RE: Can Tomcat 3.3 support multiple versions of the JVM simultaneousl y?
I can just say how we have done it with tomcat 4 under linux/unix:
Although we have a setup that uses one instance per website
it should give you a start how to achieve what you want.
We have a structure like this:
/usr/local/java/jdk/ibm1.3
/usr/local/java/jdk/sun1.3
/usr/local/java/jdk/sun1.3.1
/usr/local/java/jdk/sun1.4
/usr/local/java/tomcat-4.0.3
/usr/local/java/tomcat-4.0.4
/usr/local/java/tomcat-4.1.8
/www/online/site
/log
dirctory for the log file
/conf
web.xml
server.xml
and other files that contain the site specific setup for tomcat
(tailored versions of the files that are provided by
tomcat)
make shure that the combination of IP and port are unique for
each instance of tomcat.
...
/work
Directory where tomcat stores the generated files and classes
/webapps
Directories for the contexts
/bin
start.sh
Script that calls the tomcat that we want to use for
this site with the environment for this site:
JAVA_HOME=/usr/local/java/jdk/sun1.3.1
CATALINA_HOME=/usr/local/java/tomcat-4.0.3
CATALINA_BASE=/www/online/site
export JAVA_HOME CATALINA_HOME CATALINA_BASE
${CATALINA_HOME}/bin/startup.sh
This way we can have different versions of tomcat at the same time,
all sites that use the same tomcat version use the same 'executable'
but different processes and individual configuration. If we want to
use an other version of tomcat we just have to change CATALINA_HOME
in start.sh (unless the config files are incompatible between these
versions)
-Original Message-
From: Stickland, Michael G [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 10, 2003 2:04 AM
To: '[EMAIL PROTECTED]'
Subject: Can Tomcat 3.3 support multiple versions of the JVM
simultaneousl y?
I would like to configure Tomcat 3.3 so that some contexts
use jdk1.3.1 and others use j2sdk1.4.1.
snip/
Does anyone know if this can be done? Can anyone
explain how
Tomcat 3.3 (or 4.x) can be configured to accomplish this?
Does anyone have an example of this kind of configuration?
snip/
--
To unsubscribe, e-mail: mailto:[EMAIL PROTECTED]
For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Cannot load JDBC driver class 'null'
I have experience that before, but that was my fault rather than tomcat. I put the source jar instead of the driver binary. Other than that DBCP worked as described in the tomcat documents. Cannot load JDBC driver class null usually means that it couldn't find the jdbc driver that you specified in the server.xml . David Durst wrote: Has anyone else experienced this I have read a couple of posts that I found off google, and basically what they are saying is non of the information in the server.xml file is being passed to the Datasource or something of that nature. The suggested fix was to hardcode everything but that kind of defeats the purpose. Does anyone know how to fix this issue w/ out hardcoding?? -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Urgent problem with Singleton
Beside that what craig said your seatbelt against the
double invocation is not secure.
You have to synchronize the access to hasBeenInitialized
(either by making contextInitialized synchronized or by
wrapping the if(!hasBeenInitialized) block in a
synchronized block)
-Original Message-
From: David Hemingway [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 10, 2003 1:50 AM
To: Tomcat Users List
Subject: Urgent problem with Singleton
public void contextInitialized(ServletContextEvent sce)
{
if(!hasBeenInitialized)
{
//Start up the task scheduler thread
hasBeenInitialized = true;
}
}
--
To unsubscribe, e-mail: mailto:[EMAIL PROTECTED]
For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Java Bean Scope questions (a lengthy one) [getting desperate]
As already was pointed out you have to reinitialise
sindex before you run the while loop.
There at least to options to do that:
- define a method like initStateList() and call it
before you enter the loop.
- reset the value in hasMoreStates() when false is returned
-Original Message-
From: Denise Mangano [mailto:[EMAIL PROTECTED]]
Sent: Thursday, January 09, 2003 10:00 PM
To: 'Tomcat Users List'
Subject: RE: Java Bean Scope questions (a lengthy one) [getting
desperate]
% while(formBean.hasMoreStates()) { %
option value=%= formBean.getStateList()%%=
formBean.getStateList()%/option
% }
public boolean hasMoreStates()
{
if (sindex stateArray.length)
return true;
else
return false;
}
//int sindex=-1; declared at beginning of class
public String getStateList()
{
sindex++;
String stemp = stateArray[sindex];
return stemp;
}
--
To unsubscribe, e-mail: mailto:[EMAIL PROTECTED]
For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: tomcat welcome-file
what can you tell me about option 3) i have apache 1.3.27, tomcat4 and mod_jk ! what should i DO to make it not Redirect ! Catalin - Original Message - From: Bill Barker To: [EMAIL PROTECTED] Sent: Friday, January 10, 2003 8:32 AM Subject: Re: tomcat welcome-file 1) Use Tomcat 3.3.2-dev (aka nightly) which has an option to do this. 2) Wait until the 5.x release that will likely support this. 3) Run Tomcat behind Apache/IIS/iPlanet. 4) Search the archives for the patch to Tomcat 4.x that does this, and apply it. Catalin [EMAIL PROTECTED] wrote in message 017201c2b847$bd4b4250$0201a8c0@catalin">news:017201c2b847$bd4b4250$0201a8c0@catalin... How can i configure tomcat not to send 302 Moved Temporarily when i access the ROOT of my webapp ? Eg: http://localhot:8080/testapp/ it gets redirected to http://localhot:8080/testapp/welcome.html i want to skip the redirect step and to load the welcome file or a default file (tomcat conf specified or some) on request. Catalin -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Java Bean Scope questions (a lengthy one)
Denise Mangano [EMAIL PROTECTED] wrote in message 5D83C44941AFD4118B6F0002B302984F438642@EXCHANGE_SERVER">news:5D83C44941AFD4118B6F0002B302984F438642@EXCHANGE_SERVER... Bill, Let me see if I understand this correctly. You are correct. I use formBean throughout various pages, so I understand the need for session scope. However, when I call CCSubmit.jsp, this is the last page of my webapp so I think request scope for transaction is appropriate(?). It is not until I call CCSubmit.jsp that I want to instantiate transaction and set some of the properties equal to properties of formBean. At that point the transaction bean is used to submit to my payment processor and return information to CCSubmit.jsp. Once CCSubmit.jsp displays the returned information and the user has completed the transaction, I no longer need the data stored in transaction... The user can either exit or go back to the home page to pay more fees if they decide to. Question #1: Correct me if I am wrong, but the way I understand it is that even if the user decides to enter the app again and pay more fees, at this point when the user reaches CCSubmit.jsp again, this is a new request so transaction would be instantiated again even it is the same session. Exactly. You wrote: What I was pointing out is that any jsp:setProperty ... that is nested within a jsp:useBean ... ... /jsp:useBean acts as a first-time initialization (sort of like a constructor). If the bean has already been constructed, then it won't be called again. To set the property every time, you need to place the jsp:setProperty ... tag outside of the jsp:useBean ... tag. I understand what you are saying about using your suggested code to set the properties every time, and its making me think that this may be what I need for formBean, not transaction. When my user submits the form for the first time, it calls CCProcess.jsp where formBean is instantiated (setProperty tags are nested within the useBean tag and there is no existing instance). Then if the data is not valid, they are brought to Retry.jsp which displays the errors for the offending fields. Once that form is resubmitted, again there is a call to CCProcess.jsp. Question #2: Are you saying that since my scope is now session, in CCProcess.jsp I should have the formBean setProperty tags outside of the useBean tag? This way each time the form is submitted, the new (and supposedly corrected) data gets written to the bean? (Which if I understand this right this was happening previously and working correct but that was because each time I call CCProcess.jsp it was a new request so the bean was always getting instantiated.) I could see how this could be the cause of my current snag (which is a never ending Retry.jsp loop and select lists not maintaining state), but I would like to hear back of whether or not I am understanding this correctly. Yes, you are understanding correctly. I haven't seen much for formBean, so I'm going to fake it: jsp:useBean id=formBean class=com.complusdata.beans.FormBean scope=session / %-- set all properties from the Request --% jsp:setProperty name=formBean property=* / Thank you!!! Denise -Original Message- From: Bill Barker [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 1:56 AM To: [EMAIL PROTECTED] Subject: Re: Java Bean Scope questions (a lengthy one) Denise Mangano [EMAIL PROTECTED] wrote in message 5D83C44941AFD4118B6F0002B302984F43863C@EXCHANGE_SERVER">news:5D83C44941AFD4118B6F0002B302984F43863C@EXCHANGE_SERVER... Bill, I'm not sure what you mean. The transaction Bean gets instantiated when I call CCSubmit.jsp. That is the first time it is mentioned and CCSubmit is only called once from Verify.jsp. Is what you are saying effectively the same as: Taking a wild guess, I'm thinking that you want 'formBean' to have scope=session, and 'transaction' to have scope=request. This way, 'formBean' stays around between pages, but 'transaction' only stays around for the one request that it is needed. What I was pointing out is that any jsp:setProperty ... that is nested within a jsp:useBean ... ... /jsp:useBean acts as a first-time initialization (sort of like a constructor). If the bean has already been constructed, then it won't be called again. To set the property every time, you need to place the jsp:setProperty ... tag outside of the jsp:useBean ... tag. jsp:useBean id=transaction class = com.complusdata.beans.Transaction scope=session This code will only be executed if there is *no* transaction in the session (and the JSP page needs to create a new one. If you have previously called CCSubmit.jsp (or if you had any other page that used transaction) at any point with this session, it will be skipped. jsp:setProperty name=transaction property=email value=%=formHandler.getEmail()%/ /jsp:useBean Thanks. Denise Mangano Help Desk
Why is NodeIterator class not found?
Hi, I already put this question to the list and got no answer. I try to formulate it differently, as I really hope someone on the list will at least give a hint where I should look for a solution. I am trying to build a Tomcat distribution kit, using ant. The build fails because it cannot find class NodeIterator: ant dist ... BUILD FAILED java.lang.NoClassDefFoundError: org/w3c/dom/traversal/NodeIterator What is wrong? I don't know where I should look to understand why this class is not found. Even a general directive about where to look for class availability and inclusion will be appreciated. Gustavo Avitabile -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Cannot load JDBC driver class 'null'
I have experience that before, but that was my fault rather than tomcat. I put the source jar instead of the driver binary. Other than that DBCP worked as described in the tomcat documents. Cannot load JDBC driver class null usually means that it couldn't find the jdbc driver that you specified in the server.xml . that is strange cause I have it in $CATALINA_HOME/common/lib And it is exactly the same class that I used when I was using JDBC non-jndi. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Virtual hosting and mod_jk
Hi, Thank you for your help. Unfortunately I had already solved the problem myself. The only thing I did is uncomment the folowing line in the httpd.conf Include /usr/local/tomcat/conf/auto/mod_jk.conf and replace with the following block, so that the automatic configuration is disabled. IfModule mod_jk.c JkWorkersFile /usr/local/tomcat/conf/jk/workers.properties JkLogFile /usr/local/tomcat/logs/mod_jk.log JkLogLevel error /IfModule Cheers Andreas - Original Message - From: Eric Ricker [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Thursday, January 09, 2003 3:40 PM Subject: Re: Virtual hosting and mod_jk Alias myapplications /your/path/here/tomcat/webapps/myapplications slap that in your httpd.conf and you should be happy. -- Eric Ricker [EMAIL PROTECTED] - Original Message - From: Andreas Hirner [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Thursday, January 09, 2003 5:43 AM Subject: Virtual hosting and mod_jk Hello, I have successfully integrated tomcat (4.0.6) with apache (1.3.26) on linux and I am able to access a single virtual host (e.g. myapplication) located in the tomcat/webapps/myapplication directory using a url like that: http://www.mydomain.com/myapplication/index.jsp However I would like to be able to access the files in that directory without using the path /myapplication, i.e. http://www.mydomain.com/index.jsp I have been playing around with the configuration files but I have not been able to alter the configuration according to my needs. Does anybody know if this is possible? Thanks in advance. Andreas PS: The relevant sections of httpd.conf and server.xml are listed below. http.conf # VirtualHost *:80 ServerName meinfotoalbum.com ServerAlias www.meinfotoalbum.com DocumentRoot /usr/local/tomcat/mywebapps/meinfoto Directory /usr/local/tomcat/mywebapps/meinfoto DirectoryIndex index.htm index.html Options Indexes FollowSymLinks /Directory #mod_jk link to tomcat JkMount / ajp13 JkMount /*jsp ajp13 #prohibit access of WEB-INF Location /WEB-INF/ AllowOverride None deny from all /Location #prohibit access of META-INF Location /META-INF/ AllowOverride None deny from all /Location /VirtualHost server.xml Host name=meinfotoalbum.com debug=0 appBase=mywebapps unpackWARs=true Aliaswww.meinfotoalbum.com/Alias Logger className=org.apache.catalina.logger.FileLogger directory=logs prefix=meinfotoalbum_log. suffix=.txt timestamp=true / Context path= docBase=meinfoto debug=0 reloadable=false/ Listener className=org.apache.ajp.tomcat4.config.ApacheConfig append=true / /Host -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Cannot load JDBC driver class 'null'
I had that error too. In my case it had to do with how I configured web.xml and server.xml. I was able to get the example from the docs working but when switching to /root context got mixed up. You aren't using the root context are you? In any case, I would double check again server.xml and web.xml and compare them to the examples. That's where my driver class 'null' problem arose. Shawn - Original Message - From: David Durst [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, January 10, 2003 6:43 PM Subject: Re: Cannot load JDBC driver class 'null' I have experience that before, but that was my fault rather than tomcat. I put the source jar instead of the driver binary. Other than that DBCP worked as described in the tomcat documents. Cannot load JDBC driver class null usually means that it couldn't find the jdbc driver that you specified in the server.xml . that is strange cause I have it in $CATALINA_HOME/common/lib And it is exactly the same class that I used when I was using JDBC non-jndi. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: JSP source
Sorry for asking some dumb question. I'm not a unix person. What is wget and sendmail? I cannot see those commands in UNIX. Thanks Deepa -Original Message- From: Will Hartung [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 1:43 AM To: Tomcat Users List Subject: Re: JSP source From: Bodycombe, Andrew [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Subject: RE: JSP source Fetching the HTML is straightforward. Just create a URL connection and read the data from the stream. Yup, great idea Andy, but too much work. Stick this in your cron tab #!/bin/sh wget -O - http://your.server.com/report.jsp?param1=xyzparam2=abc | sendmail [EMAIL PROTECTED] P.S. -O - option of wget streams the output to stdout, sendmail does the rest P.P.S. I can't even spell 'sendmail', so this may do some really horrble thing, but it's the right approach and a good start. Have fun! -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: difference between apache and tomcat webserver
Few more things I would like to add 1.With apache you could secure your application far better than directly using tomcat. (Don't ask me how. Some experts could help me substantiate this) 2.Load balancing and failover With apache-tomcat integration we could have load balancing and fail over Apache could handle multiple instances of Tomcat and redirect request (ie loadbalancing) to various instances. Even if one of the instance is not available the rest could serve the page and as an when the instance is added back to the group apache starts sending requests to that instance totally without affecting anything. Both the above are really important for live websites which would make them more secure and reliable. Hope that helps Deepa -Original Message- From: Julius Davies [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 10:28 PM To: Tomcat Users List Cc: [EMAIL PROTECTED] Subject: RE: difference between apache and tomcat webserver krip pane, I was under the impression that apache is needed to serve the jsp pages - looks like not. Too many people are under that impression. what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Advantages of using apache with tomcat: - Feels safer when using port 1024 on linux/unix. - Works together very well with lots of other web stuff (cgi, perl, php). - All the extra modules, for example: https. - Everybody's doin' it. Notice that I don't include speed of serving static files and images. This is because, frankly, if you're hosting a dynamic web site, static files are the least of your problems. Tomcat is just as fast at sending a 304 - Unmodified response as Apache is, and that's all that matters. Disadvantages of using apache with tomcat: - Much, much harder to get everything working. As you've discovered, it takes about 2 minutes to get Tomcat up and running! You will spend hours, if not days, learning to pair Tomcat up with Apache. At least judging from this mailing list. I've never done it! yours, Julius Davies, Programmer, CUCBC Email: [EMAIL PROTECTED], Ph: 604.730.6385 The contents of this message are my own personal opinions, and not those of CUCBC. -Original Message- From: krip pane [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 2:05 PM To: tomcat Subject: difference between apache and tomcat webserver All, I hope I am understanding and asking this answer correctly. I recently installed tomcat 4.1 with default values and was able to server jsp pages. I was under the impression that apache is needed to serve the jsp pages - looks like not. So the question is what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Thanks __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: difference between apache and tomcat webserver
Hi Julius could you please enlighten me on the following line please. 'Feels safer when using port 1024 on linux/unix.' Thanks Deepa -Original Message- From: Julius Davies [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 10:28 PM To: Tomcat Users List Cc: [EMAIL PROTECTED] Subject: RE: difference between apache and tomcat webserver krip pane, I was under the impression that apache is needed to serve the jsp pages - looks like not. Too many people are under that impression. what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Advantages of using apache with tomcat: - Feels safer when using port 1024 on linux/unix. - Works together very well with lots of other web stuff (cgi, perl, php). - All the extra modules, for example: https. - Everybody's doin' it. Notice that I don't include speed of serving static files and images. This is because, frankly, if you're hosting a dynamic web site, static files are the least of your problems. Tomcat is just as fast at sending a 304 - Unmodified response as Apache is, and that's all that matters. Disadvantages of using apache with tomcat: - Much, much harder to get everything working. As you've discovered, it takes about 2 minutes to get Tomcat up and running! You will spend hours, if not days, learning to pair Tomcat up with Apache. At least judging from this mailing list. I've never done it! yours, Julius Davies, Programmer, CUCBC Email: [EMAIL PROTECTED], Ph: 604.730.6385 The contents of this message are my own personal opinions, and not those of CUCBC. -Original Message- From: krip pane [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 2:05 PM To: tomcat Subject: difference between apache and tomcat webserver All, I hope I am understanding and asking this answer correctly. I recently installed tomcat 4.1 with default values and was able to server jsp pages. I was under the impression that apache is needed to serve the jsp pages - looks like not. So the question is what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Thanks __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: JSP source
Google is your friend: http://www.google.com/search?q=wget http://www.google.com/search?q=sendmail -Original Message- From: Deepa Raja [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 10:29 AM To: Tomcat Users List Subject: RE: JSP source Sorry for asking some dumb question. I'm not a unix person. What is wget and sendmail? -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: difference between apache and tomcat webserver
None in particular. mod_jk is particularly useful if you want different URI sub folders or different file types to be served by different tomcat servers or if you want to load balance between tomcat servers... It will be slightly slower using mod_jk as the web server will need to connect to tomcat in order to process the requests. -Original Message- From: krip pane [mailto:[EMAIL PROTECTED]] Sent: 09 January 2003 22:05 To: tomcat Subject: difference between apache and tomcat webserver All, I hope I am understanding and asking this answer correctly. I recently installe tomcat 4.1 with default values and was able to server jsp pages. I was under the impression that apache is needed to serve the jsp pages - looks like not. So the question is what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Thanks __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Can´t access Tomcat from outside router, help !
