a little problem with accessing a webdav enabled app on tomcat. I run Tomcat 5.5 with Apache2+jk in front of it, but fail to get working connection when authenticating. I have configured tomcat and app exactly as my installation on a local test server where I access tomcat directly without routing it through Apache2 With Win XP web folders it does that annoying domain prefix thing With Dreamweaver it seems to work, but is extrmly slow and reports a lot of network errors Any suggestions ? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
I've also written a custom webdav servlet because we need to work with a custom/virtualised file store. Our servlet works fine for everything except some flavours of M$shite Windows - the symptoms I get are identical to the ones you describe. Like you our server is not running on localhost, and the user's directory is not the root, and the user has to authenticate (using basic authentication)... As yet I have not been able to work out a solution, although I know it exists because sites like sharemation.com have somehow worked around the problem - I just haven't figured out how they do it. If you find a solution to this problem can you let me know - it has driven us mad for months before we finally gave up... We recommend users install webdrive - it works great but costs US$30 a pop! Thanks for any help (if you find a solution) John Sidney-Woollett ps Here is another document that may help you: http://support.microsoft.com/default.aspx?scid=kb;EN-US;269681 And some specific instructions that work (sometimes) but I don't want my users to have to play around with their OS installs: quote The problem is a conflicting Office Installation (since Office 2002) which changes the webdav components of Windows XP. To change them back (to the working one) you need to follow these steps: 1. You will find a file called webfldrs.msi (Normally under \WINDOWS\SYSTEM32\webfldrs.msi - if you installed Windows XP Servicepack 1 you will find it under \WINDOWS\ServicePackFiles\i386\webfldrs.msi). 2. Start the installation with double-click or right-click - webfldrs.msi. 3. Now you have to click on Select reinstall mode. 4. Uncheck Repair all detected reinstall problems. Check Force all files to be reinstalled, regardless of checksum or version. Check Verify that required user registry entries are present. Check Verify that required machine registry entries are present. Check Validate shortcuts. 5. Press OK and REINSTALL 6. Normally no reboot is required and now everything goes fine. /quote - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Here's an update---I'm narrowing it down. I tried to connect directly to Tomcat without Apache in-between. Same problem. So this probably isn't something Apache is doing to mess up communications. I recompiled Apache so that I could add headers, and I added: DAV: 1,2 MS-Author-Via: DAV Allow: OPTIONS, PROPFIND, GET, HEAD This way, even error messages and redirects will show WebDAV support, and even an OPTIONS request for / will show WebDAV method support. It still doesn't work. The *only* thing that isn't exactly what a WebDAV server would send back is when MS Web Folders tries to do a PROPFIND on /webapp/ and Tomcat sends back: 501 Method PROPFIND is not defined in RFC 2068 and is not supported by the Servlet API. (Again, MS Web Folders shouldn't even try to access /webapp/ directly---it should try to access /webapp/webdav/ .) About the only thing left to try is to allow the PROPFIND on /webapp/ . So here's the Tomcat question---how can I allow a PROPFIND on /webapp/ and return, for example, a 403 forbidden, rather than a 501 Not Implemented? Do I have to override org.apache.catalina.servlets.DefaultServlet? (There goes container independence.) Why is it that nothing in this world is straightforward? (That's a rhetorical question---don't feel obliged to answer.) Cheers, Garret Garret Wilson wrote: Some more info: When Web Folders first tries to access http://www.example.com/webapp/webdav/ , user agent Microsoft-WebDAV-MiniRedir/5.1.2600 tries to do a PROPFIND on http://www.example.com/webapp . Apache (from Tomcat?) redirects with 302 to http://www.example.com/webapp/ . Microsoft-WebDAV-MiniRedir/5.1.2600 tries to do a PROPFIND on http://www.example.com/webapp/ . Apache sends back (from Tomcat, I suppose) a 501 I don't know what the heck a PROPFIND is type of response. (MS never should have tried to touch http://www.example.com/webapp/ , as that's a parent directory to what I requested.) Again Microsoft-WebDAV-MiniRedir/5.1.2600 tries to do a PROPFIND on http://www.example.com/webapp and goes through the whole procedure again. Finally it gets tired and issues an OPTIONS request on /, to which Apache/Tomcat issues a 202 OK (but with no DAV header). So then Microsoft Data Access Internet Publishing Provider Protocol Discovery gets into the action and issues its own OPTIONS on /. (Why MS can't simply try to access http://www.example.com/webapp/webdav/ like I asked in the first place, I'll never know.) Another 200 OK response. Finally MS gets around to doing an OPTIONS on http://www.example.com/webapp/webdav (which it should have done in the very first request). Tomcat (through Apache) issues its 401 Unauthorized response (as it should), along with the DAV: 1,2 header (as it should). MS decides, Oh, well, I'll issue an OPTIONS on the root path '/' again and goes through the entire process. Then I see various attempts at GET /_vti_inf.html and POST /_vti_bin/shtml.exe , indicating that MS Web Folders didn't recognize WebDAV and is trying to use FrontPage extension witchraft. Sending back a MS-Author-Via: DAV header should stop this---but my WebDAV servlet never got the chance because MS Web Folders wouldn't authenticate in the presence of a 401 Unauthorized. I know that IE, Web Folders, and the whole shebang is a load of (insert expletive here), but I've managed to work around everything else so that it works on pure Tomcat on localhost. There's some little thing that's throwing things off in the Tomcat-behind-Apache-on-Internet scenario, and if I can just find out what it is, I can cut off this last