- Original Message -
From: "Alex Mestiashvili" <[EMAIL PROTECTED]>
To:
Sent: Friday, June 13, 2008 9:56 PM
Subject: allow access without auth to app from several ip ranges , but leave
auth from any other hosts
HI ALL .
I have basic authentication for my tomcat application .
Now I
On Sat, 2008-06-14 at 02:31 +0200, André Warnier wrote:
[...snip...]
>
> I tried, but I'm not finding it.
> Am I the only one in that situation ?
Hi André,
Check out cronolog - it is a useful tool to manage tomcat logs in the
way you wish.
This post may point you in the right direction:
http:/
Hi Andre,
I tried, but I'm not finding it.
Am I the only one in that situation ?
No, I've tried to read both the log4j docs and the tomcat logging
docs. Nowhere is there a good working example that describes some real
world situations. My trouble is different from yours, but I believe we
Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
André,
[...]
By
the same token, don't expect anyone in the Tomcat community to give you
a primer on how to configure log4j when the documentation is just
begging to be read over at logging.apache.org. :(
I took you at
Ok i decided to dump this hell and start fresh.
So here I am with stock configurations, it is Tomcat 6.0 + MySQL 5.0.
I login to manager app using MemoryRealm and everything is fine.
I change the global settings in server.xml to use mysql driver and
boom can't login to manager anymore So i gue
Apart from the GE/BMW stuff, many thanks for your answers and time
anyway. Not that you'd think me ungrateful.
Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
André,
André Warnier wrote:
| Is it possible to change this so that Tomcat5.5 would produce a single
| logfi
Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
André,
I'm disappointed in your unwillingness to read documentation for
libraries that you use. You wouldn't call General Electric to ask them
how to cool a steak just because you keep it cold in a GE freezer. By
the sam
Thanks so much Mark. As you suspected it was disabled so I suspect the
security scan is in error. I'll check the web page to be sure though.
David
On 6/13/08, Mark Thomas <[EMAIL PROTECTED]> wrote:
>
>
> Dave Girardin wrote:
>
>> Does this request make sense? I ask because I can't find any infor
If it may help :
I have implemented a mechanism as described below, in Apache using
mod_perl. I don't know how to do it under Tomcat, or if it is even
possible without rewriting some basic Tomcat code, but maybe the
following gives someone an idea.
(Of course, if you are running Tomcat with
Dave Girardin wrote:
Does this request make sense? I ask because I can't find any information on
directory indexing for Tomcat, although disabling it in Apache is easy
enough.
The request makes sense if directory listings are enabled, but they are
disabled by default.
You need to look for t
Group,
I'm a Unix admin working on a Solaris 8 server running Tomcat 6.0.16. No
other apps run on the server, for example, there is no Apache httpd running.
I have been tasked with disabling directory indexing based on a security
scan that provided this infomation:
Vulnerability Identified: Dir
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chuck,
Caldarale, Charles R wrote:
|> From: Alex Mestiashvili
|> [mailto:[EMAIL PROTECTED]
|> Subject: allow access without auth to app from several ip
|> ranges , but leaveauth from any other hosts
|>
|> I have basic authentication for my tomcat app
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
André,
André Warnier wrote:
| Is it possible to change this so that Tomcat5.5 would produce a single
| logfile e.g. per month (catalina.-mm.log), instead of one per day ?
IIRC, Tomcat does not do any log rolling of any kind on its own. Tomcat
us
Alex Mestiashvili wrote:
HI ALL .
I have basic authentication for my tomcat application .
Now I want , allow access without authentication to this app from
several ip ranges , but leave auth from any other hosts .
I did not find any solution in google
Is it possible ?
Not with Tomcat out o
> From: Alex Mestiashvili
> [mailto:[EMAIL PROTECTED]
> Subject: allow access without auth to app from several ip
> ranges , but leaveauth from any other hosts
>
> I have basic authentication for my tomcat application .
> Now I want , allow access without authentication to this app from
> several i
Thanks alot!
That solved it.