Hello everyone ! I have a small problem: I run Tomcat 4.1.12 on port 8080 and it works fine to use it on the local network (behind a router using NAT with static ip´s) but from outside the router I can´t get any contact with port 8080. I also use Apache on port 80 and that works fine. I have configured the proper port redirection in the router and all services work fine, except Tomcat. Are there any settings in Linux Mandrake or in Tomcat, that anyone can think of, that would stop me from accessing Tomcat from outside the router ? Sincerely Dan -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Applet class not found error
I'm getting the error load: class DrawChart not found when running my applet over the network. But it is perfectly loaded and running when I access it from my localhost. I have my jsp under webapps/examples/applets/test.jsp which has the following applet code. applet code=DrawChart.class codebase=../WEB-INF/classes/ width=500 height=100 My DrawChart.java is under webapps/examples/WEB-INF/classes. Is there anything wrong in my codebase. Even without the codebase, the applet runs fine on localhost but not from the network. The same is the case even after giving codebase. I'm not using any other class in the DrawChart.java. Its a simple applet. Please provide a solution. TIA Santosh __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Can´t access Tomcat from outside router, help !
If you are behind a firewall port 8080 may be not enabled in the firewall (at least for http traffic). -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 10:56 AM To: [EMAIL PROTECTED] Subject: Can´t access Tomcat from outside router, help ! I run Tomcat 4.1.12 on port 8080 and it works fine to use it on the local network (behind a router using NAT with static ip´s) but from outside the router I can´t get any contact with port 8080. I also use Apache on port 80 and that works fine. I have configured the proper port redirection in the router and all services work fine, except Tomcat. Are there any settings in Linux Mandrake or in Tomcat, that anyone can think of, that would stop me from accessing Tomcat from outside the router ? -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Problem accessing user ID if Apache used to auithenticate
Milt Epstein wrote: On Thu, 9 Jan 2003, Steve Slatcher wrote: So I have Apache 2 passing on requests to Tomcat 4.1 using jk2. I can get Apache to authenicate URLs that are forwarded to Tomcat, but the user ID seems to get lost in the process so I cannot access it from my JSPs. I have noticed a few references to this in various forums but no resolution. I am not sure if I need some addtional configuration steps (what I am using is pretty minimal), or is there nothing to be done about it short of diving into Apache or Tomcat code? I'm using Apache 1, Tomcat 4.0, and mod_jk. On my JK connector tag as defined in server.xml, I had to add the attribute tomcatAuthentication=false to get the user ID (via getRemoteUser) to be available in Tomcat. Don't know if this is an issue with your (somewhat different) setup. That certainly seems to be an attribute I will need eventually to be aware of, so thanks for pointing it out. For the record though it seemed my original problem was rather due to my Java code (in some way I have not yet got to the bottom of). On simplifiying it ,I managed to get the user id through OK regardless. Guess I just noticed earlier poisting and jumped to conclusions. Cheers Steve Slatcher -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
SV: Can´t access Tomcat from outside router, help !
No FW /D -Ursprungligt meddelande- Från: Ralph Einfeldt [mailto:[EMAIL PROTECTED]] Skickat: den 10 januari 2003 11:06 Till: Tomcat Users List Ämne: RE: Can´t access Tomcat from outside router, help ! If you are behind a firewall port 8080 may be not enabled in the firewall (at least for http traffic). -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 10:56 AM To: [EMAIL PROTECTED] Subject: Can´t access Tomcat from outside router, help ! I run Tomcat 4.1.12 on port 8080 and it works fine to use it on the local network (behind a router using NAT with static ip´s) but from outside the router I can´t get any contact with port 8080. I also use Apache on port 80 and that works fine. I have configured the proper port redirection in the router and all services work fine, except Tomcat. Are there any settings in Linux Mandrake or in Tomcat, that anyone can think of, that would stop me from accessing Tomcat from outside the router ? -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Can´t access Tomcat from outside router, help !
Hi, In the LAN mode are you calling your application using port 8080...(usually for developpement purpose...) ?? this should work but you can call your application calling port 80 too, is this case...you call Apache on port 80, which calls Tomcat on port 8080 using its connector So I think you don't need to redirect anything in your router.check your Apache/Tomcat connector!! make sense ?? Xavier XP -Message d'origine- XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 10:56 XP À : [EMAIL PROTECTED] XP Objet : Can´t access Tomcat from outside router, help ! XP XP XP Hello everyone ! XP XP I have a small problem: XP I run Tomcat 4.1.12 on port 8080 and it works fine to use it on XP the local network (behind a router using NAT with static ip´s) XP but from outside the router I can´t get any contact with port XP 8080. I also use Apache on port 80 and that works fine. I have XP configured the proper port redirection in the router and all XP services work fine, except Tomcat. XP Are there any settings in Linux Mandrake or in Tomcat, that XP anyone can think of, that would stop me from accessing Tomcat XP from outside the router ? XP XP Sincerely XP Dan XP XP -- XP To unsubscribe, e-mail: XP mailto:[EMAIL PROTECTED] XP For additional commands, e-mail: XP mailto:[EMAIL PROTECTED] XP XP -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
SV: Can´t access Tomcat from outside router, help !
I don´t use any connector between apache and tomcat, I run tomcat as standalone. /D -Ursprungligt meddelande- Från: Xavier Prélat [mailto:[EMAIL PROTECTED]] Skickat: den 10 januari 2003 12:24 Till: Tomcat Users List Ämne: RE: Can´t access Tomcat from outside router, help ! Hi, In the LAN mode are you calling your application using port 8080...(usually for developpement purpose...) ?? this should work but you can call your application calling port 80 too, is this case...you call Apache on port 80, which calls Tomcat on port 8080 using its connector So I think you don't need to redirect anything in your router.check your Apache/Tomcat connector!! make sense ?? Xavier XP -Message d'origine- XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 10:56 XP À : [EMAIL PROTECTED] XP Objet : Can´t access Tomcat from outside router, help ! XP XP XP Hello everyone ! XP XP I have a small problem: XP I run Tomcat 4.1.12 on port 8080 and it works fine to use it on XP the local network (behind a router using NAT with static ip´s) XP but from outside the router I can´t get any contact with port XP 8080. I also use Apache on port 80 and that works fine. I have XP configured the proper port redirection in the router and all XP services work fine, except Tomcat. XP Are there any settings in Linux Mandrake or in Tomcat, that XP anyone can think of, that would stop me from accessing Tomcat XP from outside the router ? XP XP Sincerely XP Dan XP XP -- XP To unsubscribe, e-mail: XP mailto:[EMAIL PROTECTED] XP For additional commands, e-mail: XP mailto:[EMAIL PROTECTED] XP XP -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Can I handle exceptions declaratively when using filters?
I tried to use this error-page tag to redirect all exceptions to a default error page in my system... but this never worked for me. So I wrote a filter that catch the exceptions and redirect them to a specific page. On Fri, 2003-01-10 at 05:52, [EMAIL PROTECTED] wrote: Hi, I am developing a web-application that is using filters as controller in an MVC-design. I would like to use declarative exception handling in my web-application as well (using the error-page-tag in the deployment descriptor), but it seems that exception handling does not work with filters. When using servlets, exceptions are caught, but now, they are send to the client in stead of my error-page? Even when I catch all exceptions, like so: error-page exception-typejava.lang.Exception/exception-type location/error.jsp/location /error-page no exception thrown by the filter is caught! Can anybody help me? I have been looking in several books and other references and could not find anything. Thanks, Joeri __ J. Theelen - GIS Developer http://www.gim.be -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- Felipe Schnack Analista de Sistemas [EMAIL PROTECTED] Cel.: (51)91287530 Linux Counter #281893 Centro Universitário Ritter dos Reis http://www.ritterdosreis.br [EMAIL PROTECTED] Fone/Fax.: (51)32303341 -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Unsure how to set environment variables for win xp
Hi, I'm having problems compiling my servlets. I know this is probably out of the domain of tomcat setup, but I decided to ask anyway. I have a servlet called (test.java) in a directory (D:\Program Files\Apache Tomcat 4.0\webapps\test\WEB-INF\classes). My javac.exe is in (D:\j2sdk1.4.1_01\bin). I can't get the servlet file to compile. I think my CLASSPATH and Path environment variables are messed up, because I keep on getting the following exceptions: = HelloWorld.java:2: package javax.servlet does not exist import javax.servlet.*; ^ HelloWorld.java:3: package javax.servlet.http does not exist import javax.servlet.http.*; ^ HelloWorld.java:11: cannot resolve symbol symbol : class HttpServlet location: class HelloWorld public class HelloWorld extends HttpServlet ^ HelloWorld.java:13: cannot resolve symbol symbol : class HttpServletRequest location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ HelloWorld.java:13: cannot resolve symbol symbol : class HttpServletResponse location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ HelloWorld.java:13: cannot resolve symbol symbol : class ServletException location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ 6 errors = Can anyone please help me? thanks, Tammer Salem
Error while stopping apache-tomcat installed as windows 2000 Service
hi, apache-tomcat 4.0 is installed on windows 2000 as service and working fine. but after i stop and start the apache-tomcat service, could not able to access jsp pages. the following is error message foundApplication Log in EventViewer. event properties description === the apache tomcat service has started the apache tomcat service has timed out during a stop request and is being terminated. === localhost_log.2003-01-10.txt contains: 2003-01-10 12:54:02 StandardHost[localhost]: Removing web application at context path /manager 2003-01-10 12:54:02 StandardHost[localhost]: Removing web application at context path /examples 2003-01-10 12:54:02 StandardHost[localhost]: Removing web application at context path /tomcat-docs 2003-01-10 12:54:02 StandardHost[localhost]: Removing web application at context path /webdav 2003-01-10 12:54:02 StandardHost[localhost]: Removing web application at context path 2003-01-10 12:54:02 StandardWrapper[:jsp]: Waiting for 3 instance(s) to be deallocated 2003-01-10 13:55:35 WebappLoader[/manager]: Deploying class repositories to work directory D:\Apache Tomcat 4.0\work\Standalone\localhost\manager 2003-01-10 13:55:35 StandardManager[/manager]: Seeding random number generator class java.security.SecureRandom 2003-01-10 13:55:38 StandardManager[/manager]: Seeding of random number generator has been completed 2003-01-10 13:55:41 ContextConfig[/manager]: Added certificates - request attribute Valve 2003-01-10 13:55:41 ContextConfig[/manager]: Configured an authenticator for method BASIC 2003-01-10 13:55:41 StandardWrapper[/manager:default]: Loading container servlet default 2003-01-10 13:55:42 default: init 2003-01-10 13:55:42 StandardWrapper[/manager:invoker]: Loading container servlet invoker 2003-01-10 13:55:42 invoker: init 2003-01-10 13:55:42 jsp: init 2003-01-10 13:55:46 WebappLoader[/reports]: Deploying class repositories to work directory D:\Apache Tomcat 4.0\work\Standalone\localhost\reports 2003-01-10 13:55:46 StandardManager[/reports]: Seeding random number generator class java.security.SecureRandom 2003-01-10 13:55:46 StandardManager[/reports]: Seeding of random number generator has been completed 2003-01-10 13:55:47 ContextConfig[/reports]: Added certificates - request attribute Valve 2003-01-10 13:55:47 StandardWrapper[/reports:default]: Loading container servlet default 2003-01-10 13:55:47 default: init 2003-01-10 13:55:47 StandardWrapper[/reports:invoker]: Loading container servlet invoker 2003-01-10 13:55:47 invoker: init 2003-01-10 13:55:47 jsp: init 2003-01-10 13:55:47 StandardHost[localhost]: Installing web application at context path from URL file:D:\Apache Tomcat 4.0\webapps\ROOT 2003-01-10 13:55:47 WebappLoader[]: Deploying class repositories to work directory D:\Apache Tomcat 4.0\work\Standalone\localhost\_ 2003-01-10 13:55:47 StandardManager[]: Seeding random number generator class java.security.SecureRandom 2003-01-10 13:55:47 StandardManager[]: Seeding of random number generator has been completed 2003-01-10 13:55:48 ContextConfig[]: Added certificates - request attribute Valve 2003-01-10 13:55:48 StandardWrapper[:default]: Loading container servlet default 2003-01-10 13:55:48 default: init 2003-01-10 13:55:48 StandardWrapper[:invoker]: Loading container servlet invoker 2003-01-10 13:55:48 invoker: init 2003-01-10 13:55:48 jsp: init 2003-01-10 13:55:49 StandardHost[localhost]: Installing web application at context path /tomcat-docs from URL file:D:\Apache Tomcat 4.0\webapps\tomcat-docs 2003-01-10 13:55:49 WebappLoader[/tomcat-docs]: Deploying class repositories to work directory D:\Apache Tomcat 4.0\work\Standalone\localhost\tomcat-docs 2003-01-10 13:55:49 StandardManager[/tomcat-docs]: Seeding random number generator class java.security.SecureRandom 2003-01-10 13:55:49 StandardManager[/tomcat-docs]: Seeding of random number generator has been completed 2003-01-10 13:55:49 ContextConfig[/tomcat-docs]: Added certificates - request attribute Valve 2003-01-10 13:55:49 StandardWrapper[/tomcat-docs:default]: Loading container servlet default 2003-01-10 13:55:49 default: init 2003-01-10 13:55:49 StandardWrapper[/tomcat-docs:invoker]: Loading container servlet invoker 2003-01-10 13:55:49 invoker: init 2003-01-10 13:55:49 jsp: init 2003-01-10 13:55:50 StandardHost[localhost]: Installing web application at context path /webdav from URL file:D:\Apache Tomcat 4.0\webapps\webdav 2003-01-10 13:55:50 WebappLoader[/webdav]: Deploying class repositories to work directory D:\Apache Tomcat 4.0\work\Standalone\localhost\webdav 2003-01-10 13:55:50 StandardManager[/webdav]: Seeding random number generator class java.security.SecureRandom 2003-01-10 13:55:50 StandardManager[/webdav]: Seeding of random number generator has been completed 2003-01-10 13:55:51 ContextConfig[/webdav]: Added certificates - request attribute Valve 2003-01-10
RE: Can´t access Tomcat from outside router, help !