MS bug and get this to working. Does it have something to do with Apache modifying a HTTP request or response to or from Tomcat? Does it have something to do with the server being located somewhere other than localhost, altering the behavior of Microsoft-WebDAV-MiniRedir/5.1.2600 or Microsoft Data Access Internet Publishing Provider Protocol Discovery? An inquiring mind wants to know---but really has to get some sleep right now. Thanks again to Doug and everyone else for your time. Garret Garret Wilson wrote: I've written a custom WebDAV servlet which works fine configured on Windows XP Professional localhost with Tomcat 5.5.4. I upload everything to a http://www.example.com/webapp/webdav/ . The domain is served on Red Hat 6 by Apache 2.0.49, which forwards to Tomcat using ProxyPass and ProxyPassReverse. I try to connect via Microsoft Windows XP Professional Web Folders. (My WebDAV servlet works around all the various Microsoft redirection bugs, and works fine with Web Folders on localhost.) Web Folders doesn't recognize the folder. I whip out Ethereal, and here's what I find: User agent Microsoft Data Access Internet Publishing Provider Protocol Discovery sends an HTTP OPTIONS request to /. Apache sends back a 200 OK. Then Microsoft Web Folders sends an OPTIONS request to /webapp/webdav/. My servlet sends back a 401 Unauthorized, asking
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Laba diena. Dkojame, kad mums parate. Js atsista inut isaugota ms duomen bazje. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Uhh, that is what I was thinking. On Tue, 11 Jan 2005 19:17:00 +0200 (EET), [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Laba diena. Dkojame, kad mums parate. Js atsista inut isaugota ms duomen bazje. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
About the only thing left to try is to allow the PROPFIND on /webapp/ . So here's the Tomcat question---how can I allow a PROPFIND on /webapp/ and return, for example, a 403 forbidden, rather than a 501 Not Implemented? Do I have to override org.apache.catalina.servlets.DefaultServlet? (There goes container independence.) But surely Tomcat returns 501 when accessed via Localhost and you've already said that scenario works. Regards Roger __ This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Atos Origin group liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted. __ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Yeah, that's what I *assume*, anyway. But Ethereal doesn't work on localhost, so I can only assume. There are these possibilities: * Tomcat returns something other than 501 Not Implemented when configured on localhost. (Not likely.) * MS Web Folders does different checks when accessing the Internet-at-large than when accessing localhost. (Likely? I don't know what to expect with MS Web Folders anymore.) I'm guessing the latter is happening, especially as two MS user agents get into the act: Microsoft-WebDAV-MiniRedir/5.1.2600 and Microsoft Data Access Internet Publishing Provider Protocol Discovery And here's more news: I created a new DefaultServlet mapped to / that for PROPFIND simply returns 403 Forbidden. Something different happens. First, Microsoft-WebDAV-MiniRedir/5.1.2600 does a PROPFIND on /webapp (which gets redirected to /webapp/). MyDefaultServlet returns 403 Forbidden. Fine. Can you guess what Microsoft-WebDAV-MiniRedir/5.1.2600 does? Microsoft-WebDAV-MiniRedir/5.1.2600 then tries to do another PROPFIND on /webapp! And another---for a total of five times! (It's forbidden, you idiot---and /webapp is none of your business anyway; you're supposed to be accessing /webapp/webdav/! Arggg!!!) Then Microsoft Data Access Internet Publishing Provider Protocol Discovery comes along and does its little OPTIONS / (200 OK) OPTIONS /webapp/webdav (401 Unauthorized) dance for three times, and then goes into the FrontPage mumbo-jumbo. What is left to do---issue a 401 Unauthorized on PROPFIND /webapp ? Issue a 401 Unauthorized on OPTIONS / ? Rewrite the operating system? (Yeah, the latter is probably what I'll have to do to fix all this mess.) (Grumble grumble grumble...) Any suggestions on what to do next? Garret Varley, Roger wrote: About the only thing left to try is to allow the PROPFIND on /webapp/ . So here's the Tomcat question---how can I allow a PROPFIND on /webapp/ and return, for example, a 403 forbidden, rather than a 501 Not Implemented? Do I have to override org.apache.catalina.servlets.DefaultServlet? (There goes container independence.) But surely Tomcat returns 501 when accessed via Localhost and you've already said that scenario works. Regards Roger __ This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Atos Origin group liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted. __ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Does anyone have an IIS box you can connect to to see what happens. Then maybe you can mimic it. Doug - Original Message - From: Garret Wilson [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Tuesday, January 11, 2005 1:12 PM Subject: Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my! Yeah, that's what I *assume*, anyway. But Ethereal doesn't work on localhost, so I can only assume. There are these possibilities: * Tomcat returns something other than 501 Not Implemented when configured on localhost. (Not likely.) * MS Web Folders does different checks when accessing the Internet-at-large than when accessing localhost. (Likely? I don't know what to expect with MS Web Folders anymore.) I'm guessing the latter is happening, especially as two MS user agents get into the act: Microsoft-WebDAV-MiniRedir/5.1.2600 and Microsoft Data Access Internet Publishing Provider Protocol Discovery And here's more news: I created a new DefaultServlet mapped to / that for PROPFIND simply returns 403 Forbidden. Something different happens. First, Microsoft-WebDAV-MiniRedir/5.1.2600 does a PROPFIND on /webapp (which gets redirected to /webapp/). MyDefaultServlet returns 403 Forbidden. Fine. Can you guess what Microsoft-WebDAV-MiniRedir/5.1.2600 does? Microsoft-WebDAV-MiniRedir/5.1.2600 then tries to do another