--
View this message in context:
http://www.nabble.com/SSL-and-flash-in-tomcat-tp17828970p17831601.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
-
To start a new topic, e-ma
hi Alex, that is an interesting use case. I don't think there is away to
do this without doing some customization to the tomcat code base, such
as implementing your own realm
Filip
Alex Mestiashvili wrote:
HI ALL .
I have basic authentication for my tomcat application .
Now I want , allow acc
it would probably be easier to write a custom logger for the tomcat
logger, that sends the entire message, as it is to where you want it
Filip
Chris Pratt wrote:
Hi all,
Have a vanilla tomcat & coherence instance logging to local files--
CATALINA_BASE/logs and CACHE/logs. I am implementing a
you already posted this once
Chris Pratt wrote:
Hi all,
Have a vanilla tomcat & coherence instance logging to local files--
CATALINA_BASE/logs and CACHE/logs. I am implementing a central
logserver and want to get these into the syslog.
I tried: tail -f [file log] | logger -p local#.info
but
if you use a more recent JDK, then the OutOfMemoryError should have an
additional message, depending on what this message is, you'll need to
apply different tuning parameters.
so if you share the message with us, we can maybe help you,
if your OOME doesn't have a message, upgrade your JDK and
Hi Thanks for the feedback Chuck.
I've done the changes you've suggested and I still experience the same problem.
The after I login I am brought back to the login page. Basiclly this
indicated that the login failed, since my error and login pages are
the same -> index.jsp. I get the following in th
Ok, looking further into the docs I see the deployer can be downloaded
anywhere.
I also see that also has to have the admin app runnning. What was the reason
for
taking this out again? Setting up the deployer has become a lot more
cumbersome.
On Fri, Jun 13, 2008 at 2:37 PM, Vinny <[EMAIL PROTECT
HI ALL .
I have basic authentication for my tomcat application .
Now I want , allow access without authentication to this app from
several ip ranges , but leave auth from any other hosts .
I did not find any solution in google
Is it possible ?
tomcat version is 6.0.16
Thanks in advance .
--
> From: Mathias P.W Nilsson [mailto:[EMAIL PROTECTED]
> Subject: RE: SSL and flash in tomcat
>
> I have this configuration in my server.xml and no
> context since I'm deploying in Root.war.
(I hope the above is ROOT.war, not Root.war, or you're in a world of hurt.)
You do have a context, just not
Rainer Jung wrote:
André Warnier wrote:
Caldarale, Charles R wrote:
[...]
Guys,
I hate to admit it, but it very much looks like I will have to eat my
words and be humble and deferential in the future to the "real Tomcat"
school of thought.
In just found this in the /etc/init.d/tomcat5.5
Thanks for the response. I have this configuration in my server.xml and no
context since I'm deploying in Root.war. Any pointers on how to configure
this
www.mysite.com
--
View this message in context:
http://www.nabble.com/SSL-and-flash-in-tomcat-tp17828970p17830485.html
Sent from t
I have tomcat 5.5 java 1.5 on window server 2003.
Does the windows installer come with the Deployer bundled?
I basically just want to deploy my webapps from netbeans remotely.
If I need to install the Deployer separately , do I just uncompress it in
the same installation folder as tomcat_home ?
Simon Papillon wrote:
"as long as the domains have a common part of course"
Unfortunately in my case that doesn't hold true, its an international
site, and we've got the same domain names for different tlds e.g.:
mydomain.com
mydomain.com.ar
I am not really a specialist of Tomcat, so I'll stic
> -Original Message-
> From: Mathias P.W Nilsson [mailto:[EMAIL PROTECTED]
> Subject: SSL and flash in tomcat
>
> I try to force https for every request in my web application
> but the flash movies don't get displayed in ie.
Seach the archives; you'll find this, among many other references
Hi Chris,
>
> Wow, does that really work? That's a tremendously cool hack, if so!
>
It seems to, although it's not yet been tested in anger and there is
scope for dependancy issues if you navigate from one domain directly
to the another expecting a continous session experience.
