Apache Fan created TOMEE-1533:
---------------------------------
Summary: Tomee - <security-constraint> with invalid url-pattern -
No naming context bound to this class loader
Key: TOMEE-1533
URL: https://issues.apache.org/jira/browse/TOMEE-1533
Project: TomEE
Issue Type: Bug
Affects Versions: 1.7.1
Environment: Windows 7, JDK 1.7.0_72, 64bit
Reporter: Apache Fan
Specifying an "invalid" url-pattern in web.xml's <security-constraint> causes
not expressive exception.
Valid: <url-pattern>*.jsp</url-pattern>
Invalid: <url-pattern>/*.jsp</url-pattern>
The exception received does not indicate what could be the problem, it should
be improved:
{noformat}
2015-03-26 09:57:34 WARNING org.apache.catalina.deploy.NamingResources
cleanUp() | Failed to retrieve JNDI naming context for container
[StandardEngine[Catalina].StandardHost[localhost].StandardContext[/projectscope]]
so no cleanup was performed for that container
javax.naming.NamingException: No naming context bound to this class loader
at
org.apache.naming.ContextBindings.getClassLoader(ContextBindings.java:350)
at
org.apache.catalina.deploy.NamingResources.cleanUp(NamingResources.java:985)
at
org.apache.catalina.deploy.NamingResources.stopInternal(NamingResources.java:968)
at org.apache.catalina.util.LifecycleBase.stop(LifecycleBase.java:232)
at
org.apache.catalina.core.StandardContext.stopInternal(StandardContext.java:5702)
at org.apache.catalina.util.LifecycleBase.stop(LifecycleBase.java:232)
at
org.apache.catalina.util.LifecycleBase.destroy(LifecycleBase.java:272)
at
org.apache.catalina.core.ContainerBase.removeChild(ContainerBase.java:1041)
at
org.apache.tomee.catalina.TomcatWebAppBuilder.undeploy(TomcatWebAppBuilder.java:1524)
at
org.apache.tomee.catalina.TomcatWebAppBuilder.undeploy(TomcatWebAppBuilder.java:1505)
at
org.apache.tomee.catalina.TomcatWebAppBuilder.undeployWebApps(TomcatWebAppBuilder.java:747)
at
org.apache.openejb.assembler.classic.Assembler.destroyApplication(Assembler.java:1668)
at
org.apache.openejb.assembler.classic.Assembler.destroyApplication(Assembler.java:1526)
at
org.apache.openejb.assembler.classic.Assembler.destroy(Assembler.java:1367)
at org.apache.openejb.OpenEJB.destroy(OpenEJB.java:266)
at org.apache.tomee.catalina.TomcatLoader.destroy(TomcatLoader.java:400)
at
org.apache.tomee.catalina.TomcatWebAppBuilder.afterStop(TomcatWebAppBuilder.java:1981)
at
org.apache.tomee.catalina.GlobalListenerSupport.lifecycleEvent(GlobalListenerSupport.java:157)
at
org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:117)
at
org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:90)
at
org.apache.catalina.util.LifecycleBase.setStateInternal(LifecycleBase.java:402)
at org.apache.catalina.util.LifecycleBase.stop(LifecycleBase.java:252)
at
org.apache.catalina.util.LifecycleBase.destroy(LifecycleBase.java:272)
at org.apache.catalina.startup.Catalina.start(Catalina.java:693)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:321)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:455)
{noformat}
Sample web.xml:
{noformat}
<security-constraint>
<web-resource-collection>
<web-resource-name>The secured web pages</web-resource-name>
<url-pattern>/*.jsp</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>CN=xxxxx,,OU=zzzzz,DC=aaaaa,DC=com</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
{noformat}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