PROPFIND on /webapp! And another---for a total of five times! (It's forbidden, you idiot---and /webapp is none of your business anyway; you're supposed to be accessing /webapp/webdav/! Arggg!!!) Then Microsoft Data Access Internet Publishing Provider Protocol Discovery comes along and does its little OPTIONS / (200 OK) OPTIONS /webapp/webdav (401 Unauthorized) dance for three times, and then goes into the FrontPage mumbo-jumbo. What is left to do---issue a 401 Unauthorized on PROPFIND /webapp ? Issue a 401 Unauthorized on OPTIONS / ? Rewrite the operating system? (Yeah, the latter is probably what I'll have to do to fix all this mess.) (Grumble grumble grumble...) Any suggestions on what to do next? Garret Varley, Roger wrote: About the only thing left to try is to allow the PROPFIND on /webapp/ . So here's the Tomcat question---how can I allow a PROPFIND on /webapp/ and return, for example, a 403 forbidden, rather than a 501 Not Implemented? Do I have to override org.apache.catalina.servlets.DefaultServlet? (There goes container independence.) But surely Tomcat returns 501 when accessed via Localhost and you've already said that scenario works. Regards Roger __ This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Atos Origin group liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted. __ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
That would be nice. It would have to be an IIS box configured so that: * http://www.example.com/ does not support WebDAV (or everything is forbidden) * http://www.example.com/webapp/ supports WebDAV, but everything is forbidden * http://www.example.com/webapp/webdav/ supports WebDAV with DIGEST authentication. I actually have different webdav/realm/ subdirectories, so it doesn't even make sense for me to authenticate in the parent directories---there would be no valid realm for me to send as a DIGEST challenge! (This is why it's so crazy---and potentially show-stopping---that MS Web Folders is even accessing directories up the hierarchy.) Garret Parsons Technical Services wrote: Does anyone have an IIS box you can connect to to see what happens. Then maybe you can mimic it. Doug - Original Message - From: Garret Wilson [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Tuesday, January 11, 2005 1:12 PM Subject: Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my! Yeah, that's what I *assume*, anyway. But Ethereal doesn't work on localhost, so I can only assume. There are these possibilities: * Tomcat returns something other than 501 Not Implemented when configured on localhost. (Not likely.) * MS Web Folders does different checks when accessing the Internet-at-large than when accessing localhost. (Likely? I don't know what to expect with MS Web Folders anymore.) I'm guessing the latter is happening, especially as two MS user agents get into the act: Microsoft-WebDAV-MiniRedir/5.1.2600 and Microsoft Data Access Internet Publishing Provider Protocol Discovery And here's more news: I created a new DefaultServlet mapped to / that for PROPFIND simply returns 403 Forbidden. Something different happens. First, Microsoft-WebDAV-MiniRedir/5.1.2600 does a PROPFIND on /webapp (which gets redirected to /webapp/). MyDefaultServlet returns 403 Forbidden. Fine. Can you guess what Microsoft-WebDAV-MiniRedir/5.1.2600 does? Microsoft-WebDAV-MiniRedir/5.1.2600 then tries to do another PROPFIND on /webapp! And another---for a total of five times! (It's forbidden, you idiot---and /webapp is none of your business anyway; you're supposed to be accessing /webapp/webdav/! Arggg!!!) Then Microsoft Data Access Internet Publishing Provider Protocol Discovery comes along and does its little OPTIONS / (200 OK) OPTIONS /webapp/webdav (401 Unauthorized) dance for three times, and then goes into the FrontPage mumbo-jumbo. What is left to do---issue a 401 Unauthorized on PROPFIND /webapp ? Issue a 401 Unauthorized on OPTIONS / ? Rewrite the operating system? (Yeah, the latter is probably what I'll have to do to fix all this mess.) (Grumble grumble grumble...) Any suggestions on what to do next? Garret Varley, Roger wrote: About the only thing left to try is to allow the PROPFIND on /webapp/ . So here's the Tomcat question---how can I allow a PROPFIND on /webapp/ and return, for example, a 403 forbidden, rather than a 501 Not Implemented? Do I have to override org.apache.catalina.servlets.DefaultServlet? (There goes container independence.) But surely Tomcat returns 501 when accessed via Localhost and you've already said that scenario works. Regards Roger __ This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Atos Origin group liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted. __ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Garret Wilson wrote: snip Why doesn't Microsoft Web Folders ask my for my password? Why does it ignore the 401 Unauthorized and go back to asking for OPTIONS on the root? Does this have something to do with using Apache to proxy to Tomcat? Why did a non-proxied Tomcat work find on my Windows XP Professional machine? snip I can only guess that the responses are somehow different. Have you tried something like tcpmon (from the Axis project) to look at the headers? I found it invaluable when investigating webDAV issues a while back. Mark - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Here's new news: Apparently the whole PROPFIND / and Apache proxy things were red herrings. The central issue seems to be that MS Web Folders doesn't know what to do with a 401 Unauthorized response to an OPTIONS request on the WebDAV root folder (when it finally gets around to checking). I reconfigured my WebDAV servlet to bypass authorization for OPTIONS requests (as a test), and once MS Web Folders requested OPTIONS and my servlet sent them back, it issued a PROPFIND and correctly popped up the authorization dialog. (But there are more problems---see below.) Requiring OPTIONS to forsake authorization is a security risk. If I can't return 401 Unauthorized for OPTIONS, then a client can issue OPTIONS at will and find out which resources exist and which are collections. But let's say that I open up OPTIONS