Can you simply use the port 80 to connect to Tomcat ? meaning use port 80 as a default.. Xavier XP -Message d'origine- XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 12:24 XP À : [EMAIL PROTECTED] XP Objet : SV: Can´t access Tomcat from outside router, help ! XP XP XP I don´t use any connector between apache and tomcat, I run XP tomcat as standalone. XP XP /D XP XP -Ursprungligt meddelande- XP Från: Xavier Prélat [mailto:[EMAIL PROTECTED]] XP Skickat: den 10 januari 2003 12:24 XP Till: Tomcat Users List XP Ämne: RE: Can´t access Tomcat from outside router, help ! XP XP XP Hi, XP XP In the LAN mode are you calling your application using port XP 8080...(usually XP for developpement purpose...) ?? this should work XP XP but you can call your application calling port 80 too, is this XP case...you XP call Apache on port 80, which calls Tomcat on port 8080 using its XP connector XP XP So I think you don't need to redirect anything in your XP router.check your XP Apache/Tomcat connector!! XP XP make sense ?? XP XP Xavier XP XP XP XP XP -Message d'origine- XP XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 10:56 XP À : [EMAIL PROTECTED] XP Objet : Can´t access Tomcat from outside router, help ! XP XP XP Hello everyone ! XP XP I have a small problem: XP I run Tomcat 4.1.12 on port 8080 and it works fine to use it on XP the local network (behind a router using NAT with static ip´s) XP but from outside the router I can´t get any contact with port XP 8080. I also use Apache on port 80 and that works fine. I have XP configured the proper port redirection in the router and all XP services work fine, except Tomcat. XP Are there any settings in Linux Mandrake or in Tomcat, that XP anyone can think of, that would stop me from accessing Tomcat XP from outside the router ? XP XP Sincerely XP Dan XP XP -- XP To unsubscribe, e-mail: XP mailto:[EMAIL PROTECTED] XP For additional commands, e-mail: XP mailto:[EMAIL PROTECTED] XP XP -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: IIS Troubles
Guess what Brian, I've just been through the whole tedious, ghastly business of doing this. I too was at my wits end. In the end I used a modified isapi_redirector.dll - e-mail me for it. I used version 4.1.8 of Tomcat and copied to Program_files as a folder called tomcat4.1 Where are you running into difficulties? Perhaps you could be nore specific. Richard Warwick Cergis Ltd. - Original Message - From: Brian Gomori [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, January 09, 2003 10:44 PM Subject: IIS Troubles Hello, I have followed your how-to's to the letter in an attempt to install tomcat in collaboration with J2SDK to serve JSP pages from IIS. I have been at this for two days attempting to figure out why I am still unable to serve JSP pages, when both attempts at installation and troubleshooting return nothing. By all rights, JSP pages should run perfectly fine. I am at my wits end, running IIS 5 on Win2k and WinXP. Any help would be much appreciated. Thanks, Brian Brian Gomori Xworld.com 636 Broadway, Suite 204 New York, NY 10012 (212)674-5600 ext. 20 [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
SV: Can´t access Tomcat from outside router, help !
No, I have to use port 8080 to access tomcat, I haven´t looked into how the connectors work so I think it´s easier to run tomcat as standalone /D -Ursprungligt meddelande- Från: Xavier Prélat [mailto:[EMAIL PROTECTED]] Skickat: den 10 januari 2003 13:25 Till: Tomcat Users List Ämne: RE: Can´t access Tomcat from outside router, help ! Can you simply use the port 80 to connect to Tomcat ? meaning use port 80 as a default.. Xavier XP -Message d'origine- XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 12:24 XP À : [EMAIL PROTECTED] XP Objet : SV: Can´t access Tomcat from outside router, help ! XP XP XP I don´t use any connector between apache and tomcat, I run XP tomcat as standalone. XP XP /D XP XP -Ursprungligt meddelande- XP Från: Xavier Prélat [mailto:[EMAIL PROTECTED]] XP Skickat: den 10 januari 2003 12:24 XP Till: Tomcat Users List XP Ämne: RE: Can´t access Tomcat from outside router, help ! XP XP XP Hi, XP XP In the LAN mode are you calling your application using port XP 8080...(usually XP for developpement purpose...) ?? this should work XP XP but you can call your application calling port 80 too, is this XP case...you XP call Apache on port 80, which calls Tomcat on port 8080 using its XP connector XP XP So I think you don't need to redirect anything in your XP router.check your XP Apache/Tomcat connector!! XP XP make sense ?? XP XP Xavier XP XP XP XP XP -Message d'origine- XP XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 10:56 XP À : [EMAIL PROTECTED] XP Objet : Can´t access Tomcat from outside router, help ! XP XP XP Hello everyone ! XP XP I have a small problem: XP I run Tomcat 4.1.12 on port 8080 and it works fine to use it on XP the local network (behind a router using NAT with static ip´s) XP but from outside the router I can´t get any contact with port XP 8080. I also use Apache on port 80 and that works fine. I have XP configured the proper port redirection in the router and all XP services work fine, except Tomcat. XP Are there any settings in Linux Mandrake or in Tomcat, that XP anyone can think of, that would stop me from accessing Tomcat XP from outside the router ? XP XP Sincerely XP Dan XP XP -- XP To unsubscribe, e-mail: XP mailto:[EMAIL PROTECTED] XP For additional commands, e-mail: XP mailto:[EMAIL PROTECTED] XP XP -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Authentication and Filters
I meant 2.5 since changes to 2.4 are closed from my position in the dev community. My point is only the incoming request is protected by the security constraint in web.xml. It may be nice to allow the programmer to also check future dispatches for authorization before the dispatch occurs. RequestDispatcher.isAuthorized() was to allow an admin to define additional security contraints in web.xml without writing code. This also requires the cooperation of the developer of a webapp to check for this condition too. Sorry for starting to take this off-topic. -Tim Craig R. McClanahan wrote: On Thu, 9 Jan 2003, Tim Funk wrote: Date: Thu, 09 Jan 2003 21:15:12 -0500 From: Tim Funk [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: Authentication and Filters Is there a chance (or worthwhile) that in Servlet API 2.5 a developer could check if an obtained RequestDispatcher would violate a security constraint in web.xml? I assume you mean Servlet 2.4, right? For example the following new method: RequestDispatcher.isAuthorized() Returns true if the RequestDispatcher's url passes the constraints defined in web.xml This does not seem likely to me. Nor does it seem necessary. After all, your application has available everything it needs to know (through calls like request.getUserPrincipal() and request.isUserInRole()) to make this decision for itself. If the app chooses to forward, the container is going to assume that it knows what it is doing. Now that you can declare a Filter to be imposed on RD calls in Servlet 2.4, that might be a good place to implement a check like this. -Tim Craig -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Can´t access Tomcat from outside router, help !
Right Now I use JRun ...and Apache I only use JRun as a standalone server for developpement purpose but ont the production platform...I use Apache...to connect to Jrun... I think it is the best thing to do to avoid conflicts no routing, no translation the only port users see and know is port 80 on HTTP. simple Of course if you have reasons not to switch.let's try to fix it! Xavier XP -Message d'origine- XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 12:24 XP À : [EMAIL PROTECTED] XP Objet : SV: Can´t access Tomcat from outside router, help ! XP XP XP I don´t use any connector between apache and tomcat, I run XP tomcat as standalone. XP XP /D XP XP -Ursprungligt meddelande- XP Från: Xavier Prélat [mailto:[EMAIL PROTECTED]] XP Skickat: den 10 januari 2003 12:24 XP Till: Tomcat Users List XP Ämne: RE: Can´t access Tomcat from outside router, help ! XP XP XP Hi, XP XP In the LAN mode are you calling your application using port XP 8080...(usually XP for developpement purpose...) ?? this should work XP XP but you can call your application calling port 80 too, is this XP case...you XP call Apache on port 80, which calls Tomcat on port 8080 using its XP connector XP XP So I think you don't need to redirect anything in your XP router.check your XP Apache/Tomcat connector!! XP XP make sense ?? XP XP Xavier XP XP XP XP XP -Message d'origine- XP XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 10:56 XP À : [EMAIL PROTECTED] XP Objet : Can´t access Tomcat from outside router, help ! XP XP XP Hello everyone ! XP XP I have a small problem: XP I run Tomcat 4.1.12 on port 8080 and it works fine to use it on XP the local network (behind a router using NAT with static ip´s) XP but from outside the router I can´t get any contact with port XP 8080. I also use Apache on port 80 and that works fine. I have XP configured the proper port redirection in the router and all XP services work fine, except Tomcat. XP Are there any settings in Linux Mandrake or in Tomcat, that XP anyone can think of, that would stop me from accessing Tomcat XP from outside the router ? XP XP Sincerely XP Dan XP XP -- XP To unsubscribe, e-mail: XP mailto:[EMAIL PROTECTED] XP For additional commands, e-mail: XP mailto:[EMAIL PROTECTED] XP XP -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: SV: Can?t access Tomcat from outside router, help !
* [EMAIL PROTECTED] [EMAIL PROTECTED] [0110 11:10]: No FW If you're *sure* about that, might it be a DNS issue? Try connecting to your ip address insread. And check it;s not a private IP. -- Rasputin :: Jack of All Trades - Master of Nuns -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
SV: SV: Can?t access Tomcat from outside router, help !
Rasputin: I have tried using the ip, same problem.. Xavier: So if I wanna use a connector between apache and tomcat, which is the easiest one to use, and are there any good instructions avaliable on how to do it ? /D -Ursprungligt meddelande- Från: Rasputin [mailto:[EMAIL PROTECTED]] Skickat: den 10 januari 2003 13:31 Till: Tomcat Users List Ämne: Re: SV: Can?t access Tomcat from outside router, help ! * [EMAIL PROTECTED] [EMAIL PROTECTED] [0110 11:10]: No FW If you're *sure* about that, might it be a DNS issue? Try connecting to your ip address insread. And check it;s not a private IP. -- Rasputin :: Jack of All Trades - Master of Nuns -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Can´t access Tomcat from outside router, help !
..so it's not a DNS problem... I guess you did it...but check agin your router configurationport 8080 is explicitly closed in a standard router configuration... and is the apache server you can connect...and the Tomcat are on the same machine. another track... may be you use a machine with multiples IP adresses.check your adress translation and subnet masks ... Xavier XP -Message d'origine- XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 10:56 XP À : [EMAIL PROTECTED] XP Objet : Can´t access Tomcat from outside router, help ! XP XP XP Hello everyone ! XP XP I have a small problem: XP I run Tomcat 4.1.12 on port 8080 and it works fine to use it on XP the local network (behind a router using NAT with static ip´s) XP but from outside the router I can´t get any contact with port XP 8080. I also use Apache on port 80 and that works fine. I have XP configured the proper port redirection in the router and all XP services work fine, except Tomcat. XP Are there any settings in Linux Mandrake or in Tomcat, that XP anyone can think of, that would stop me from accessing Tomcat XP from outside the router ? XP XP Sincerely XP Dan XP XP -- XP To unsubscribe, e-mail: XP mailto:[EMAIL PROTECTED] XP For additional commands, e-mail: XP mailto:[EMAIL PROTECTED] XP XP -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: SV: Can?t access Tomcat from outside router, help !