What I mean is that
I try to force https for every request in my web application but the flash
movies don't get displayed in ie. I get the exception below. Any clues?
ssl-test
Hairless
/*
POST
GET
HEAD
PUT
OPTIONS
On Fri, Jun 13, 2008 at 8:06 AM, W Strater <[EMAIL PROTECTED]> wrote:
> I am trying to hide the JSP so they can only be accessed via a forward. I
> have been able to put them in a subdirectory of WEB-INF using other
> containers but have not been able to do that with Tomcat 5.5.
That /is/ the co
Hi André,
> You could do the authentication and SSO handling at the Apache level, and
> set some "partial domain" cookie at that level, with some cross-domain
> identifier (as long as the domains have a common part of course).
> The browser will later send this cookie back with each request addres
> From: André Warnier [mailto:[EMAIL PROTECTED]
> Subject: Re: jk load balancing based upon ip address rather
> than session id
>
> Then at the Tomcat level (whichever instance), you could retrieve this
> cookie and the identifier it contains, and use that as a key to some
> "user session" storage
Bill Davidson wrote:
Rainer Jung wrote:
André Warnier wrote:
And, again in other words, if this parameter was set to Off, and
Tomcat generated a new session and a JSESSIONID session cookie for
this session, that the cookie would thus not be marked secure ?
Didn't try this. What does your t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
sur,
sur_1805 wrote:
| I am using tomcat 4 and write jsp page to upload a image in server it
works
| with tomcat 4 but it gives error in upload image in tomcat 6 with the
same
| jsp page .It gives some java.lang.IndexOutOfBoundsException
Care to po
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mario,
mkweb wrote:
| Hello,
| I'm new to the forum. I have a strange problem with my tomcat
installation.
| I'm using tomcat5.5.26 and struts for my web projekt.
|
| I configured the project in a context file, like this :
|
Remove the path and doc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Bill,
Bill Davidson wrote:
| Rainer Jung wrote:
|> André Warnier wrote:
|>> And, again in other words, if this parameter was set to Off, and
|>> Tomcat generated a new session and a JSESSIONID session cookie for
|>> this session, that the cookie woul
Hi.
Sorry to butt in, but just by curiosity from a Tomcat rookie, do you
absolutely need to keep handling the same client IP with the same Tomcat
instance ?
(Do not feel obliged to comment at length, if it would not work, just
tell me so and I'll get back to my Apache/Tomcat studies.)
My p
> -Original Message-
> From: John Gardner [mailto:[EMAIL PROTECTED]
> Subject: Multiple Java processes when using Tomcat
>
> Normally, I only expect to see 2,3,4 or 5 java processes
> associated with the Tomcat user, not all of the above!
http://wiki.apache.org/tomcat/FAQ/Linux_Unix#Q1
-
André Warnier wrote:
Caldarale, Charles R wrote:
From: André Warnier [mailto:[EMAIL PROTECTED]
Subject: Re: Tomcat producing (near) duplicate Catalina logs
Then one of the Linux mangling distribution authors intervened
to explain why they were mangling and re-arranging things, and
it all made
Rainer Jung wrote:
André Warnier wrote:
And, again in other words, if this parameter was set to Off, and
Tomcat generated a new session and a JSESSIONID session cookie for
this session, that the cookie would thus not be marked secure ?
Didn't try this. What does your tests say?
Oooh! I may
thanks Chris - the reason we are tied to j2sdk 1.4.2_12 is because it is
recommended by the the packaged webapp - we are customiznig it and we have
experienced major minor version issues when we try to deploy our customized
code with the packaged webapp.
in short
package s/w is done using j2sdk1
Hi all,
Have a vanilla tomcat & coherence instance logging to local files--
CATALINA_BASE/logs and CACHE/logs. I am implementing a central
logserver and want to get these into the syslog.
I tried: tail -f [file log] | logger -p local#.info
but this resulted in each wrapped line occurring as a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Simon,
Simon Papillon wrote:
| I'll check this out, I think you could be right, it will probably lead
| to a lumpy load profile accross the tomcat servers, but I might give
| it a go.