for all my realms, just to make MS Web Folders work. I'm still not out of the clear. Once MS Web Folders tries to do a PROPFIND and I enter my name and password, it doesn't work. In fact, MS Web Folder doesn't even send back my credentials! It apparently sends an identical PROPFIND request as the one that just failed, and then shows another dialog box with user changed to www.example.com\user1. (The servers is a virtual host on Apache, proxied to Tomcat.) Now, this I've seen before, with Apache mod_dav on a virtual host. I never found the source of the problem. (I have Apache mod_dav working fine with non-virtual-host SSL domains.) Now I've opened up a security risk, and there's still another problem to track down. Thanks for your pointers, and for being a wonderful audience. ;) Garret Garret Wilson wrote: Yeah, that's what I *assume*, anyway. But Ethereal doesn't work on localhost, so I can only assume. There are these possibilities: * Tomcat returns something other than 501 Not Implemented when configured on localhost. (Not likely.) * MS Web Folders does different checks when accessing the Internet-at-large than when accessing localhost. (Likely? I don't know what to expect with MS Web Folders anymore.) I'm guessing the latter is happening, especially as two MS user agents get into the act: Microsoft-WebDAV-MiniRedir/5.1.2600 and Microsoft Data Access Internet Publishing Provider Protocol Discovery And here's more news: I created a new DefaultServlet mapped to / that for PROPFIND simply returns 403 Forbidden. Something different happens. First, Microsoft-WebDAV-MiniRedir/5.1.2600 does a PROPFIND on /webapp (which gets redirected to /webapp/). MyDefaultServlet returns 403 Forbidden. Fine. Can you guess what Microsoft-WebDAV-MiniRedir/5.1.2600 does? Microsoft-WebDAV-MiniRedir/5.1.2600 then tries to do another PROPFIND on /webapp! And another---for a total of five times! (It's forbidden, you idiot---and /webapp is none of your business anyway; you're supposed to be accessing /webapp/webdav/! Arggg!!!) Then Microsoft Data Access Internet Publishing Provider Protocol Discovery comes along and does its little OPTIONS / (200 OK) OPTIONS /webapp/webdav (401 Unauthorized) dance for three times, and then goes into the FrontPage mumbo-jumbo. What is left to do---issue a 401 Unauthorized on PROPFIND /webapp ? Issue a 401 Unauthorized on OPTIONS / ? Rewrite the operating system? (Yeah, the latter is probably what I'll have to do to fix all this mess.) (Grumble grumble grumble...) Any suggestions on what to do next? Garret Varley, Roger wrote: About the only thing left to try is to allow the PROPFIND on /webapp/ . So here's the Tomcat question---how can I allow a PROPFIND on /webapp/ and return, for example, a 403 forbidden, rather than a 501 Not Implemented? Do I have to override org.apache.catalina.servlets.DefaultServlet? (There goes container independence.) But surely Tomcat returns 501 when accessed via Localhost and you've already said that scenario works. Regards Roger __ This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Atos Origin group liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted. __ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
While I'm tracking down the domain authentication problem, here's another problem to be aware of. IE 5, Office 2000, and Office XP only support WebDAV BASIC authentication, but not DIGEST: http://support.microsoft.com/default.aspx?scid=kb;en-us;321932 You upgrade to Windows XP, and by default it only supports WebDAV DIGEST authentication, but not BASIC: http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/sp2netwk.mspx#EFAA Sheer brilliance. I'm guessing this has nothing to do with my authentication problem, because XP Web Folders handled DIGEST authentication just fine on localhost---but Dorothy, we're not on localhost anymore... Garret Garret Wilson wrote: Here's new news: Apparently the whole PROPFIND / and Apache proxy things were red herrings. The central issue seems to be that MS Web Folders doesn't know what to do with a 401 Unauthorized response to an OPTIONS request on the WebDAV root folder (when it finally gets around to checking). I reconfigured my WebDAV servlet to bypass authorization for OPTIONS requests (as a test), and once MS Web Folders requested OPTIONS and my servlet sent them back, it issued a PROPFIND and correctly popped up the authorization dialog. (But there are more problems---see below.) Requiring OPTIONS to forsake authorization is a security risk. If I can't return 401 Unauthorized for OPTIONS, then a client can issue OPTIONS at will and find out which resources exist and which are collections. But let's say that I open up OPTIONS for all my realms, just to make MS Web Folders work. I'm still not out of the clear. Once MS Web Folders tries to do a PROPFIND and I enter my name and password, it doesn't work. In fact, MS Web Folder doesn't even send back my credentials! It apparently sends an identical PROPFIND request as the one that just failed, and then shows another dialog box with user changed to www.example.com\user1. (The servers is a virtual host on Apache, proxied to Tomcat.) Now, this I've seen before, with Apache mod_dav on a virtual host. I never found the source of the problem. (I have Apache mod_dav working fine with non-virtual-host SSL domains.) Now I've opened up a security risk, and there's still another problem to track down. Thanks for your pointers, and for being a wonderful audience. ;) Garret Garret Wilson wrote: Yeah, that's what I *assume*, anyway. But Ethereal doesn't work on localhost, so I can only assume. There are these possibilities: * Tomcat returns something other than 501 Not Implemented when configured on localhost. (Not likely.) * MS Web Folders does different checks when accessing the Internet-at-large than when accessing localhost. (Likely? I don't know what to expect with MS Web Folders anymore.) I'm guessing the latter is happening, especially as two MS user agents get into the act: Microsoft-WebDAV-MiniRedir/5.1.2600 and Microsoft Data Access Internet Publishing Provider Protocol Discovery And here's more news: I created a