mod_jk works finebut there is a thread this day dealing with it Xavier XP -Message d'origine- XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 13:35 XP À : [EMAIL PROTECTED]; [EMAIL PROTECTED] XP Objet : SV: SV: Can?t access Tomcat from outside router, help ! XP XP XP Rasputin: I have tried using the ip, same problem.. XP XP Xavier: So if I wanna use a connector between apache and XP tomcat, which is the easiest one to use, and are there any good XP instructions avaliable on how to do it ? XP XP /D XP XP -Ursprungligt meddelande- XP Från: Rasputin [mailto:[EMAIL PROTECTED]] XP Skickat: den 10 januari 2003 13:31 XP Till: Tomcat Users List XP Ämne: Re: SV: Can?t access Tomcat from outside router, help ! XP XP XP * [EMAIL PROTECTED] [EMAIL PROTECTED] XP [0110 11:10]: XP No FW XP XP If you're *sure* about that, might it be a DNS issue? XP XP Try connecting to your ip address insread. And check it;s not a XP private IP. XP XP -- XP Rasputin :: Jack of All Trades - Master of Nuns XP XP -- XP To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: HTTPS to HTTP
As said, I was thinking of the scenario where the *whole* site can be accessed without SSL - no admin links or anything like that. I agree with Craig that if there are any sensitive areas at all it is not safe to reuse the session id - and that before enabling any keep session id option it is vital that the user understands the consequences. In this scenario, the *only* page requiring SSL would be the login page that collects the username and password. (That could be either a dedicated application login page or the login page configured for form-based login. Basic authentication is never an option!). If this condition is met I still don't see that stealing the session id will enable anything that would be considered a risk. The benefit is that it hides the password while gaining any benefits of not using SSL where it is not needed. Having said all that - for our own situation the extra costs of requiring SSL for non-sensitive pages are negligible so everything involving a user authentication is done under SSL. But that may not be true for everyone. John Craig R. McClanahan wrote: On Thu, 9 Jan 2003, John Holman wrote: Date: Thu, 09 Jan 2003 12:56:16 + From: John Holman [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: HTTPS to HTTP Yes, that is clearly a risk. The *whole* web application needs have no risks in order to allow http access to any of it - any sensitive link and it must all be https. (And of course if SSO is enabled *all* web applications for the virtual host must be considered safe). Otherwise I'm not convinced that session stealing is really a problem - though open to counter-arguements. Consider a scenario where you have admin pages that require SSL, and normal pages that can run on either. Assume Tomcat were modified to migrate your session back. Consider the following course of events: * User A logs on, selects link for an admin function, and is switched to SSL for that part. * User A then switches back to non-SSL. Among other things, this means that the session id is now visible in plaintext on the wire. * User B snoops the network, acquires the session id, and submits an SSL request (with the stolen session id) to an admin function. * Server blithely executes the forged request, because login identity is attached to the session id (which is now plaintext -- it wouldn't be if the session had been created under SSL and never allowed to switch back). Once an application has switched from HTTP to HTTPS for a session, it should be programmed to never go back again. John Craig Ralph Einfeldt wrote: But be aware that quite simple changes in the configuration of tomcat can lead to big security holes. Guess what happens if you or somebody else someday decides to switch from basic authentification to form authentifcation and the sysadmin visits the user side and somebody steals the sysadmins session ...) -Original Message- From: David Hemingway [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 12:08 PM To: Tomcat Users List Subject: Re: HTTPS to HTTP Thats is my exact situation. The sysadmin section of teh site is 100% https. but the on the user side there is nothing that sensitive and little harm they could be cause stealing someones session. It would not be worth going to the trouble of stealing the session for the benefit you would get. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Unsure how to set environment variables for win xp
Check my HOWTO for Windows XP Pro: http://www.johnturner.com/howto There are a couple of places in there where it explains how to install the JDK, set JAVA_HOME, etc. John -Original Message- From: Tammer Salem [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 6:52 AM To: Tomcat Users List Subject: Unsure how to set environment variables for win xp Hi, I'm having problems compiling my servlets. I know this is probably out of the domain of tomcat setup, but I decided to ask anyway. I have a servlet called (test.java) in a directory (D:\Program Files\Apache Tomcat 4.0\webapps\test\WEB-INF\classes). My javac.exe is in (D:\j2sdk1.4.1_01\bin). I can't get the servlet file to compile. I think my CLASSPATH and Path environment variables are messed up, because I keep on getting the following exceptions: = HelloWorld.java:2: package javax.servlet does not exist import javax.servlet.*; ^ HelloWorld.java:3: package javax.servlet.http does not exist import javax.servlet.http.*; ^ HelloWorld.java:11: cannot resolve symbol symbol : class HttpServlet location: class HelloWorld public class HelloWorld extends HttpServlet ^ HelloWorld.java:13: cannot resolve symbol symbol : class HttpServletRequest location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ HelloWorld.java:13: cannot resolve symbol symbol : class HttpServletResponse location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ HelloWorld.java:13: cannot resolve symbol symbol : class ServletException location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ 6 errors = Can anyone please help me? thanks, Tammer Salem -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: difference between apache and tomcat webserver
On UNIX/Linux, ports less than 1024 are privileged ports. To run a service on them, you have to run the service as root. Running services as root is generally a bad idea: an exploit like a buffer overflow can allow access to the operating system via that service, and since the service is running as root, the exploiter now has root access. Apache starts up as root, but uses child processes running as a non-root user with (preferably) very limited access to actually serve HTTP and HTTPS requests. Tomcat does not do this, and even though there are security measures built-in to the JVM, many people do not feel comfortable running Tomcat as root on a publicly accessible port like port 80. So, they use Apache on port 80, and hide Tomcat behind Apache. John -Original Message- From: Deepa Raja [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 4:38 AM To: Tomcat Users List Subject: RE: difference between apache and tomcat webserver Hi Julius could you please enlighten me on the following line please. 'Feels safer when using port 1024 on linux/unix.' Thanks Deepa -Original Message- From: Julius Davies [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 10:28 PM To: Tomcat Users List Cc: [EMAIL PROTECTED] Subject: RE: difference between apache and tomcat webserver krip pane, I was under the impression that apache is needed to serve the jsp pages - looks like not. Too many people are under that impression. what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Advantages of using apache with tomcat: - Feels safer when using port 1024 on linux/unix. - Works together very well with lots of other web stuff (cgi, perl, php). - All the extra modules, for example: https. - Everybody's doin' it. Notice that I don't include speed of serving static files and images. This is because, frankly, if you're hosting a dynamic web site, static files are the least of your problems. Tomcat is just as fast at sending a 304 - Unmodified response as Apache is, and that's all that matters. Disadvantages of using apache with tomcat: - Much, much harder to get everything working. As you've discovered, it takes about 2 minutes to get Tomcat up and running! You will spend hours, if not days, learning to pair Tomcat up with Apache. At least judging from this mailing list. I've never done it! yours, Julius Davies, Programmer, CUCBC Email: [EMAIL PROTECTED], Ph: 604.730.6385 The contents of this message are my own personal opinions, and not those of CUCBC. -Original Message- From: krip pane [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 2:05 PM To: tomcat Subject: difference between apache and tomcat webserver All, I hope I am understanding and asking this answer correctly. I recently installed tomcat 4.1 with default values and was able to server jsp pages. I was under the impression that apache is needed to serve the jsp pages - looks like not. So the question is what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Thanks __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Applet class not found error
Hi Santosh, Tomcat won't serve the class files to the client, as it never serves files below WEB-INF. Put your class files somewhere else, but not under WEB-INF. Then it will work. Andreas On 10 Jan 2003 at 2:04, Santosh Kulkarni wrote: I'm getting the error load: class DrawChart not found when running my applet over the network. But it is perfectly loaded and running when I access it from my localhost. I have my jsp under webapps/examples/applets/test.jsp which has the following applet code. applet code=DrawChart.class codebase=../WEB-INF/classes/ width=500 height=100 My DrawChart.java is under webapps/examples/WEB-INF/classes. Is there anything wrong in my codebase. Even without the codebase, the applet runs fine on localhost but not from the network. The same is the case even after giving codebase. I'm not using any other class in the DrawChart.java. Its a simple applet. Please provide a solution. TIA Santosh -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Virtual hosting and mod_jk
That may have solved the problem, but now you are limited to serving that application on that domain, only. If you add anything more (another domain name, another application, etc) you will want to understand how to use virtual hosts and the JkMount statement in httpd.conf. John -Original Message- From: Andreas Hirner [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 4:26 AM To: Tomcat Users List Subject: Re: Virtual hosting and mod_jk Hi, Thank you for your help. Unfortunately I had already solved the problem myself. The only thing I did is uncomment the folowing line in the httpd.conf Include /usr/local/tomcat/conf/auto/mod_jk.conf and replace with the following block, so that the automatic configuration is disabled. IfModule mod_jk.c JkWorkersFile /usr/local/tomcat/conf/jk/workers.properties JkLogFile /usr/local/tomcat/logs/mod_jk.log JkLogLevel error /IfModule Cheers Andreas - Original Message - From: Eric Ricker [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Thursday, January 09, 2003 3:40 PM Subject: Re: Virtual hosting and mod_jk Alias myapplications /your/path/here/tomcat/webapps/myapplications slap that in your httpd.conf and you should be happy. -- Eric Ricker [EMAIL PROTECTED] - Original Message - From: Andreas Hirner [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Thursday, January 09, 2003 5:43 AM Subject: Virtual hosting and mod_jk Hello, I have successfully integrated tomcat (4.0.6) with apache (1.3.26) on linux and I am able to access a single virtual host (e.g. myapplication) located in the tomcat/webapps/myapplication directory using a url like that: http://www.mydomain.com/myapplication/index.jsp However I would like to be able to access the files in that directory without using the path /myapplication, i.e. http://www.mydomain.com/index.jsp I have been playing around with the configuration files but I have not been able to alter the configuration according to my needs. Does anybody know if this is possible? Thanks in advance. Andreas PS: The relevant sections of httpd.conf and server.xml are listed below. http.conf # VirtualHost *:80 ServerName meinfotoalbum.com ServerAlias www.meinfotoalbum.com DocumentRoot /usr/local/tomcat/mywebapps/meinfoto Directory /usr/local/tomcat/mywebapps/meinfoto DirectoryIndex index.htm index.html Options Indexes FollowSymLinks /Directory #mod_jk link to tomcat JkMount / ajp13 JkMount /*jsp ajp13 #prohibit access of WEB-INF Location /WEB-INF/ AllowOverride None deny from all /Location #prohibit access of META-INF Location /META-INF/ AllowOverride None deny from all /Location /VirtualHost server.xml Host name=meinfotoalbum.com debug=0 appBase=mywebapps unpackWARs=true Aliaswww.meinfotoalbum.com/Alias Logger className=org.apache.catalina.logger.FileLogger directory=logs prefix=meinfotoalbum_log. suffix=.txt timestamp=true / Context path= docBase=meinfoto debug=0 reloadable=false/ Listener className=org.apache.ajp.tomcat4.config.ApacheConfig append=true / /Host -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: JSP source
wget is a text-based client that can make HTTP and FTP requests, copying the results to a file. It's not a browser...it doesn't show anything on the screen but a progress message. So, if there was a file somewhere that you wanted, like the latest binary release of Tomcat, you could type something like: wget http://some.mirror.com/tomcat-binary.gz and that file would be stored in the local directory on your system. No need for a browser, no need for a GUI, etc. Sendmail is a MTA (mail transport agent). Probably 2/3 or more of the electronic mail sent on the Internet is sent using sendmail at one point or another. You normally don't access it from the command line (its a service). It normally listens on port 25, and is normally installed by default on most recent versions of UNIX/Linux. John -Original Message- From: Deepa Raja [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 4:29 AM To: Tomcat Users List Subject: RE: JSP source Sorry for asking some dumb question. I'm not a unix person. What is wget and sendmail? I cannot see those commands in UNIX. Thanks Deepa -Original Message- From: Will Hartung [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 1:43 AM To: Tomcat Users List Subject: Re: JSP source From: Bodycombe, Andrew [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Subject: RE: JSP source Fetching the HTML is straightforward. Just create a URL connection and read the data from the stream. Yup, great idea Andy, but too much work. Stick this in your cron tab #!/bin/sh wget -O - http://your.server.com/report.jsp?param1=xyzparam2=abc | sendmail [EMAIL PROTECTED] P.S. -O - option of wget streams the output to stdout, sendmail does the rest P.P.S. I can't even spell 'sendmail', so this may do some really horrble thing, but it's the right approach and a good start. Have fun! -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: HTTPS to HTTP
My understanding (at the moment) is that there are two scenarios where sesssion id reuse might be safe: a) (the scenario I suggested) the *only* secure page requiring https is the login page. Accessing that using the sniffed session id will only let the bad guy login - which gains him nothing. b) (my understanding of the scenario suggested by Jeff Schnitzer). There *are* other secure pages within the site but (somehow) reauthentication is forced when these are requested with a session id that has previously been used in the http context. I don't actually see how that would be implemented but assuming that it was it seems plausible. I'd like to see an analysis of the risks for these two scenarios. John. Jacob Kjome wrote: It is my understanding that if Tomcat allowed you use the same session and the session was created under https for a particular user, then once it gets to http the session id is now in clear text. This is what, I believe, Craig is talking about when he says that using SSL in this manner only creates the appearance of security, not true security. All I'd have to do to wreak some serious havoc is sniff packets, hijack the session, and browse back into the secure sections of the site under the guise of the user whose session I hijacked. How is that security? Jake At 08:17 PM 1/9/2003 -0800, you wrote: I'm aware of that. The tomcat-specific issue is that it won't let you make the transition from https to http on the same session. That's frustrating. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
SV: Can´t access Tomcat from outside router, help !
I´ve checked the router several times, even upgraded firmware and made a factory reset and reconfigured it. The apache server is on the same machine. Not using multiple ips´. /D -Ursprungligt meddelande- Från: Xavier Prélat [mailto:[EMAIL PROTECTED]] Skickat: den 10 januari 2003 13:40 Till: Tomcat Users List Ämne: RE: Can´t access Tomcat from outside router, help ! ..so it's not a DNS problem... I guess you did it...but check agin your router configurationport 8080 is explicitly closed in a standard router configuration... and is the apache server you can connect...and the Tomcat are on the same machine. another track... may be you use a machine with multiples IP adresses.check your adress translation and subnet masks ... Xavier XP -Message d'origine- XP De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 10:56 XP À : [EMAIL PROTECTED] XP Objet : Can´t access Tomcat from outside router, help ! XP XP XP Hello everyone ! XP XP I have a small problem: XP I run Tomcat 4.1.12 on port 8080 and it works fine to use it on XP the local network (behind a router using NAT with static ip´s) XP but from outside the router I can´t get any contact with port XP 8080. I also use Apache on port 80 and that works fine. I have XP configured the proper port redirection in the router and all XP services work fine, except Tomcat. XP Are there any settings in Linux Mandrake or in Tomcat, that XP anyone can think of, that would stop me from accessing Tomcat XP from outside the router ? XP XP Sincerely XP Dan XP XP -- XP To unsubscribe, e-mail: XP mailto:[EMAIL PROTECTED] XP For additional commands, e-mail: XP mailto:[EMAIL PROTECTED] XP XP -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: HTTPS to HTTP
As long as you know what you do and are shure that you (or any other person that may maintain the site in the future) always remember what you have done that may be ok. The risk I see that with such an approach is that it is quite easy to forget about the potential risks of this solution when somebody adds some functionality to the side somewhere in the future that breaks the basic assumption behind this solution. If you use form based login make damn shure that there is no way for an user to edit his password or other sensitive data as this way you can't protect that page against an intruder after the user switched back to http. With form based-login the user is stored in the session and somebody who steals a session is authenticated as far as tomcat is considered. -Original Message- From: John Holman [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 2:02 PM To: Tomcat Users List Subject: Re: HTTPS to HTTP In this scenario, the *only* page requiring SSL would be the login page that collects the username and password. (That could be either a dedicated application login page or the login page configured for form-based login. Basic authentication is never an option!). If this condition is met I still don't see that stealing the session id will enable anything that would be considered a risk. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: SV: Can?t access Tomcat from outside router, help !
Can you access any other service on any other port besides port 80? It's very possible your ISP is restricting traffic to only certain ports, regardless of what you do on your router. Is your connection to this outside network open? That is, when you say router do you mean a real router like a Cisco 800 or 25xx or some other commercial-grade router or do you mean a $75 Linksys/D-Link/Netgear? Not that it matters, but it might help someone help you if we know what we're dealing with. If you want to use Apache and a connector, that's fine, but in that case it would also help us help you if we knew more about your environment...are you using Windows, Linux, or Mac OSX or Tru64 or what? John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 7:35 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: SV: SV: Can?t access Tomcat from outside router, help ! Rasputin: I have tried using the ip, same problem.. Xavier: So if I wanna use a connector between apache and tomcat, which is the easiest one to use, and are there any good instructions avaliable on how to do it ? /D -Ursprungligt meddelande- Från: Rasputin [mailto:[EMAIL PROTECTED]] Skickat: den 10 januari 2003 13:31 Till: Tomcat Users List Ämne: Re: SV: Can?t access Tomcat from outside router, help ! * [EMAIL PROTECTED] [EMAIL PROTECTED] [0110 11:10]: No FW If you're *sure* about that, might it be a DNS issue? Try connecting to your ip address insread. And check it;s not a private IP. -- Rasputin :: Jack of All Trades - Master of Nuns -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Applet class not found error
Hi Andreas, It worked when I put the class file under webapps/examples/applets folder where my jsp was located. By default it picks up from the current folder and if we put it in some other folder, we need to specify the codebase attribute too for the applet tag. Thanks Santosh --- Andreas Probst [EMAIL PROTECTED] wrote: Hi Santosh, Tomcat won't serve the class files to the client, as it never serves files below WEB-INF. Put your class files somewhere else, but not under WEB-INF. Then it will work. Andreas On 10 Jan 2003 at 2:04, Santosh Kulkarni wrote: I'm getting the error load: class DrawChart not found when running my applet over the network. But it is perfectly loaded and running when I access it from my localhost. I have my jsp under webapps/examples/applets/test.jsp which has the following applet code. applet code=DrawChart.class codebase=../WEB-INF/classes/ width=500 height=100 My DrawChart.java is under webapps/examples/WEB-INF/classes. Is there anything wrong in my codebase. Even without the codebase, the applet runs fine on localhost but not from the network. The same is the case even after giving codebase. I'm not using any other class in the DrawChart.java. Its a simple applet. Please provide a solution. TIA Santosh -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: difference between apache and tomcat webserver
This is a valuable security feature of unix/linux/solaris/free bsd/etc. Because it impacts tomcat config shouldn't be misinterpreted as some kind of limitation w/ the operating system. Windows may have caught up in some respects, but these type features are why unix/linux/etc are more secure than windows in a server environment. -Original Message- From: Turner, John [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 8:04 AM To: 'Tomcat Users List' Subject: RE: difference between apache and tomcat webserver On UNIX/Linux, ports less than 1024 are privileged ports. To run a service on them, you have to run the service as root. Running services as root is generally a bad idea: an exploit like a buffer overflow can allow access to the operating system via that service, and since the service is running as root, the exploiter now has root access. Apache starts up as root, but uses child processes running as a non-root user with (preferably) very limited access to actually serve HTTP and HTTPS requests. Tomcat does not do this, and even though there are security measures built-in to the JVM, many people do not feel comfortable running Tomcat as root on a publicly accessible port like port 80. So, they use Apache on port 80, and hide Tomcat behind Apache. John -Original Message- From: Deepa Raja [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 4:38 AM To: Tomcat Users List Subject: RE: difference between apache and tomcat webserver Hi Julius could you please enlighten me on the following line please. 'Feels safer when using port 1024 on linux/unix.' Thanks Deepa -Original Message- From: Julius Davies [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 10:28 PM To: Tomcat Users List Cc: [EMAIL PROTECTED] Subject: RE: difference between apache and tomcat webserver krip pane, I was under the impression that apache is needed to serve the jsp pages - looks like not. Too many people are under that impression. what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Advantages of using apache with tomcat: - Feels safer when using port 1024 on linux/unix. - Works together very well with lots of other web stuff (cgi, perl, php). - All the extra modules, for example: https. - Everybody's doin' it. Notice that I don't include speed of serving static files and images. This is because, frankly, if you're hosting a dynamic web site, static files are the least of your problems. Tomcat is just as fast at sending a 304 - Unmodified response as Apache is, and that's all that matters. Disadvantages of using apache with tomcat: - Much, much harder to get everything working. As you've discovered, it takes about 2 minutes to get Tomcat up and running! You will spend hours, if not days, learning to pair Tomcat up with Apache. At least judging from this mailing list. I've never done it! yours, Julius Davies, Programmer, CUCBC Email: [EMAIL PROTECTED], Ph: 604.730.6385 The contents of this message are my own personal opinions, and not those of CUCBC. -Original Message- From: krip pane [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 2:05 PM To: tomcat Subject: difference between apache and tomcat webserver All, I hope I am understanding and asking this answer correctly. I recently installed tomcat 4.1 with default values and was able to server jsp pages. I was under the impression that apache is needed to serve the jsp pages - looks like not. So the question is what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Thanks __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Can´t access Tomcat from outside router, help !