Yeah, but a lumpy load profile that works properly is better than
Ben Stringer wrote:
On Fri, 2008-06-13 at 14:35 +0200, Yves Glodt wrote:
Hello Christopher and List,
thank you very much for your detailed description!
I am currently evaluating all the possibilities to run my 2 applications side-
by-side.
Another idea I came up with is:
Use only one insta
Caldarale, Charles R wrote:
From: André Warnier [mailto:[EMAIL PROTECTED]
Subject: Re: Tomcat producing (near) duplicate Catalina logs
Then one of the Linux mangling distribution authors intervened
to explain why they were mangling and re-arranging things, and
it all made a lot of sense too.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
tootbatoot,
tootbatoot wrote:
| Hi Thanks. the two applications run on their own and don't share jvm
so I can
| use different versions - but the webapp I have deployed in tomcat server
| requires it to be either on 5.0.28 or 5.5.17 (but using j2sdk1.
Check your server.xml config file for valves-logs settings.
-Original Message-
From: Lucas Campbell [mailto:[EMAIL PROTECTED]
Sent: Friday, June 13, 2008 9:33 AM
To: users@tomcat.apache.org
Subject: Tomcat producing (near) duplicate Catalina logs
Recently we've discovered that our Tomca
- Original Message -
From: "Simon Papillon" <[EMAIL PROTECTED]>
To:
Sent: Thursday, June 12, 2008 7:11 PM
Subject: jk load balancing based upon ip address rather than session id
Hello,
I'm using jk 1.2.25 with tomcat 5.5.25 and apache 2.0 on one debian
box - 2.4.27-2-386 i686 GNU/L
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Yves,
| Another idea I came up with is:
|
| Use only one instance of Tomcat, but create 2 connectors, which each
hold one
| host, and these hosts have different appBase-folders. Then my apps
would been
| isolated, and I would connect to them via mod_
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jesse,
Jesse Klaasse wrote:
| I have implemented the "all lowercase" filter solution, which does the job
| nicely. However, there is still one issue.. s don't go
through
| the filter chain, so when the forward page contains uppercase
characters, a
|
We've installed quite a few instances of Tomcat on clients sites, both
on Windows and Linux, but we've never had a problem quite like this.
The system has been installed since the end of 2006, on Red Hat EL 3,
Tomcat 5.5.20 and JVM 1.5_09, but they have only just noticed this
problem (so it ma
Ben, Rainer,
That is an excellent idea, and would seem to be a very elegant
solution, I'll give it a shot.
Thank you both very much. I really appreciate it.
Cheers
Simon
-
To start a new topic, e-mail: users@tomcat.apache.org
T
I am trying to hide the JSP so they can only be accessed via a forward. I have
been able to put them in a subdirectory of WEB-INF using other containers but
have not been able to do that with Tomcat 5.5.
We are not using Struts but it is the same approach where our business
logic is servlet/acti
Hi Chris,
So just to follow up on your post,
> So, really, it's not that you want to "load balance" based upon IP
> address... you really want to predictably choose a member of the server
> farm based upon some knowledge of the client such that, regardless of
> the domain name used, the initial re
> From: André Warnier [mailto:[EMAIL PROTECTED]
> Subject: Re: Tomcat producing (near) duplicate Catalina logs
>
> Then one of the Linux mangling distribution authors intervened
> to explain why they were mangling and re-arranging things, and
> it all made a lot of sense too.
Then get them to supp
I approve of, applaud, second this request, and together beg for help.
I asked the same kind of thing a few days ago, but was told to install
an "official" Tomcat distribution, with all files in the official
places, and not one of these desperately mangled Linux distributions,
because the file
Recently we've discovered that our Tomcat server is producing near
duplicate Catalina logs. I say near because sometimes the logs are
exactly the same, then other times one version will have more
information than the other (not constantly one having more than the
other). We can't seem to figure
Ben Stringer wrote:
On Fri, 2008-06-13 at 10:54 +0200, Rainer Jung wrote:
Environment variable in httpd can be set by mod_setenvif and
mod_rewrite, which are both able to check various request properties.