new DefaultServlet mapped to / that for PROPFIND simply returns 403 Forbidden. Something different happens. First, Microsoft-WebDAV-MiniRedir/5.1.2600 does a PROPFIND on /webapp (which gets redirected to /webapp/). MyDefaultServlet returns 403 Forbidden. Fine. Can you guess what Microsoft-WebDAV-MiniRedir/5.1.2600 does? Microsoft-WebDAV-MiniRedir/5.1.2600 then tries to do another PROPFIND on /webapp! And another---for a total of five times! (It's forbidden, you idiot---and /webapp is none of your business anyway; you're supposed to be accessing /webapp/webdav/! Arggg!!!) Then Microsoft Data Access Internet Publishing Provider Protocol Discovery comes along and does its little OPTIONS / (200 OK) OPTIONS /webapp/webdav (401 Unauthorized) dance for three times, and then goes into the FrontPage mumbo-jumbo. What is left to do---issue a 401 Unauthorized on PROPFIND /webapp ? Issue a 401 Unauthorized on OPTIONS / ? Rewrite the operating system? (Yeah, the latter is probably what I'll have to do to fix all this mess.) (Grumble grumble grumble...) Any suggestions on what to do next? Garret Varley, Roger wrote: About the only thing left to try is to allow the PROPFIND on /webapp/ . So here's the Tomcat question---how can I allow a PROPFIND on /webapp/ and return, for example, a 403 forbidden, rather than a 501 Not Implemented? Do I have to override org.apache.catalina.servlets.DefaultServlet? (There goes container independence.) But surely Tomcat returns 501 when accessed via Localhost and you've already said that scenario works. Regards Roger __ This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Atos Origin group liability cannot be triggered for the message
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Garret Wilson wrote: Apparently the whole PROPFIND / and Apache proxy things were red herrings. The central issue seems to be that MS Web Folders doesn't know what to do with a 401 Unauthorized response to an OPTIONS request on the WebDAV root folder (when it finally gets around to checking). I reconfigured my WebDAV servlet to bypass authorization for OPTIONS requests (as a test), and once MS Web Folders requested OPTIONS and my servlet sent them back, it issued a PROPFIND and correctly popped up the authorization dialog. (But there are more problems---see below.) This seems to be related: http://support.microsoft.com/?kbid=831805 So... if I put workarounds in my WebDAV servlet to work with MS Web Folders from XP SP2, will it still fail with XP SP1, because SP1 won't even send an OPTIONS except to the root? http://greenbytes.de/tech/webdav/webdav-redirector-list.html I wrote *my* WebDAV servlet reading from the RFCs. What in the world did MS coders use when they wrote MS Web Folders? Surely not the actual WebDAV specification... This is all just plain ridiculous. Garret - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Ahh the world according to B.G. and Micro$lime. What do you think the odd are that it works against IIS? M$ is famous for their interpretations of the RFC and implementation of odd handling of standards. Thus if you don't live in a Micky$oft world you will have more than you share of problems. Anyway, hope you get it solved. Doug - Original Message - From: Garret Wilson [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Tuesday, January 11, 2005 4:21 PM Subject: Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my! Garret Wilson wrote: Apparently the whole PROPFIND / and Apache proxy things were red herrings. The central issue seems to be that MS Web Folders doesn't know what to do with a 401 Unauthorized response to an OPTIONS request on the WebDAV root folder (when it finally gets around to checking). I reconfigured my WebDAV servlet to bypass authorization for OPTIONS requests (as a test), and once MS Web Folders requested OPTIONS and my servlet sent them back, it issued a PROPFIND and correctly popped up the authorization dialog. (But there are more problems---see below.) This seems to be related: http://support.microsoft.com/?kbid=831805 So... if I put workarounds in my WebDAV servlet to work with MS Web Folders from XP SP2, will it still fail with XP SP1, because SP1 won't even send an OPTIONS except to the root? http://greenbytes.de/tech/webdav/webdav-redirector-list.html I wrote *my* WebDAV servlet reading from the RFCs. What in the world did MS coders use when they wrote MS Web Folders? Surely not the actual WebDAV specification... This is all just plain ridiculous. Garret - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
I've written a custom WebDAV servlet which works fine configured on Windows XP Professional localhost with Tomcat 5.5.4. I upload everything to a http://www.example.com/webapp/webdav/ . The domain is served on Red Hat 6 by Apache 2.0.49, which forwards to Tomcat using ProxyPass and ProxyPassReverse. I try to connect via Microsoft Windows XP Professional Web Folders. (My WebDAV servlet works around all the various Microsoft redirection bugs, and works fine with Web Folders on localhost.) Web Folders doesn't recognize the folder. I whip out Ethereal, and here's what I find: User agent Microsoft Data Access Internet Publishing Provider Protocol Discovery sends an HTTP OPTIONS request to /. Apache sends back a 200 OK. Then Microsoft Web Folders sends an OPTIONS request to /webapp/webdav/. My servlet sends back a 401 Unauthorized, asking for digest credentials. So far, so good. Then Microsoft Web Folders starts over again, sending an HTTP OPTIONS request to /, and then an OPTIONS request to /webapp/webdav/ (never asking me for my username/password), until it finally gives up and says that there must not be a valid WebDAV server at the requested location. Why doesn't Microsoft Web Folders ask my for my password? Why does it ignore the 401 Unauthorized and go back to asking for OPTIONS on the root? Does this have something to do with using Apache to proxy to Tomcat? Why did a non-proxied Tomcat work find on my Windows XP Professional machine? (If it has anything to do with it, I'm testing this in a cafe going through Surf and Sip WiFi.) Thanks in advance for any insight. Garret - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