Let me summarize what I think what you have done. As much as I understood you have a domain abc.tld which has a public IP 1.1.1.1 Internaly the apache and the tomcat server run on the private IP 2.2.2.2. You have configured your router (NAT) to map incoming requests for 1.1.1.1 to 2.2.2.2. If you access www.abc.tld you get a response from apache. If you access www.abc.tld:8080 you get an response from tomcat if the request comes from inside. If the request comes from the outside you get no response. (What exacly is the 'outside' that you use to test ?) Is that correct ? Do you see something in the logs that indicates that the request reached tomcat ? Can you call telnet www.abc.tld 8080 from the outside ? Do you get a connection ? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 2:16 PM To: [EMAIL PROTECTED] Subject: SV: Can´t access Tomcat from outside router, help ! I´ve checked the router several times, even upgraded firmware and made a factory reset and reconfigured it. The apache server is on the same machine. Not using multiple ips´. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: HTTPS to HTTP
I agree with all of this. For functionality like changing the password I'd use a different SSL-only web application, not include that functionality in the mixed application. The user would then have to reauthenticate to change the password - but I'd want them to do that anyway since they may have gone off to lunch leaving an active session on their PC ... John Ralph Einfeldt wrote: As long as you know what you do and are shure that you (or any other person that may maintain the site in the future) always remember what you have done that may be ok. The risk I see that with such an approach is that it is quite easy to forget about the potential risks of this solution when somebody adds some functionality to the side somewhere in the future that breaks the basic assumption behind this solution. If you use form based login make damn shure that there is no way for an user to edit his password or other sensitive data as this way you can't protect that page against an intruder after the user switched back to http. With form based-login the user is stored in the session and somebody who steals a session is authenticated as far as tomcat is considered. -Original Message- From: John Holman [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 2:02 PM To: Tomcat Users List Subject: Re: HTTPS to HTTP In this scenario, the *only* page requiring SSL would be the login page that collects the username and password. (That could be either a dedicated application login page or the login page configured for form-based login. Basic authentication is never an option!). If this condition is met I still don't see that stealing the session id will enable anything that would be considered a risk. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: ServletContextListener started 2 times
Hi, Do you have both a .war file or your webapp and an exploded directory structure for it? Do you have a Context element for your context in the server.xml file? Either of those can cause double initialization under some circumstances, and then you'd see listeners instantiated twice, load-on-startup servlet's init() methods being called twice, filters initialized twice, etc. If so, try commenting out the context element for your context in server.xml, and ensuring you have either a .war file or an exploded directory structure for your webapp, but not both. There have been issues with this in the past: searching the list archives may yield more information. Yoav Shapira Millennium ChemInformatics -Original Message- From: Tobias Dittrich [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 2:35 AM To: Tomcat Users List Subject: ServletContextListener started 2 times Hi, I have the following problem on tomcat 4.1.18: I defined a ServletContextListener in the web.xml for my webapp so I can do some initializing stuff when my webapp is startet. Now when I start tomcat everything is just fine, the Listener gets notified and starts my config. But after a few moments the webapp seems to be loaded again. A complete new instance of my Listener class is created and notified again (I am setting flags if config is loaded etc but these are unset).. I have set the Context to not reload in the server xml and the Host has autoDeply false. As this would not be such a big flaw alone, there is something that makes it very bad: if I do not use unzipped classes for my application but put the contents in a jar file under WEB-INF/lib, tomcat always runs into a segmentation fault on second startup of my Listener class. Any suggestions why tomcat is loading my Listener class twice on startup and if this is a feature or a bug? Any help would be appreciated. Thanks Tobi -- To unsubscribe, e-mail: mailto:tomcat-user- [EMAIL PROTECTED] For additional commands, e-mail: mailto:tomcat-user- [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: difference between apache and tomcat webserver
John and Mike Thanks the info -Original Message- From: Mike Millson [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 1:33 PM To: Tomcat Users List Subject: RE: difference between apache and tomcat webserver This is a valuable security feature of unix/linux/solaris/free bsd/etc. Because it impacts tomcat config shouldn't be misinterpreted as some kind of limitation w/ the operating system. Windows may have caught up in some respects, but these type features are why unix/linux/etc are more secure than windows in a server environment. -Original Message- From: Turner, John [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 8:04 AM To: 'Tomcat Users List' Subject: RE: difference between apache and tomcat webserver On UNIX/Linux, ports less than 1024 are privileged ports. To run a service on them, you have to run the service as root. Running services as root is generally a bad idea: an exploit like a buffer overflow can allow access to the operating system via that service, and since the service is running as root, the exploiter now has root access. Apache starts up as root, but uses child processes running as a non-root user with (preferably) very limited access to actually serve HTTP and HTTPS requests. Tomcat does not do this, and even though there are security measures built-in to the JVM, many people do not feel comfortable running Tomcat as root on a publicly accessible port like port 80. So, they use Apache on port 80, and hide Tomcat behind Apache. John -Original Message- From: Deepa Raja [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 4:38 AM To: Tomcat Users List Subject: RE: difference between apache and tomcat webserver Hi Julius could you please enlighten me on the following line please. 'Feels safer when using port 1024 on linux/unix.' Thanks Deepa -Original Message- From: Julius Davies [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 10:28 PM To: Tomcat Users List Cc: [EMAIL PROTECTED] Subject: RE: difference between apache and tomcat webserver krip pane, I was under the impression that apache is needed to serve the jsp pages - looks like not. Too many people are under that impression. what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Advantages of using apache with tomcat: - Feels safer when using port 1024 on linux/unix. - Works together very well with lots of other web stuff (cgi, perl, php). - All the extra modules, for example: https. - Everybody's doin' it. Notice that I don't include speed of serving static files and images. This is because, frankly, if you're hosting a dynamic web site, static files are the least of your problems. Tomcat is just as fast at sending a 304 - Unmodified response as Apache is, and that's all that matters. Disadvantages of using apache with tomcat: - Much, much harder to get everything working. As you've discovered, it takes about 2 minutes to get Tomcat up and running! You will spend hours, if not days, learning to pair Tomcat up with Apache. At least judging from this mailing list. I've never done it! yours, Julius Davies, Programmer, CUCBC Email: [EMAIL PROTECTED], Ph: 604.730.6385 The contents of this message are my own personal opinions, and not those of CUCBC. -Original Message- From: krip pane [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 2:05 PM To: tomcat Subject: difference between apache and tomcat webserver All, I hope I am understanding and asking this answer correctly. I recently installed tomcat 4.1 with default values and was able to server jsp pages. I was under the impression that apache is needed to serve the jsp pages - looks like not. So the question is what is the advantage or disadvantage of installing/using apache as your webserver and installing some connector (i.e. mod_jk) to use with tomcat. Thanks __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Authentication and Filters
Authentication aside, does the servlet container work such that an include or RD operation has the option of passing through the filter? If so, as of which release? Best Regards, Jacob | -Original Message- | From: Tim Funk [mailto:[EMAIL PROTECTED]] | Sent: Friday, January 10, 2003 6:30 AM | To: Tomcat Users List | Subject: Re: Authentication and Filters | | I meant 2.5 since changes to 2.4 are closed from my position in the dev | community. | | My point is only the incoming request is protected by the security | constraint in web.xml. It may be nice to allow the programmer to also | check future dispatches for authorization before the dispatch occurs. | | RequestDispatcher.isAuthorized() was to allow an admin to define | additional security contraints in web.xml without writing code. This | also requires the cooperation of the developer of a webapp to check for | this condition too. | | Sorry for starting to take this off-topic. | | -Tim | | Craig R. McClanahan wrote: | | On Thu, 9 Jan 2003, Tim Funk wrote: | | | Date: Thu, 09 Jan 2003 21:15:12 -0500 | From: Tim Funk [EMAIL PROTECTED] | Reply-To: Tomcat Users List [EMAIL PROTECTED] | To: Tomcat Users List [EMAIL PROTECTED] | Subject: Re: Authentication and Filters | | Is there a chance (or worthwhile) that in Servlet API 2.5 a developer | could check if an obtained RequestDispatcher would violate a security | constraint in web.xml? | | | | I assume you mean Servlet 2.4, right? | | | For example the following new method: | RequestDispatcher.isAuthorized() | Returns true if the RequestDispatcher's url passes the constraints | defined in web.xml | | | This does not seem likely to me. Nor does it seem necessary. After | all, | your application has available everything it needs to know (through | calls | like request.getUserPrincipal() and request.isUserInRole()) to make this | decision for itself. If the app chooses to forward, the container is | going to assume that it knows what it is doing. | | Now that you can declare a Filter to be imposed on RD calls in Servlet | 2.4, that might be a good place to implement a check like this. | | | -Tim | | | | Craig | | | | -- | To unsubscribe, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] | For additional commands, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Applet class not found error
Hi Santosh, true, but it must not be under WEB-INF. Andreas On 10 Jan 2003 at 5:27, Santosh Kulkarni wrote: Hi Andreas, It worked when I put the class file under webapps/examples/applets folder where my jsp was located. By default it picks up from the current folder and if we put it in some other folder, we need to specify the codebase attribute too for the applet tag. Thanks Santosh --- Andreas Probst [EMAIL PROTECTED] wrote: Hi Santosh, Tomcat won't serve the class files to the client, as it never serves files below WEB-INF. Put your class files somewhere else, but not under WEB-INF. Then it will work. Andreas On 10 Jan 2003 at 2:04, Santosh Kulkarni wrote: I'm getting the error load: class DrawChart not found when running my applet over the network. But it is perfectly loaded and running when I access it from my localhost. I have my jsp under webapps/examples/applets/test.jsp which has the following applet code. applet code=DrawChart.class codebase=../WEB-INF/classes/ width=500 height=100 My DrawChart.java is under webapps/examples/WEB-INF/classes. Is there anything wrong in my codebase. Even without the codebase, the applet runs fine on localhost but not from the network. The same is the case even after giving codebase. I'm not using any other class in the DrawChart.java. Its a simple applet. Please provide a solution. TIA Santosh -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Authentication and Filters
it currently does not allow this. Apparently this ability will be added to the servlet spec 2.4 which would then be implemented in tomcat 5.x Charlie -Original Message- From: Jacob Hookom [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 9:37 AM To: 'Tomcat Users List' Subject: RE: Authentication and Filters Authentication aside, does the servlet container work such that an include or RD operation has the option of passing through the filter? If so, as of which release? Best Regards, Jacob | -Original Message- | From: Tim Funk [mailto:[EMAIL PROTECTED]] | Sent: Friday, January 10, 2003 6:30 AM | To: Tomcat Users List | Subject: Re: Authentication and Filters | | I meant 2.5 since changes to 2.4 are closed from my position in the dev | community. | | My point is only the incoming request is protected by the security | constraint in web.xml. It may be nice to allow the programmer to also | check future dispatches for authorization before the dispatch occurs. | | RequestDispatcher.isAuthorized() was to allow an admin to define | additional security contraints in web.xml without writing code. This | also requires the cooperation of the developer of a webapp to check for | this condition too. | | Sorry for starting to take this off-topic. | | -Tim | | Craig R. McClanahan wrote: | | On Thu, 9 Jan 2003, Tim Funk wrote: | | | Date: Thu, 09 Jan 2003 21:15:12 -0500 | From: Tim Funk [EMAIL PROTECTED] | Reply-To: Tomcat Users List [EMAIL PROTECTED] | To: Tomcat Users List [EMAIL PROTECTED] | Subject: Re: Authentication and Filters | | Is there a chance (or worthwhile) that in Servlet API 2.5 a developer | could check if an obtained RequestDispatcher would violate a security | constraint in web.xml? | | | | I assume you mean Servlet 2.4, right? | | | For example the following new method: | RequestDispatcher.isAuthorized() | Returns true if the RequestDispatcher's url passes the constraints | defined in web.xml | | | This does not seem likely to me. Nor does it seem necessary. After | all, | your application has available everything it needs to know (through | calls | like request.getUserPrincipal() and request.isUserInRole()) to make this | decision for itself. If the app chooses to forward, the container is | going to assume that it knows what it is doing. | | Now that you can declare a Filter to be imposed on RD calls in Servlet | 2.4, that might be a good place to implement a check like this. | | | -Tim | | | | Craig | | | | -- | To unsubscribe, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] | For additional commands, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Authentication and Filters
Filters are only performed on the incoming request. So the filter chain is executed once and only once per request. There is an option in the 2.4 Servlet API to allow filter chains to be invoked on .includes() and .forwards(). See section 6.2.5 of the Servlet 2.4 Spec for more details. Tomcat 5 will support the Servlet 2.4 Spec. Tomcat 5 is not released yet and there is no known timetable as to when it will be released. -Tim Jacob Hookom wrote: Authentication aside, does the servlet container work such that an include or RD operation has the option of passing through the filter? If so, as of which release? Best Regards, Jacob -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Authentication and Filters
In the meantime, you can intercept includes by writing your own taglib tag to do the include. With your code behind the include, you can do what you wanted to do in the filter chain. Example use of a custom include: %@page contentType=text/html% %@ taglib uri=/mylib prefix=my % html headtitleIndex/title/head body This is the index page. The my:include tag filters and outputs the included file in any fashion desireable. Just replace normal includes with this my:include tag. For instance, it could replace all less thans with ampersand-lt-semicolon strings. Included file begins here my:include page=/code.html/ Included file ends here /body /html -AAron From: Tim Funk [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: Authentication and Filters Date: Fri, 10 Jan 2003 09:52:29 -0500 Filters are only performed on the incoming request. So the filter chain is executed once and only once per request. There is an option in the 2.4 Servlet API to allow filter chains to be invoked on .includes() and .forwards(). See section 6.2.5 of the Servlet 2.4 Spec for more details. Tomcat 5 will support the Servlet 2.4 Spec. Tomcat 5 is not released yet and there is no known timetable as to when it will be released. -Tim Jacob Hookom wrote: Authentication aside, does the servlet container work such that an include or RD operation has the option of passing through the filter? If so, as of which release? Best Regards, Jacob -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] _ Add photos to your e-mail with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Web Deployment Descriptor Realm
No since web.xml is servlet specific (and Realm are Tomcat specific). On solution is to create your_app_name.xml that contains a Context element that define your realm, put it under /WED-INF and include an HOW-TO-DEPLOY-THIS-WEB-APP file somewhere in your war file to tell people how to deploy your app (meaning tell the Tomcat administrator to add the realm information to the server.xml for you) -- Jeanfrancois Harsha Yalagach wrote: Greetings, I have developed an application that uses Realm. I have put the information regarding the Realm in the serverl.xml file of Tomcat. I want move this information to the web.xml file or any other configuration file in the war file. Is there a way to do it. If yes, please show me some light in this regard. Thanks in advance... Warm Regards, Harsha Yalagach -- Any opinions, explicit or implied, are solely those of the authors and do not necessarily represent those of Cerebra.This Email may contain confidential and/or privileged information. If you are not the intended recipient or have received this Email in error, please notify us at [EMAIL PROTECTED] immediately and destory this Email. Any unauthorized copying, disclosure or distribution of the material in this mail is strictly forbidden. -- Cerebra Integrated Technologies Ltd , Bangalore, India -- Cerebra Integrated Technologies Ltd., Bangalore, India -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
[OT] Charting Libraries
I am looking into the ability to add charting capabilities to our intranet app and was wondering if anyone else has experience with any of the available packages. One of the requirements is, of course, that I can create the graphs in Tomcat and send the results to a browser, and I would prefer something open source. This has narrowed my choices to jChart or JFreeChart. Has anyone worked with either of these? Also, does anyone know of any I may have missed? Thanks for any info. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: [OT] Charting Libraries
Take a look at JFreeChart, fast and simple, I'm using it and I like... Well, JFreeChart generates java.awt.BufferedImages, so you can easily write an Servlet that returns this directly to the client browser... Sorry, I don't remember the link to its homepage, but you know... Google is our best fried :-) On Fri, 2003-01-10 at 14:09, Wagoner, Mark wrote: I am looking into the ability to add charting capabilities to our intranet app and was wondering if anyone else has experience with any of the available packages. One of the requirements is, of course, that I can create the graphs in Tomcat and send the results to a browser, and I would prefer something open source. This has narrowed my choices to jChart or JFreeChart. Has anyone worked with either of these? Also, does anyone know of any I may have missed? Thanks for any info. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- Felipe Schnack Analista de Sistemas [EMAIL PROTECTED] Cel.: (51)91287530 Linux Counter #281893 Centro Universitário Ritter dos Reis http://www.ritterdosreis.br [EMAIL PROTECTED] Fone/Fax.: (51)32303341 -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: [OT] Charting Libraries
We have used jCharts (http://jcharts.sourceforge.net/). It's designed to work in a servlet and JSP environment. The doc even includes how to set up the samples to run with Tomcat. We are quite pleased with this package. It's easy to use and the author was quick to resolve issues. Jim -Original Message- From: Wagoner, Mark [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 10:09 AM To: Tomcat User List (E-mail) Subject: [OT] Charting Libraries I am looking into the ability to add charting capabilities to our intranet app and was wondering if anyone else has experience with any of the available packages. One of the requirements is, of course, that I can create the graphs in Tomcat and send the results to a browser, and I would prefer something open source. This has narrowed my choices to jChart or JFreeChart. Has anyone worked with either of these? Also, does anyone know of any I may have missed? Thanks for any info. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
4.1.18: how to disable writing of SESSIONS.ser ?