For instance mod_rewrite can check the Cookie header, so you could
extract the name of t
On Fri, 2008-06-13 at 14:35 +0200, Yves Glodt wrote:
> Hello Christopher and List,
>
> thank you very much for your detailed description!
> I am currently evaluating all the possibilities to run my 2 applications side-
> by-side.
>
> Another idea I came up with is:
>
> Use only one instance of T
On Fri, 2008-06-13 at 10:54 +0200, Rainer Jung wrote:
>
> Environment variable in httpd can be set by mod_setenvif and
> mod_rewrite, which are both able to check various request properties.
> For instance mod_rewrite can check the Cookie header, so you could
> extract the name of the chosen b
> From: voodoo doctor [mailto:[EMAIL PROTECTED]
> Subject: RE: Problems with deploying an application on Tomcat 5.5.28
>
> My bad... The version is: 5.0.28.
Note that 5.0.28 is no longer supported. Please move up to a level that is.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR O
> From: voodoo doctor [mailto:[EMAIL PROTECTED]
> Subject: Problems with deploying an application on Tomcat 5.5.28
>
> I'm having problems with deploying an application on Tomcat 5.5.28.
Platform? JDK version?
> I cannot see it on the list of applications
What's in the logs? What does the elem
On Fri, Jun 13, 2008 at 7:04 AM, voodoo doctor
<[EMAIL PROTECTED]> wrote:
> cannot see it on the list of applications
> (http://127.0.0.1:8080/manager/html/) after copying it to webapps/
> and restarting tomcat. That usually works fine, but this time it seems
> like there is something wrong.
See
My bad... The version is: 5.0.28.
> From: [EMAIL PROTECTED]
> To: users@tomcat.apache.org
> Subject: Problems with deploying an application on Tomcat 5.5.28
> Date: Fri, 13 Jun 2008 14:04:06 +
>
> Hello!
>
>
> I'm having problems with deploying an application on Tomcat 5.5.28.
> I
> cann
Hello!
I'm having problems with deploying an application on Tomcat 5.5.28.
I
cannot see it on the list of applications (http://127.0.0.1:8080/manager/html/)
after copying it to webapps/
and restarting tomcat. That usually works fine, but this time it seems
like there is something wrong.
Any id
> From: Walter Thompson [mailto:[EMAIL PROTECTED]
> Subject: RE: mapping tomcat to ip address behind router
>
> IP numbers usually are 0-255 and the end number in your IP
> address is 456?
Sometimes we miss the obvious. Not just usually 0-255, they must be 0-255,
since it's an octet.
Thanks for
Maybe your router doesn't recognize the IP address you are using. IP
numbers usually are 0-255 and the end number in your IP address is 456?
-Original Message-
From: Johnny Kewl [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 12, 2008 11:08 PM
To: Tomcat Users List
Subject: Re: mapping to
Liang Xiao Zhu wrote:
Rainer Jung escribió:
Liang Xiao Zhu wrote:
Rainer Jung escribió:
ubekhet wrote:
Hi folks,
Sorry for insisting this question, but I want to know how I can
monitoring the Response Time for all requests coming for specific
port.
I used GlobalRequestProcessor and Reque
I have run into a simular problem going from Tomcat 5 to Tomcat 6, I had
to set many of the file paths as absolute.
Try changing :
save_File ="/data2/opt/jakarta-tomcat-4.1.24/webapps/Oa/BOG/" +
saveFile;
To :
save_File ="C:(Plus anything in front
of)/data2/opt/ja
I saw that in the server.xml web.xml validation is disabled. And with
the comment:
Note: XML Schema validation will not work with Xerces 2.2
The thing is, I can't see any xerces library inside tomcat. I have
xerces 2.4 on my app, but I believe it doesn't matter my webapp lib.
Even in examples we
Rainer Jung escribió:
Liang Xiao Zhu wrote:
Rainer Jung escribió:
ubekhet wrote:
Hi folks,
Sorry for insisting this question, but I want to know how I can
monitoring the Response Time for all requests coming for specific
port.