It may be that the login request is not getting back to you intact. Do you have another app that is protected and triggers a login prompt? Like the manager app. If not hit me off list and I will give you a URL to try. If all else fails, would form auth over SSL work? Just a thought, yeah I know, and so are nightmares. Doug - Original Message - From: Garret Wilson [EMAIL PROTECTED] To: tomcat-user tomcat-user@jakarta.apache.org Sent: Monday, January 10, 2005 11:12 PM Subject: Apache, Tomcat, WebDAV, and Web Folders... Oh, my! I've written a custom WebDAV servlet which works fine configured on Windows XP Professional localhost with Tomcat 5.5.4. I upload everything to a http://www.example.com/webapp/webdav/ . The domain is served on Red Hat 6 by Apache 2.0.49, which forwards to Tomcat using ProxyPass and ProxyPassReverse. I try to connect via Microsoft Windows XP Professional Web Folders. (My WebDAV servlet works around all the various Microsoft redirection bugs, and works fine with Web Folders on localhost.) Web Folders doesn't recognize the folder. I whip out Ethereal, and here's what I find: User agent Microsoft Data Access Internet Publishing Provider Protocol Discovery sends an HTTP OPTIONS request to /. Apache sends back a 200 OK. Then Microsoft Web Folders sends an OPTIONS request to /webapp/webdav/. My servlet sends back a 401 Unauthorized, asking for digest credentials. So far, so good. Then Microsoft Web Folders starts over again, sending an HTTP OPTIONS request to /, and then an OPTIONS request to /webapp/webdav/ (never asking me for my username/password), until it finally gives up and says that there must not be a valid WebDAV server at the requested location. Why doesn't Microsoft Web Folders ask my for my password? Why does it ignore the 401 Unauthorized and go back to asking for OPTIONS on the root? Does this have something to do with using Apache to proxy to Tomcat? Why did a non-proxied Tomcat work find on my Windows XP Professional machine? (If it has anything to do with it, I'm testing this in a cafe going through Surf and Sip WiFi.) Thanks in advance for any insight. Garret - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Parsons Technical Services wrote: It may be that the login request is not getting back to you intact. Do you have another app that is protected and triggers a login prompt? Web Folders works without problems when Tomcat is running on localhost. The password dialog pops up just fine. I use Firefox to browse the directory of http://www.example.com/webapp/webdav/ using GET, which goes through my WebDAV servlet. Firefox pops up an authentication dialog and, after I enter the correct username and password, displays a directory list generated by my WebDAV servlet. I use DavExplorer 0.90 to open http://www.example.com/webapp/webdav/ . DavExplorer pops up a DIGEST authentication dialog and, after I enter the correct username and password, allows me to access the entire WebDAV tree. I use Microsoft Internet Explorer 6 to browse to http://www.example.com/webapp/webdav/ using HTTP GET. After a dialog pops up and I enter the correct username and password, the WebDAV servlet-generated directory list appears. Still using MS IE 6, I try to open http://www.example.com/webapp/webdav/ as a Web Folder using File|Open... (as Web Folder). IE reports that it is unable to open the location as a Web Folder---would I like to see the default view? If I answer in the affirmative, IE sends a GET and shows me the directory listing. Why is MS Web Folders doing this strange OPTIONS thing with / and ignoring my 401 Unauthorized HTTP response? If all else fails, would form auth over SSL work? Just a thought, yeah I know, and so are nightmares. Form authorization with WebDAV? But the answer is no---I want to find out what this isn't working. Thanks anyway! Garret - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
snip Still using MS IE 6, I try to open http://www.example.com/webapp/webdav/ as a Web Folder using File|Open... (as Web Folder). IE reports that it is unable to open the location as a Web Folder---would I like to see the default view? If I answer in the affirmative, IE sends a GET and shows me the directory listing. Why is MS Web Folders doing this strange OPTIONS thing with / and ignoring my 401 Unauthorized HTTP response? snip Did you close all IE windows prior to this last step? If not, then it never destroyed the session. As for the other, Google has several sites that simply say replace IE. But past that there is one issue on M$ that has to do with the message you are getting from IE but doesn't match you setup. Might give you some ideas. http://support.microsoft.com/default.aspx?scid=kb;en-us;290227 On IE5 there was an error file (WecErr.txt file in your TEMP folder ). You might find one on IE6. Good luck. Doug - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Parsons Technical Services wrote: Why is MS Web Folders doing this strange OPTIONS thing with / and ignoring my 401 Unauthorized HTTP response? Did you close all IE windows prior to this last step? If not, then it never destroyed the session. I have now---same result. (Why would I care if it had destroyed the session or not?) As for the other, Google has several sites that simply say replace IE. Good answer. I came up with that one a long time ago. But the problem goes beyond IE---Web Folders is the root problem, here. I know, replace the OS. While we're at it, I'd like to redesign HTTP... (Folding LWS? What were they thinking?) And WebDAV. (Did no one realize that DAV: is not a valid URI and therefore not a valid XML namespace? What were they thinking?) ;) But past that there is one issue on M$ that has to do with the message you are getting from IE but doesn't match you setup. Might give you some ideas. http://support.microsoft.com/default.aspx?scid=kb;en-us;290227 No luck. On IE5 there was an error file (WecErr.txt file in your TEMP folder ). You might find one on IE6. It doesn't seem to be there. Thanks, Garret - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Apache, Tomcat, WebDAV, and Web Folders... Oh, my!