Hi, I'm trying to turn off session serialization for Tomcat 4.1.18 (using jsdk 1.4.1). I did not find enough information in the docs nor on the web, and did not succeed with trial and error - so I try the list. I figured I would have to add DefaultContext reloadable=false Manager className=org.apache.catalina.session.StandardManager debug=0 maxActiveSessions=-1 minIdleSwap=-1 maxIdleSwap=-1 maxIdleBackup=-1 pathname=/tmp /Manager /DefaultContext to the Host tag in my server.xml. I figured I have to use the DefaultContext since I am deploying my web app as a .war (thus: automatic Context creation, with Context inheriting from DefaultContext). The idea was then to use /dev/null as the turn-off pathname. My understanding was that the SESSIONS.ser would now be written to /tmp/SESSSIONS.ser - but that's not the case. It still shows up in .../work/.../webapp/SESSIONS.ser. From the mailing list I understand that setting the corresponding class member to null would help - the question is how this can be done through the server.xml configuration. So, I'm looking for an example configuration which shows me how and where the SESSIONS.ser file is created. Thanks for your help. Simon. Simon Hefti [EMAIL PROTECTED] Netcetera AG, 8040 Zuerichphone +41 1 247 79 47 fax +41 1 247 70 75 -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: How do I set a default servlet?
Is that the only bad thing about it. The reason I'm asking is because the servlet that I'm wanting to map is the one that generates all the web pages. So if someone goes to http://www.myserver.com I want that to call this servlet that will generate a default web page. Namely the front page to our web site. But if someone types http://www.myserver.com/servlet/pageservlet it also takes them to this servlet that's also the default. Then I don't want it to interfere with other mappings like manager and any other servlets that I create. I don't really mind if it defaults all unknown request to the default that is a servlet. Also, the mapping you show, is that in the web app or in the /conf/web.xml for the server? Thank You, Justin A. Stanczak Web Manager Shake Learning Resource Center Vincennes University (812)888-5813 |-+ | | Bill Barker| | | wbarker@wilshire| | | .com| | | Sent by: news| | | [EMAIL PROTECTED]| | | org | | || | || | | 01/10/03 02:26 AM| | | Please respond to| | | Tomcat Users| | | List| | || |-+ --| | | | To: [EMAIL PROTECTED] | | cc: | | Subject: Re: How do I set a default servlet? | --| Setting the default servlet is really easy. You just specify: servlet servlet-namemyservlet/servlet-name servlet-classmyservlet/servlet-class /servlet servlet-mapping servlet-namemyservlet/servlet-name url-pattern//url-pattern /servlet-mapping The problem is that this is almost certainly not what you want. This will invoke 'myservlet' for any URL that doesn't match any other servlet-mapping (including static-content). It looks like you want to have your welcome-file specified as a Servlet. This is only currently supported in Tomcat 3.3.2-dev (aka nightly), and Tomcat 5.x. [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I would like to setup my servlet server to point anyone that accesses the default url to be sent to a certain servlet. For example if someone typed http://localhost/ then it would take them right to http://localhost/servlet/myservlet . I'm guessing this is done through the web.xml in the conf directory, but is there a better way, like in the applications web.xml. Either way hows the best way to accomplish this? Thanks. Thank You, Justin A. Stanczak Web Manager Shake Learning Resource Center Vincennes University (812)888-5813 -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: One other freaky thing
Yeah, I was referring to the almost identical bug. We must have still been using that version, and maybe I'm thinking of it as we used it with Tomcat 3.3.1, not 4.1.x. Jeff Tulley ([EMAIL PROTECTED]) (801)861-5322 Novell, Inc., the leading provider of Net business solutions http://www.novell.com [EMAIL PROTECTED] 1/10/03 12:05:17 AM Before everyone panics, the issue was with mod_jk2 (which is currently a *beta*). AFAIK mod_jk works fine. For people that are interested in bugs-that-never-die, there was an almost identical bug in the pre-beta 3.3.x version of mod_jk back before it was available for Tomcat 4.x. Jeff Tulley [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Also, there was a recent security issue with mod_jk that had symptoms like this. It would mean that somebody is purposely sending you a malformed packet, so it is not extremely likely. But, if you are using mod_jk, I'd update to the absolute latest released binaries to see if the problem doesn't happen again. Jeff Tulley ([EMAIL PROTECTED]) (801)861-5322 Novell, Inc., the leading provider of Net business solutions http://www.novell.com [EMAIL PROTECTED] 1/8/03 3:12:39 PM Our application is running on a server in Pennsylvania. A user there was working as well as a user in Tennessee. The user in Tennessee got an error on a page, hit her back key, and the user in Pennsylvania's screen showed up on the Tennessee user's screen. The people in Tennessee are connected to the Pennsylvania system via a frame relay. Everything is contained within each user's session, so this should never happen. The application has been under development for a year now, and this has never happened before. Some kind of weird bug that we shouldn't worry about, or something that someone else has encountered? Thanks for any help, --Michael Molloy -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Virtual hosting and mod_jk
Hi, That may have solved the problem, but now you are limited to serving that application on that domain, only. If you add anything more (another domain name, another application, etc) you will want to understand how to use virtual hosts and the JkMount statement in httpd.conf. John I guess John is right. The whole thing does not make any sense without the entry in the virtual host section of httpd.conf. I simply forgot to include it as well. Here it is. # #mod_jk link to tomcat # JkMount /*.jsp ajp13 JkMount /app/* ajp13 #JkMount /servlet/* ajp13 #prohibit access of WEB-INF # Location /WEB-INF/ AllowOverride None deny from all /Location #prohibit access of META-INF # Location /META-INF/ AllowOverride None deny from all /Location -Original Message- From: Andreas Hirner [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 4:26 AM To: Tomcat Users List Subject: Re: Virtual hosting and mod_jk Hi, Thank you for your help. Unfortunately I had already solved the problem myself. The only thing I did is uncomment the folowing line in the httpd.conf Include /usr/local/tomcat/conf/auto/mod_jk.conf and replace with the following block, so that the automatic configuration is disabled. IfModule mod_jk.c JkWorkersFile /usr/local/tomcat/conf/jk/workers.properties JkLogFile /usr/local/tomcat/logs/mod_jk.log JkLogLevel error /IfModule Cheers Andreas - Original Message - From: Eric Ricker [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Thursday, January 09, 2003 3:40 PM Subject: Re: Virtual hosting and mod_jk Alias myapplications /your/path/here/tomcat/webapps/myapplications slap that in your httpd.conf and you should be happy. -- Eric Ricker [EMAIL PROTECTED] - Original Message - From: Andreas Hirner [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Thursday, January 09, 2003 5:43 AM Subject: Virtual hosting and mod_jk Hello, I have successfully integrated tomcat (4.0.6) with apache (1.3.26) on linux and I am able to access a single virtual host (e.g. myapplication) located in the tomcat/webapps/myapplication directory using a url like that: http://www.mydomain.com/myapplication/index.jsp However I would like to be able to access the files in that directory without using the path /myapplication, i.e. http://www.mydomain.com/index.jsp I have been playing around with the configuration files but I have not been able to alter the configuration according to my needs. Does anybody know if this is possible? Thanks in advance. Andreas PS: The relevant sections of httpd.conf and server.xml are listed below. http.conf # VirtualHost *:80 ServerName meinfotoalbum.com ServerAlias www.meinfotoalbum.com DocumentRoot /usr/local/tomcat/mywebapps/meinfoto Directory /usr/local/tomcat/mywebapps/meinfoto DirectoryIndex index.htm index.html Options Indexes FollowSymLinks /Directory #mod_jk link to tomcat JkMount / ajp13 JkMount /*jsp ajp13 #prohibit access of WEB-INF Location /WEB-INF/ AllowOverride None deny from all /Location #prohibit access of META-INF Location /META-INF/ AllowOverride None deny from all /Location /VirtualHost server.xml Host name=meinfotoalbum.com debug=0 appBase=mywebapps unpackWARs=true Aliaswww.meinfotoalbum.com/Alias Logger className=org.apache.catalina.logger.FileLogger directory=logs prefix=meinfotoalbum_log. suffix=.txt timestamp=true / Context path= docBase=meinfoto debug=0 reloadable=false/ Listener className=org.apache.ajp.tomcat4.config.ApacheConfig append=true / /Host -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Can't log in if PC clock different to server clock
I'm using JDBC realms, and I have found that I cannot log in if my PC clock is behind the server's clock. This may actually happen in production with many users. Does anyone know a workaround? Thanks Ben
manager app permissions issue
Hello,
I'm trying to use the manager app but recieve the following error:
java.lang.SecurityException: Servlet of class
org.apache.catalina.servlets.ManagerServlet is privileged and cannot be loaded by this
web application
Did some looking around and the only thing I can come up with is changing the
catalina.policy file. So I added:
grant codeBase file:${catalina.home}/webapps/manager/- {
permission java.security.AllPermission;
};
to catalina.policy, but that did not fix it.
Has anyone seen this before and no what the problem is?
Thanks,
David Durham
--
To unsubscribe, e-mail: mailto:[EMAIL PROTECTED]
For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: JSP source
Hi I want to do some reporting that is to be called by a cron job. I do not want to use a reporting tool. Can use JSP * to talk to the database * fetch the relevant details * format the details as a report * fetch the HTML source of the generated report * and email it to intended recipients My doubt is is it possible to fetch the HTML source of a JSP? I know I could use java mail to email if I could manage to get the source. Please pour in your suggestions This is probably not what you want to hear, but if I had to do this, then I would be looking to provide the report data as XML and then use an XSLT stylesheet (call it your template if you wish) to transform the XML data into HTML or whatever I wanted. Regards Roger -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
How do I...
Get out put to go into the context specific logs rather than catalina.out?? -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: How do I...
Refer to your server.xml and look at the examples setup towards the middle where it declares the logger and file pattern. | -Original Message- | From: Luc Foisy [mailto:[EMAIL PROTECTED]] | Sent: Friday, January 10, 2003 11:09 AM | To: Tomcat User List (E-mail) | Subject: How do I... | | | Get out put to go into the context specific logs rather than | catalina.out?? | | -- | To unsubscribe, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] | For additional commands, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Can't log in if PC clock different to server clock
Can you explain a bit...which log system do you use...?? to log in what...which purpose (server connection, authentication, Authorization, sessions?? Xavier XP -Message d'origine- XP De : Ben Jessel [mailto:[EMAIL PROTECTED]] XP Envoyé : vendredi 10 janvier 2003 17:59 XP À : Tomcat Users List XP Objet : Can't log in if PC clock different to server clock XP XP XP I'm using JDBC realms, and I have found that I cannot log in if XP my PC clock is behind the server's clock. This may actually XP happen in production with many users. Does anyone know a workaround? XP XP Thanks XP XP Ben XP -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
WAR future-compatibility
I have learned, thanks to reading this list, that one cannot depend on the presence of the filesystem when developing a webapp, if that webapp is ever to be bundled as a WAR file. I would like to structure my webapp thusly: /webapp | jsp1.jsp jsp2.jsp jsp3.jsp /includes -- this is /webapp/includes | titlebar.jsp navbar.jsp footer.jsp /WEB-INF | /classes /lib If I do this: %@ include file=includes/titlebar.jsp % Will my webapp still work if it's bundled as a WAR file? Or is this a case of creating a dependency on the presence of the filesystem? Thanks, Erik -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: How do I...
Thanks! But that gives me very little clue. Here are Global and Context Logger's that are configured !-- Global logger unless overridden at lower levels -- Logger className=org.apache.catalina.logger.FileLogger prefix=catalina_log. suffix=.txt timestamp=true/ !-- Logger shared by all Contexts related to this virtual host. By default (when using FileLogger), log files are created in the logs directory relative to $CATALINA_HOME. If you wish, you can specify a different directory with the directory attribute. Specify either a relative (to $CATALINA_HOME) or absolute path to the desired directory.-- Logger className=org.apache.catalina.logger.FileLogger directory=logs prefix=localhost_log. suffix=.txt timestamp=true/ Context path=/icrm docBase=icrm debug=0 reloadable=true crossContext=false Logger className=org.apache.catalina.logger.FileLogger prefix=icrm_log. suffix=.txt timestamp=true/ /Context Sooo. Why does calling System.out.println() go to catalina.out? Hmm, maybe I should have mentioned the System.out.println() part :) -Original Message- From: Jacob Hookom [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 12:15 PM To: 'Tomcat Users List' Subject: RE: How do I... Refer to your server.xml and look at the examples setup towards the middle where it declares the logger and file pattern. | -Original Message- | From: Luc Foisy [mailto:[EMAIL PROTECTED]] | Sent: Friday, January 10, 2003 11:09 AM | To: Tomcat User List (E-mail) | Subject: How do I... | | | Get out put to go into the context specific logs rather than | catalina.out?? | | -- | To unsubscribe, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] | For additional commands, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: manager app permissions issue
Which Tomcat version are you using (works for me with 4.1/5.0)? From the
error you have provided, seems you are trying to get access to class
ManagerServlet from one of your class. ManagerServlet class is package
protected by Tomcat when running with the security manager (your case).
If you want to use it (and open a possible SECURITY hole), add this to
your catalina.policy:
permission java.lang.RuntimePermission
accessClassInPackage.org.apache.catalina.servlets.;
At your own risk :-)
-- Jeanfrancois
Durham David Cntr 805CSS/SCBE wrote:
Hello,
I'm trying to use the manager app but recieve the following error:
java.lang.SecurityException: Servlet of class org.apache.catalina.servlets.ManagerServlet is privileged and cannot be loaded by this web application
Did some looking around and the only thing I can come up with is changing the catalina.policy file. So I added:
grant codeBase file:${catalina.home}/webapps/manager/- {
permission java.security.AllPermission;
};
to catalina.policy, but that did not fix it.