I used GlobalRequestProcessor and RequestProcessor for getting
I am using tomcat 4 and write jsp page to upload a image in server it works
with tomcat 4 but it gives error in upload image in tomcat 6 with the same
jsp page .It gives some java.lang.IndexOutOfBoundsException
at
--
org.apache.jasper.JasperException: An exception occurred processing JSP page
/
--
View this message in context:
http://www.nabble.com/give-error-in-upload-a-image-in-tomcat-6-but-works-well-in-tomcat-4-tp17822410p17822410.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
-
To start a
Hello Christopher and List,
thank you very much for your detailed description!
I am currently evaluating all the possibilities to run my 2 applications side-
by-side.
Another idea I came up with is:
Use only one instance of Tomcat, but create 2 connectors, which each hold one
host, and these ho
Liang Xiao Zhu wrote:
Rainer Jung escribió:
ubekhet wrote:
Hi folks,
Sorry for insisting this question, but I want to know how I can
monitoring the Response Time for all requests coming for specific port.
I used GlobalRequestProcessor and RequestProcessor for getting
prcessingTime, but I n
Rainer Jung escribió:
ubekhet wrote:
Hi folks,
Sorry for insisting this question, but I want to know how I can
monitoring the Response Time for all requests coming for specific port.
I used GlobalRequestProcessor and RequestProcessor for getting
prcessingTime, but I not sure what's the diff
Hello,
I'm new to the forum. I have a strange problem with my tomcat installation.
I'm using tomcat5.5.26 and struts for my web projekt.
I configured the projekt in a context file, like this :
I set the attribute cookies to 'true' because I want to have session
cookies.
Furthermore I ad
Hello,
I'm new to the forum. I have a strange problem with my tomcat installation.
I'm using tomcat5.5.26 and struts for my web projekt.
I configured the projekt in a context file, like this :
I set the attribute cookies to 'true' because I want to have session
cookies.
Furthermore I added the
Hi Thanks. the two applications run on their own and don't share jvm so I can
use different versions - but the webapp I have deployed in tomcat server
requires it to be either on 5.0.28 or 5.5.17 (but using j2sdk1.4.2_12) - we
are using 5.0.28.
thanks for clarifying the behavior of memory - do yo
André Warnier wrote:
Hi List.
(Indirect ref : previous thread "Moving from a very old Tomcat to a new
Tomcat.")
Ref : http://tomcat.apache.org/connectors-doc/reference/apache.html
Item : JkExtractSSL
Do I understand this right that this parameter JkExtractSSL (default On)
controls whether T
Simon Papillon wrote:
Forgive me if I'm overlooking something, but as far as I understand
it, the sticky session mechanism is driven off the JSESSIONID that is
assigned by the tomcat container when a client first makes a request
that instigates a session creation, if no JSESSIONID cookie was sent
ubekhet wrote:
Hi folks,
Sorry for insisting this question, but I want to know how I can
monitoring the Response Time for all requests coming for specific port.
I used GlobalRequestProcessor and RequestProcessor for getting
prcessingTime, but I not sure what's the differents between both. Wh
Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Simon,
Simon Papillon wrote:
| when there are
| several all servicing requests in a load balanced context, it doesn't
| work, because the session ids from different domains may be directed
| to different tomcat instances /
Hi List.
(Indirect ref : previous thread "Moving from a very old Tomcat to a new
Tomcat.")
Ref : http://tomcat.apache.org/connectors-doc/reference/apache.html
Item : JkExtractSSL
Do I understand this right that this parameter JkExtractSSL (default On)
controls whether Tomcat receives of not
I have implemented the "all lowercase" filter solution, which does the job
nicely. However, there is still one issue.. s don't go through
the filter chain, so when the forward page contains uppercase characters, a
file is created in the work dir with the uppercase character(s) in it. Then,
when a
We are trying to build functionality into our website so a website
administrator can update the properties file which contains the webpage
display strings without stopping the website. He would do this through
an administrative webpage.
The code (excerpted below) works fine when we step throu
88 matches
Mail list logo