Some more info: When Web Folders first tries to access http://www.example.com/webapp/webdav/ , user agent Microsoft-WebDAV-MiniRedir/5.1.2600 tries to do a PROPFIND on http://www.example.com/webapp . Apache (from Tomcat?) redirects with 302 to http://www.example.com/webapp/ . Microsoft-WebDAV-MiniRedir/5.1.2600 tries to do a PROPFIND on http://www.example.com/webapp/ . Apache sends back (from Tomcat, I suppose) a 501 I don't know what the heck a PROPFIND is type of response. (MS never should have tried to touch http://www.example.com/webapp/ , as that's a parent directory to what I requested.) Again Microsoft-WebDAV-MiniRedir/5.1.2600 tries to do a PROPFIND on http://www.example.com/webapp and goes through the whole procedure again. Finally it gets tired and issues an OPTIONS request on /, to which Apache/Tomcat issues a 202 OK (but with no DAV header). So then Microsoft Data Access Internet Publishing Provider Protocol Discovery gets into the action and issues its own OPTIONS on /. (Why MS can't simply try to access http://www.example.com/webapp/webdav/ like I asked in the first place, I'll never know.) Another 200 OK response. Finally MS gets around to doing an OPTIONS on http://www.example.com/webapp/webdav (which it should have done in the very first request). Tomcat (through Apache) issues its 401 Unauthorized response (as it should), along with the DAV: 1,2 header (as it should). MS decides, Oh, well, I'll issue an OPTIONS on the root path '/' again and goes through the entire process. Then I see various attempts at GET /_vti_inf.html and POST /_vti_bin/shtml.exe , indicating that MS Web Folders didn't recognize WebDAV and is trying to use FrontPage extension witchraft. Sending back a MS-Author-Via: DAV header should stop this---but my WebDAV servlet never got the chance because MS Web Folders wouldn't authenticate in the presence of a 401 Unauthorized. I know that IE, Web Folders, and the whole shebang is a load of (insert expletive here), but I've managed to work around everything else so that it works on pure Tomcat on localhost. There's some little thing that's throwing things off in the Tomcat-behind-Apache-on-Internet scenario, and if I can just find out what it is, I can cut off this last MS bug and get this to working. Does it have something to do with Apache modifying a HTTP request or response to or from Tomcat? Does it have something to do with the server being located somewhere other than localhost, altering the behavior of Microsoft-WebDAV-MiniRedir/5.1.2600 or Microsoft Data Access Internet Publishing Provider Protocol Discovery? An inquiring mind wants to know---but really has to get some sleep right now. Thanks again to Doug and everyone else for your time. Garret Garret Wilson wrote: I've written a custom WebDAV servlet which works fine configured on Windows XP Professional localhost with Tomcat 5.5.4. I upload everything to a http://www.example.com/webapp/webdav/ . The domain is served on Red Hat 6 by Apache 2.0.49, which forwards to Tomcat using ProxyPass and ProxyPassReverse. I try to connect via Microsoft Windows XP Professional Web Folders. (My WebDAV servlet works around all the various Microsoft redirection bugs, and works fine with Web Folders on localhost.) Web Folders doesn't recognize the folder. I whip out Ethereal, and here's what I find: User agent Microsoft Data Access Internet Publishing Provider Protocol Discovery sends an HTTP OPTIONS request to /. Apache sends back a 200 OK. Then Microsoft Web Folders sends an OPTIONS request to /webapp/webdav/. My servlet sends back a 401 Unauthorized, asking for digest credentials. So far, so good. Then Microsoft Web Folders starts over again, sending an HTTP OPTIONS request to /, and then an OPTIONS request to /webapp/webdav/ (never asking me for my username/password), until it finally gives up and says that there must not be a valid WebDAV server at the requested location. Why doesn't Microsoft Web Folders ask my for my password? Why does it ignore the 401 Unauthorized and go back to asking for OPTIONS on the root? Does this have something to do with using Apache to proxy to Tomcat? Why did a non-proxied Tomcat work find on my Windows XP Professional machine? (If it has anything to do with it, I'm testing this in a cafe going through Surf and Sip WiFi.) Thanks in advance for any insight. Garret - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat, WebDAV and Dreamweaver
Hi I'm trying to figure out how to use the WebDAV support that appears to come with Tomcat 4.1 to remotely modify a webapp using Dreamweaver as the WebDAV client. Has anyone done this ? Are you trying to do this but don't want to use SLIDE. Do you want to share knowledge/collaborate Drop me a line if you do. Cheers Duncan Duncan Strang JAVA Consultant UK eUniversities Worldwide Limited Direct:+44 (0)207 932 4495 Fax: +44 (0)207 932 4445 Mobile: +44 (0) E-mail: [EMAIL PROTECTED] www.ukeu.com http://www.ukeu.com/ Switchboard: +44 (0)207 932 This e-mail is from UK eUniversities Worldwide Limited, 14 Buckingham Gate, London. SW1E 6LB, United Kingdom, No: 4218275. This e-mail (and any attachment) is confidential to the addressee and may be privileged. If you are not the named addressee please notify the sender immediately by calling our switchboard on +44 (0) 207 932 - do not disclose to another person or use, copy or forward all or any of it in any form. All information or opinions expressed in this message and/or any attachments are those of the author and are not necessarily those of UK eUniversities Worldwide Limited or any of its affiliates. UK eUniversities Worldwide Limited or any of its affiliates accept no responsibility for loss or damage arising from its use, including damage from virus.