Has anyone seen this before and no what the problem is?
Thanks,
David Durham
--
To unsubscribe, e-mail: mailto:[EMAIL PROTECTED]
For additional commands, e-mail: mailto:[EMAIL PROTECTED]
--
To unsubscribe, e-mail: mailto:[EMAIL PROTECTED]
For additional commands, e-mail: mailto:[EMAIL PROTECTED]
OT: what source code control system?
We have a staff of 8-10 student employees and a couple full time staffers that write desktop and web applications or their supporting components. We're mostly using Visual Basic and MS Access for desktop apps and ASP (on IIS 5.0) for web apps, but I'm nudging everyone toward Tomcat/Java. I'd like to implement a source code control system that includes a browser-based interface (preferably JSP/Servlet). Cost is an issue, so I'm looking at the open source or other free options. The server components would be running on a Windows 2000 Server platform, but I'm interested in having the flexibility to integrate with any web and database server so as not to be chained to a given platform (hence the preference for using JSP). Any recommendations? Thanks! -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: HELP, PLEASE! Tomcat creates too many threads!
Well, now I'm not using SingleThreadModel and the problem remains. The threads are only killed when I restart tomcat and a few are created at every request. Here's a thread dump. The threads Thread-x keep appearing for every request and they seem to be locked at some Object.wait() method. Is there anyway of finding out where this Object.wait() is? (some jar I'm using...?) It's certainly not in my servlet's code... How can I further debug this situation? Any help appreciated. João Filipe Plácido Full thread dump Java HotSpot(TM) Client VM (1.4.1_01-b01 mixed mode): Thread-18 daemon prio=1 tid=0x0x8524228 nid=0x41b2 in Object.wait() [4ea0b000..4ea0b840] at java.lang.Object.wait(Native Method) - waiting on 0x45004ab0 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x45004ab0 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) Thread-17 daemon prio=1 tid=0x0x810d5e0 nid=0x41b0 in Object.wait() [4e98a000..4e98a840] at java.lang.Object.wait(Native Method) - waiting on 0x44fe5510 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x44fe5510 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) Thread-16 daemon prio=1 tid=0x0x8705ef8 nid=0x41ad in Object.wait() [4e909000..4e909840] at java.lang.Object.wait(Native Method) - waiting on 0x44fa7be0 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x44fa7be0 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) Thread-15 daemon prio=1 tid=0x0x8705c18 nid=0x41ac in Object.wait() [4e888000..4e40] at java.lang.Object.wait(Native Method) - waiting on 0x44fa7c40 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x44fa7c40 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) Thread-14 daemon prio=1 tid=0x0x83a3a28 nid=0x41a7 in Object.wait() [4e786000..4e786840] at java.lang.Object.wait(Native Method) - waiting on 0x44f5e370 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x44f5e370 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) Thread-13 daemon prio=1 tid=0x0x8443918 nid=0x41a6 in Object.wait() [4e684000..4e684840] at java.lang.Object.wait(Native Method) - waiting on 0x44f5e3d0 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x44f5e3d0 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) Thread-12 daemon prio=1 tid=0x0x84003a8 nid=0x419a in Object.wait() [4e705000..4e705840] at java.lang.Object.wait(Native Method) - waiting on 0x44f18090 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x44f18090 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) Thread-11 daemon prio=1 tid=0x0x84642b0 nid=0x4194 in Object.wait() [4e603000..4e603840] at java.lang.Object.wait(Native Method) - waiting on 0x44ef9728 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x44ef9728 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) SocketTimeout daemon prio=1 tid=0x0x83fd738 nid=0x418e waiting on condition [4e582000..4e582840] at java.lang.Thread.sleep(Native Method) at HTTPClient.SocketTimeout.run(StreamDemultiplexor.java:917) Thread-10 daemon prio=1 tid=0x0x84fca80 nid=0x418c in Object.wait() [4e501000..4e501840] at java.lang.Object.wait(Native Method) - waiting on 0x44e73ed0 (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:426) at java.util.TimerThread.mainLoop(Timer.java:403) - locked 0x44e73ed0 (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:382) Thread-9 daemon prio=1 tid=0x0x84f2a88 nid=0x418b in Object.wait() [4e48..4e480840] at java.lang.Object.wait(Native Method) - waiting on 0x44e61370 (a java.util.TaskQueue) at java.util.TimerThread.mainLoop(Timer.java:429) - locked 0x44e61370 (a java.util.TaskQueue)
Windows Service
Sorry about this question that has apparently been asked and answered innumerable times, but: I'd like to run Tomcat as a Windows 2000 service. Searching, I see there is a utility jk_nt_service.exe that is available, but I can't seem to locate the version that is appropriate for Tomcat 4.0.x. Could somebody please do me the favor of pointing me to where this utility is located! - Thanks -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Windows Service
I believe there is a tomcat.exe in the /bin folder of the Tomcat 4 distribution for the purpose you mention. - Original Message - From: Jeffrey Winter [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Friday, January 10, 2003 11:32 AM Subject: Windows Service Sorry about this question that has apparently been asked and answered innumerable times, but: I'd like to run Tomcat as a Windows 2000 service. Searching, I see there is a utility jk_nt_service.exe that is available, but I can't seem to locate the version that is appropriate for Tomcat 4.0.x. Could somebody please do me the favor of pointing me to where this utility is located! - Thanks -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Windows Service
There is an option in the Tomcat installer to install Tomcat as a service on Windows. Jim -Original Message- From: Jeffrey Winter [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 11:33 AM To: Tomcat Users List Subject: Windows Service Sorry about this question that has apparently been asked and answered innumerable times, but: I'd like to run Tomcat as a Windows 2000 service. Searching, I see there is a utility jk_nt_service.exe that is available, but I can't seem to locate the version that is appropriate for Tomcat 4.0.x. Could somebody please do me the favor of pointing me to where this utility is located! - Thanks -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: what source code control system?
CVS http://www.cvshome.org/ I've had the opportunity to work with several different solutions, primarily commercial, over the years, and after those experiences, I wouldn't choose anything but CVS. Also: http://www.cvsnt.org/ which was developed as a service for Windows NT John -Original Message- From: David Boyer [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 12:30 PM To: Tomcat Users List Subject: OT: what source code control system? We have a staff of 8-10 student employees and a couple full time staffers that write desktop and web applications or their supporting components. We're mostly using Visual Basic and MS Access for desktop apps and ASP (on IIS 5.0) for web apps, but I'm nudging everyone toward Tomcat/Java. I'd like to implement a source code control system that includes a browser-based interface (preferably JSP/Servlet). Cost is an issue, so I'm looking at the open source or other free options. The server components would be running on a Windows 2000 Server platform, but I'm interested in having the flexibility to integrate with any web and database server so as not to be chained to a given platform (hence the preference for using JSP). Any recommendations? Thanks! -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Why is NodeIterator class not found?
Hello avitabile, Make sure you have xmlParserAPIs.jar. That is where it exists. Of course, along with this, you will need the XercesImpl.jar. Those should go in CATALINA_HOME/common/endorsed. They could also be put in common/lib or shared/lib, but if you are using j2sdk1.4.x and want to override the endorsed package org.w3c.dom, you will need these jars in the common/endorsed directory. Jake Friday, January 10, 2003, 3:03:42 AM, you wrote: acui Hi, acui I already put this question to the list and got no answer. acui I try to formulate it differently, as I really hope someone acui on the list will at least give a hint where I should look for acui a solution. acui I am trying to build a Tomcat distribution kit, using ant. acui The build fails because it cannot find class NodeIterator: acui ant dist acui ... acui BUILD FAILED acui java.lang.NoClassDefFoundError: org/w3c/dom/traversal/NodeIterator acui What is wrong? I don't know where I should look to acui understand why this class is not found. acui Even a general directive about where to look for class acui availability and inclusion will be appreciated. acuiGustavo Avitabile acui -- acui To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] acui For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- Best regards, Jacobmailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: How do I...
On Friday 10 January 2003 12:08 pm, Luc Foisy wrote: Get out put to go into the context specific logs rather than catalina.out?? Hello, This http://jakarta.apache.org/tomcat/tomcat-4.1-doc/config/context.html tells about using the Context element in server.xml to configure a webapp. Scroll down and note the Logger entry under Nested Components. I hope this helps. Incidentally, the link above is prominently accessible from the Server Configuration Reference, which, in turn, is available by clicking on Tomcat 4.1 under DOCUMENTATION on the Tomcat main page. I think the Tomcat documentation rocks. Paul -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: HTTPS to HTTP
Is there an FTP connector for Tomcat? If so, I would be very interested in it. Thanks, John -Original Message- From: Shah, Sanjay [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 09, 2003 1:03 PM To: 'Tomcat Users List' Cc: 'Craig R. McClanahan' Subject: RE: HTTPS to HTTP Hello Craig: I was reading one of your post in tomcat user archive regarding implementation of FTP protocol under Catalina. One of my requirement is exactly the same. In my case the FTP security and processing needs to be managed on a per customer basis, however this tends to be closely coupled to the web-app side. Infect my FTP processing would re-use underlying classes contained in the client's existing web-app. Hence I would prefer to have a logical mapping between host-customer. Your mapping approach seems like the way to go. Could you please let me know if you were successful in your effort and if so, can you give me some details about settings FtpConnector, FtpRequest, FtpResponse etc.? Your response is greatly appreciated. Thanks -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Windows Service
http://www.mattkelli.com/tech/tomcat/ntservice.htm Not sure how well it will work for 4.0.x, though. The run as service option for the installer in 4.1.x works like a charm. John -Original Message- From: Jeffrey Winter [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 12:33 PM To: Tomcat Users List Subject: Windows Service Sorry about this question that has apparently been asked and answered innumerable times, but: I'd like to run Tomcat as a Windows 2000 service. Searching, I see there is a utility jk_nt_service.exe that is available, but I can't seem to locate the version that is appropriate for Tomcat 4.0.x. Could somebody please do me the favor of pointing me to where this utility is located! - Thanks -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Unsure how to set environment variables for win xp
Hi there. Try the following 1. create the following batch file @echo off set JAVA_HOME=D:\j2sdk1.4.1_01\ set CATALINA_HOME=D:\Program Files\Apache Tomcat 4.0 set CLASSPATH=.;%JAVA_HOME%\src.jar;%JAVA_HOME%\lib\tools.jar;% CATALINA_HOME%\common\lib\servlet.jar REM compile the stuff javac -classpath %CLASSPATH% %1 2. Then you run the batch file like compile.bat HelloWorld.java To actually set environment vars in XP, do the following 1. Right click on my computer 2. Select properties 3. Click on the Advanced tab 4. Click on Environment Variables 5. Define the necessary variables that you need... you would probably want to define them in System 6. Close all Console windows that are currently open and restart them 7. Test your variables by echo'ing them out i.e. echo %CLASSPATH% Hope that helps. Jan-Michael - Original Message - From: Tammer Salem [EMAIL PROTECTED] Date: Friday, January 10, 2003 3:52 am Subject: Unsure how to set environment variables for win xp Hi, I'm having problems compiling my servlets. I know this is probably out of the domain of tomcat setup, but I decided to ask anyway. I have a servlet called (test.java) in a directory (D:\Program Files\Apache Tomcat 4.0\webapps\test\WEB-INF\classes). My javac.exe is in (D:\j2sdk1.4.1_01\bin). I can't get the servlet file to compile. I think my CLASSPATH and Path environment variables are messed up, because I keep on getting the following exceptions: = HelloWorld.java:2: package javax.servlet does not exist import javax.servlet.*; ^ HelloWorld.java:3: package javax.servlet.http does not exist import javax.servlet.http.*; ^ HelloWorld.java:11: cannot resolve symbol symbol : class HttpServlet location: class HelloWorld public class HelloWorld extends HttpServlet ^ HelloWorld.java:13: cannot resolve symbol symbol : class HttpServletRequest location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ HelloWorld.java:13: cannot resolve symbol symbol : class HttpServletResponse location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ HelloWorld.java:13: cannot resolve symbol symbol : class ServletException location: class HelloWorld public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException ^ 6 errors = Can anyone please help me? thanks, Tammer Salem -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: JSP source
From: Turner, John [EMAIL PROTECTED] Sent: Friday, January 10, 2003 5:08 AM Subject: RE: JSP source wget is a text-based client that can make HTTP and FTP requests, copying the results to a file. wget is a popular program, but may not be installed on your system, so you'll need to hunt it down (and it is also merely an example, there are a plethora of perl, python, ruby, etc scripts that will simply fetch a URL -- those are all viable as well). Sendmail is a MTA (mail transport agent). Probably 2/3 or more of the electronic mail sent on the Internet is sent using sendmail at one point or another. Sendmail is also, essentially ubitquitous on UNIX systems. Pretty much every UNIX system (or variant) in the past 10 years has Sendmail as their default mailing system (I dunno about SCO, SCO always did things kind of strange, but ...). Now, to be fair, while your system MAY have sendmail, it may not be the current system in place, as it is also often replaced for assorted reasons by other mail systems. Also, sendmail may simply not be on your default path. I'm sure you'll hate me for this, but Contact your System Administrator for details. (Whenever I read that in a document, it's usually ME who's the Sys Adm, and it usually means I have a lot more digging to do.) However, the real point is that you are certainly welcome to write the entire thing in Java. Java is more than adequate to the task, it's not terribly difficult to do, and I'm confident you can find cut paste code around the net. However, it is also worthwhile to look at potential alternatives that make these kinds of things easier to do. Regards, Will Hartung ([EMAIL PROTECTED]) -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: OT: what source code control system?
CVS! It is free. It runs on darn near anything. There are several good java interfaces, and tools like netbeans and eclipse also work well with it. For windows users, you can use WinCVS, and my preference - the command line! Also, the server-side repository is binary compatible across platforms - I have moved several from WinNT to linux, and it was a complete non-event. It is also firewall friendly. It uses port 2401 to communicate between the client and server, and the clients never directly access the files. VSS on the other hand, requires read/write access to the actual repository - Imagine hearing this from the new guy: Oops! What did I just delete? Go here: http://www.cvshome.org Larry [EMAIL PROTECTED] 01/10/03 10:29 AM We have a staff of 8-10 student employees and a couple full time staffers that write desktop and web applications or their supporting components. We're mostly using Visual Basic and MS Access for desktop apps and ASP (on IIS 5.0) for web apps, but I'm nudging everyone toward Tomcat/Java. I'd like to implement a source code control system that includes a browser-based interface (preferably JSP/Servlet). Cost is an issue, so I'm looking at the open source or other free options. The server components would be running on a Windows 2000 Server platform, but I'm interested in having the flexibility to integrate with any web and database server so as not to be chained to a given platform (hence the preference for using JSP). Any recommendations? Thanks! -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Windows Service
There is an option in the Tomcat installer to install Tomcat as a service on Windows. Jim Ah yes, thanks. I see now that the lastest 4.1 has it as part of the install. I'm just going to upgrade my installation. Sorry! -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: help conecting Tomcat with a As/400
As I said in response to your earlier e-mail, you really should be asking these questions in tomcat-user. Personally, I still use my own JDBC connection pool. Unlike DBCP, I know every line of my connection pool and, more importantly, I know that it works. There is step-by-step documentation on how to setup a datasource on the Tomcat website: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/jndi-resources-howto.html http://jakarta.apache.org/tomcat/tomcat-4.1-doc/jndi-datasource-examples-how to.html --- Noel -Original Message- From: Gustavo Rojas [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 13:16 To: Noel J. Bergman Subject: RE: help conecting Tomcat with a As/400 I have the JT400.jar in my TOMCAT_HOME/common/lib, i think that this is the JDBC driver that i need. I want to make the next stuff, I want to connect a JSP web page to my database that is in the AS/400, and i have two question: 1) how can i define the datasource, in the tomcat, 2) where can i find any examples about JSP web pages that link with a AS/400 database. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
request for extra information
I have downloaded tomcat1.1.1 I read the Tomcat IIS HowTo.. but I don't understand the Configuring the ISAPI Redirectorchapter. Please I need some détails concerning the configuration of the ISAPI.Mainly: In the registry, create a new registry key named HKEY_LOCAL_MACHINE\SOFTWARE\Apache Software Foundation\Jakarta Isapi Redirector\1.0 Add a string value with the name extension_uri and a value of /jakarta/isapi_redirect.dll Add a string value with the name log_file and a value pointing to where you want your log file to be (for example d:\tomcat\isapi.log) Add a string value with the name log_level and a value for your log level (can be debug, inform, error or emerg). Add a string value with the name worker_file and a value of D:\tomcat\conf\workers.properties (you can copy this file from the CVS) Add a string value with the name worker_mount_fileand a value of D:\tomcat\conf\uriworkermap.properties (you can copy this file from the CVS) Please whate do you mean by registry. thank you in advance. Please send me the reply to:[EMAIL PROTECTED] _ MSN Messenger : discutez en direct avec vos amis ! http://www.msn.fr/msger/default.asp -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: How do I...
http://jakarta.apache.org/tomcat/tomcat-4.1-doc/config/context.html tells about using the Context element in server.xml to configure a webapp. Scroll down and note the Logger entry under Nested Components. I hope this helps. I have the same question as Luc. I set up a Context with a Logger inside. Messages such as JSP compile errors go to the Logger I set up, but messages that are printed to System.out still show up in catalina.out. I read the docs above but I don't see how to change this. Thanks, Dan -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: what source code control system?