TOMCAT WEBDAV question
Hi I am trying to use Tomcat's implementation of WEBDAV for my file upload requirement .After deploying webDAV as a web folder, I need to open to webdav as a webfolder, and upload files by dragging them over from Windows Explorer to IE . By default, Tomcats webDAV does not have a configurable property where we can set the rootpath of where the files will be uploaded to (eg. C:/tmp). I think TOMCATs implementation PUTs the file based on a relative path to the webdav web app directory . Right now, when you drag a file over to the webdav folder, its treated as a PUT method, and it will invoke DefaultServlets service() to do the uploading. Do you know if it is possible to set an absolute root path with Tomcat's webDAV ? if it's not configurable, how would we change the code to do this ? I have been looking at WebDAVServlet, but found no solution yet how to control where the files will be sent to . - Ch - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month!
TOMCAT webDAV question
Hi I am trying to use Tomcat's implementation of WEBDAV for my file upload requirement .After deploying webDAV as a web folder, I need to open to webdav as a webfolder, and upload files by dragging them over from Windows Explorer to IE . By default, Tomcat's webDAV does not have a configurable property where we can set the rootpath of where the files will be uploaded to (eg. C:/tmp). I think TOMCAT's implementation PUTs the file based on a relative path to the webdav web app directory . Right now, when you drag a file over to the webdav folder, it's treated as a PUT method, and it will invoke DefaultServlet's service() to do the uploading. Do you know if it is possible to set an absolute root path with Tomcat's webDAV ? if it's not configurable, how would we change the code to do this ? I have been looking at WebDAVServlet, but found no solution yet how to control where the files will be sent to . - Ch
Problem using Tomcat, WebDAV, and Dreamweaver
When I attempt to connect from Dreamweaver 4.01 to Tomcat 4.0.3 using WebDAV on the HTTP/1.1 connector port, Dreamweaver is never able to make the connection and stops responding. In archives for this list, I saw the suggestion to use an HTTP/1.0 connector instead and I tried that--it worked, in that Dreamweaver quickly connected to Tomcat. However, if I understand correctly, HTTP/1.0 doesn't support the PUT command, which is why I need to make the connection in the first place. (If I try to do a PUT while connected to HTTP/1.0 port, I get a Dreamweaver error message The desired action could not be completed because the desired resource was not found.) I have no problem uploading to Tomcat via WebDAV using another WebDAV client (Web Folders) via the HTTP/1.1 connector so I don't think the problem is with the Tomcat server. Does anyone know how I can get Dreamweaver 4.01 to make a successful HTTP/1.1 WebDAV connection with Tomcat 4.0.3? Thanks in advance. --Jim == Jim Coble Senior Technology Specialist Center for Instructional Technology Email: [EMAIL PROTECTED] Voice: 919-660-5974 Fax: 919-660-5923 Box 90198, Duke University Durham, NC 27708-0198 == -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
tomcat webdav question
Hi, I am not sure where to send this question, I guess here would be a good starting point. Is it possible to configure the webdav servlet in tomcat to get files from a new filesystem, which has a java api to access files, rather than the local filesystem or an an nfs mounted file system. Slide is supposed to do something like this, but it has much more functionality than what is needed here which may make it hard to integrate. The filesystem that webdav would need to support is implemented through a mysql server, and with its own acls. So the webdav servlet would also need to use a mysql table for authentication which could be implemented through a tomcat jdbc realm. How should I go about it?, Do I need to completely hack the webdav servlet, and implement the new filesystem code there, or is there a simpler method, and if this is not the right mailing list which other mailing lists should I send this question to. Please let me know. thanx, sameer. __ Do You Yahoo!? Yahoo! Greetings - Send FREE e-cards for every occasion! http://greetings.yahoo.com -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: tomcat webdav question
Hi, I am not sure where to send this question, I guess here would be a good starting point. Is it possible to configure the webdav servlet in tomcat to get files from a new filesystem, which has a java api to access files, rather than the local filesystem or an an nfs mounted file system. Slide is supposed to do something like this, but it has much more functionality than what is needed here which may make it hard to integrate. The filesystem that webdav would need to support is implemented through a mysql server, and with its own acls. So the webdav servlet would also need to use a mysql table for authentication which could be implemented through a tomcat jdbc realm. How should I go about it?, Do I need to completely hack the webdav servlet, and implement the new filesystem code there, or is there a simpler method, and if this is not the right mailing list which other mailing lists should I send this question to. Please let me know. If you implement a JNDI directory context which would access your repository, it could work. For the authentication, you definitely need some kind of custom realm, though. Some docs: http://jakarta.apache.org/tomcat/tomcat-4.0-doc/config/resources.html And see in the javadocs the o.a.naming.resources package. Remy -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]