Despite the fact that it is widely used, the list of problems with CVS is long and distinguished. Since you can't use SourceSafe, I would recommend that you look at Subversion (http://subversion.tigris.org). Subversion is self-hosting, works with database and apache, has an API, and there is a GUI interface (http://rapidsvn.tigris.org). Subversion uses WebDAV, and there is even a Wiki using Subversion. If you were in a corporate environment, perhaps Subversion might not be ready for you (but then again, you could afford SourceSafe), but in your environment you might like the possibilities in Subversion. There is always CVS if you need it, and don't mind the problems (like the inability to rename something). --- Noel -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: HTTPS to HTTP
Hi Bill, Honestly, as a user, I don't feel competent enough with the Tomcat internal architecture to write a patch. However, to me, this is a vital thing missing from the tomcat 4.1.x branch. Quite a few of the sites that I work on require that a session created under https be accessible under http, and as a security measure, we drop our own Secure cookie... and make sure it is present on any pages with confidential information (which we of course make https as well). Because tomcat prevents us from doing this, and because of the lack of a secureCookies feature in 4.1.x, I just keep hacking away at the Connectors code in every new release, and comment out the if statement that prevents the desired functionality (which is NOT an elegant solution). I think there IS a demand for the secureCookies feature, because I have seen several posts for this before, and I just hope that someone who has more knowledge of tomcat's internal workings than myself will figure out the proper way to patch this. -Raiden (and I will be forever grateful to anyone that can do this!) From: Bill Barker Date: 2003-01-10 7:42:35 As the person that implemented the 3.3.2 behavior documented below, I'm more than willing to review a patch to 4.1.x that would implement the same behavior. I just can't bring myself to believe that it's that big of an issue if it's not worth anyone's time to construct a patch. David Hemingway [EMAIL PROTECTED] wrote in message 031c01c2b7ac$a6f50a90$0b7bfea9@w9b1jqmyjsd9ds1">news:031c01c2b7ac$a6f50a90$0b7bfea9@w9b1jqmyjsd9ds1... Hi, I am trying to allow session cookies that created via https to retain the session when stepping down to http, however by default a new session will be made. It seems that a session made under http will sustain if you step up to https but not the reverse. I read in the following document that in tomcat 3.3.2 you can allow a session to be valid via http even if it was created via https: http://jakarta.apache.org/tomcat/tomcat-3.3-doc/serverxml.html#SessionId secureCookie [Tomcat 3.3.2] If true, then Tomcat will mark the Session ID cookie as as Secure if the session is created over a SSL connection. A conforming browser will only send the cookie back to a page that is using SSL. The effect is that if a session is created from a SSL page, than it is not available to any non-SSL pages. SessionId cookiesFirst=true noCookies=false / SessionId noCookies=true / SessionId noCookies=true checkSSLSessionId=true/ I am using tmocat 4.1.18 and I would like to implement this as it will greatly simply a section of my site. I have 2 questions regarding it though. 1 Can anyone tell me how this can be imlpemented in 4.1.18 to being with :-) (I can't find any docs). 2 Does this open up a huge security hole that I am not seeing. I have heard things about session hijacking? Many thanks regards, Dave -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
tomcat manager question
I recently upgraded from 4.0.2 ro 4.1.18 on a development box running Windows 2K server. I am in the process of migrating some applications to this version of Tomcat, also to jdsk 1.4.1_01. Got everything up and running with one small problem related to the manager interface. I have the following context in my server.xml file: !-- IfaxSend Context -- Context path=/IfaxSend docBase=IfaxSend debug=0 reloadable=true crossContext=true / Realm className=org.apache.catalina.realm.JDBCRealm debug=5 driverName=sun.jdbc.odbc.JdbcOdbcDriver connectionURL=jdbc:odbc:replixdb userTable=Users userNameCol=FaxUserId userCredCol=PIN userRoleTable=Users roleNameCol=UserRole / Logger className=org.apache.catalina.logger.FileLogger prefix=iFax_IfaxSend_log. suffix=.txt timestamp=true / Which works fine. The problem is that when I include this context, the authorization for manager application seems to try to authenticate against the context level JDBC realm (application level), instead of the Realm className=org.apache.catalina.realm.MemoryRealm / tomcat-users.xml file that it normally uses (this realm tag is just below the engine tag, at the global level. what could be causing the global level realm to be overridden at a lower level? Shouldn't a context level realm only relate to the application within the context? Nothing major, just an annoyance in that I can't access the manager interface when this application is running, unless I change a user in the JDBC database to admin or manager, which I don't want to do. Thanks!! Geoff Geoff Peters, BScFE, AIT Phone : (441) 296-9640 Applications DeveloperFax: (441) 292-1509 Logic Communications E-mail : [EMAIL PROTECTED] 12 Par-La-Ville Road WWW: http://www.logic.bm Hamilton, Bermuda HM JX -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Tomcat 4.1.12 Directory Listing
I would like to use default tomcat directory listing functionality in one of my application. Following is the context added to server.xml configuration. Context className=org.apache.catalina.core.StandardContext path=/directory docBase=C:\application\data debug=0 Resources className=org.apache.naming.resources.FileDirContext allowLinking=true caseSensitive=false / /Context 1). This works fine on UNIX based systems but on Win2K box its causing this error at tomcat startup time: java.lang.reflect.InvocationTargetException: java.lang.IllegalArgumentException: Document base ..\C:\application\data does not exist or is not a readable directory What could be the reason and is there any magic flag need to be set? 2). Is it possible to configure default Tomcats directory listing functionality to extend like to show our own file timestamps, images etc. I noticed that this whole default directory listing implementation is hard coded in the org/apache/catalina/servlets/DefaultServlet.java class. So is it advisable to extend this servlet class or some other tomcat source code? what's the other options I can look for? thanks in advance.. --Venkat -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Prevent directory listing - read the fine manual
Yes, you will ask me to read the fine manual. But I seach, and all that and could not find (easily) where the needed manual is. But I found some help one the web. That was not enough. So I download the 2.3 spec. Well, the size of it went over my head. Do some search did not help. Here is my question if you bother: To prevent directory listing under tomcat 4.x, one way is to set listing=false under default servlet, under conf/web.xml However, that's global to all apps. I want it to only do that for 1 of my apps. So, you can say modify it to myapp/Web-inf/web.xml. I tried, using copy and paste from the conf/web.xml to myapp/Web-inf/web.xml, but it did not work, generate a bunch of error. So, is it possible using this scheme? Is modifying the application's web.xml the right thing to do? How to do it? Or, where is the fine manual? Thank you very much for any help. Vh -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Seeking expression of interest (no agents please)
Posted : Thursday, 10-Jan-2003 Position : may need 1 to 2 experienced JAVA contractors to help out ! Location : New York, NY Pay : see Whats on offer ReplyTo : [EMAIL][EMAIL PROTECTED][/EMAIL] No agents please ! I have basic codes in need of major enhancements, you will need to stick to the basic concept, but it would not throttle your creativity. [B]What I need :[/B] * Coding JAVA applets and servlets in J2SDK or J2EE ; * Coding applet to servlet communication and http-tunnelling ; * Coding a2s in a secure environment e.g. 128 bit encryption; tunnel through proxies etc ; * Solid working knowledge of JSP, SOAP, JNDI, and using .properties files etc ; * Connecting to many databases ; * Multi-threaded applications and database connection-pooling ; * Code to functional specifications ; * Know yourself - if you say 10 working days effort for completing task xyz including functional testing, let it be so ! ; * Working knowledge of Apache-Tomcat; Sybase and Oracle; networking over TCP/IP etc; * Reference site [B]Desirable :[/B] * SUN certified ; * Relevant experience ; * Sense of humour, patience and willingness to listen to clients ; * Fluent and articulate native English speaker, some telephone support may be necessary for implementation ; [B]What's on offer :[/B] * 1 month contract with possible 2 months extension - USD doAsk (not much); * IF we survive this period, and you enjoy doing this kind of work and see the possibilities, then we can discuss again - will consider sharing with the right people ; * Some overseas travelling and posting might be involved later on (American citizens preferred, please understand). -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
page cannot be displayed error
Our platform is sun sparc solaris 8. We have our web server as apache 1.3.22 (SSL). This web server hostname is u10-2.safe-prop.com and CNAME for the same host for outside world is scds.safeguardproperties.com. This webserver has been working for last one year. Recently we added mod_jk connector and tomcat to make a spell check application (jspellhtml) working and available at this web server. After this changes we started getting page cannot be displayed error frequently both from inside and outside users. I then stopped the tomcat process but still the same error used to get. Finally I put back the original httpd.conf file and restarted the server, the problem solved. This (problematic) httpd.conf file consists of additional lines for tomcat/mod_jk configurations. I am giving below the additinal tomcat lines in httpd.conf files. Could any body help me to find where I am wrong and to fix this problem? ## ###ajp config lines are addred below 100102 ## #Load mod_jk # LoadModule jk_module libexec/mod_jk.so AddModule mod_jk.c # Configure mod_jk # JkWorkersFile /usr/local/tomcat/conf/workers.properties #JkLogFile /usr/local/apache/logs/mod_jk.log JkLogFile /var/apache/logs/mod_jk.log JkLogLevel info # First Virtual Host. # VirtualHost 10.10.1.101:443 DocumentRoot /var/apache/htdocs ServerName scds.safeguardproperties.com #ServerName cdidev.safeguardproperties.com SSLEngine On SSLCertificateFile /usr/local/apache/1.3.22-1/conf/ssl.crt/server.crt SSLCertificateKeyFile /usr/local/apache/1.3.22-1/conf/ssl.key/server.key JkMount /*.jsp ajp13 JkMount /servlet/* ajp13 JkMount /jspellhtml/* ajp13 /VirtualHost # Second Virtual Host. Also accessible via HTTPS # VirtualHost 10.10.1.101:80 DocumentRoot /var/apache/htdocs ServerName u10-2.safe-prop.com JkMount /*.jsp ajp13 JkMount /servlet/* ajp13 /VirtualHost #VirtualHost 10.0.0.2:443 #DocumentRoot /web/host2 #ServerName host2.apache.org #SSLEngine On #JkMount /*.jsp ajp13 #JkMount /servlet/* ajp13 #/VirtualHost # _ Thank you, Anup Anup Ray Unix Systems Administrator Safeguard Properties Inc. 650 Safeguard Plaza Brooklyn Heights, Ohio 44131 800-852-8306 x1106 [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: what source code control system?
Use CVS -- www.cvshome.org. It has a web interface as well. -Original Message- From: David Boyer [mailto:[EMAIL PROTECTED]] Sent: Friday, January 10, 2003 12:30 To: Tomcat Users List Subject: OT: what source code control system? We have a staff of 8-10 student employees and a couple full time staffers that write desktop and web applications or their supporting components. We're mostly using Visual Basic and MS Access for desktop apps and ASP (on IIS 5.0) for web apps, but I'm nudging everyone toward Tomcat/Java. I'd like to implement a source code control system that includes a browser-based interface (preferably JSP/Servlet). Cost is an issue, so I'm looking at the open source or other free options. The server components would be running on a Windows 2000 Server platform, but I'm interested in having the flexibility to integrate with any web and database server so as not to be chained to a given platform (hence the preference for using JSP). Any recommendations? Thanks! -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: How do I...
On Friday 10 January 2003 01:18 pm, Dan Lipofsky wrote: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/config/context.html tells about using the Context element in server.xml to configure a webapp. Scroll down and note the Logger entry under Nested Components. I hope this helps. I have the same question as Luc. I set up a Context with a Logger inside. Messages such as JSP compile errors go to the Logger I set up, but messages that are printed to System.out still show up in catalina.out. I read the docs above but I don't see how to change this. Thanks, Dan You can't do that individually for contexts, AFAIK. Use ServletContext.log() instead of System.out.println() to manage log output with Context-specific Loggers. You can change the destination of all System.out's for your entire Catalina engine if you edit catalina.sh. System.out is whatever standard output Catalina is pointed at, and, respectively, System.err is whatever standard error output Catalina is pointed at. Standard output and standard error output are OS concepts and they can be set to a file, console, etc. when running the actual server startup command. That command is a part of the catalina.sh script (and its Windows equivalent). Search that script for /logs/catalina.out and you will see the output streams' redirection in action. The above is based on the assumption that you use Tomcat 4.1.x. Paul -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: How do I...
To properly handle logging, you might want to check out log4j.org or commons-logging. It's one of the first things I setup for a project, it makes debugging extremely smooth. | -Original Message- | From: Paul Yunusov [mailto:[EMAIL PROTECTED]] | Sent: Friday, January 10, 2003 12:35 PM | To: Tomcat Users List | Subject: Re: How do I... | | On Friday 10 January 2003 01:18 pm, Dan Lipofsky wrote: | http://jakarta.apache.org/tomcat/tomcat-4.1-doc/config/context.html | | tells about using the Context element in server.xml to configure a | webapp. Scroll down and note the Logger entry under Nested Components. | I | hope this helps. | | I have the same question as Luc. | I set up a Context with a Logger inside. | Messages such as JSP compile errors go to the | Logger I set up, but messages that are printed | to System.out still show up in catalina.out. | I read the docs above but I don't see how to change this. | Thanks, | Dan | | You can't do that individually for contexts, AFAIK. Use | ServletContext.log() | instead of System.out.println() to manage log output with Context-specific | Loggers. | | You can change the destination of all System.out's for your entire | Catalina | engine if you edit catalina.sh. | | System.out is whatever standard output Catalina is pointed at, and, | respectively, System.err is whatever standard error output Catalina is | pointed at. Standard output and standard error output are OS concepts and | they can be set to a file, console, etc. when running the actual server | startup command. | | That command is a part of the catalina.sh script (and its Windows | equivalent). | Search that script for /logs/catalina.out and you will see the output | streams' redirection in action. | | The above is based on the assumption that you use Tomcat 4.1.x. | | Paul | | -- | To unsubscribe, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] | For additional commands, e-mail: mailto:tomcat-user- | [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Content-Length header set automatically?
At 10:55 PM 1/9/2003, Bill Barker wrote: [The following describes my understanding of how Coyote works for Tomcat 4.x and 5.x -- don't know about 3.3 or responding through a webserver connector.] Tomcat sets the content length automatically in two circumstances: * Static files delivered by the default file-serving servlet (because the length is known ahead of time from the directory entry for that file) Same for Tomcat 3.3.x * When the response data is small enough to fit into the response buffer, and has not been flushed yet, and no content length header was set by the application. You can tweak the response buffer size (response.setBufferSize()) if you want to increase the number of responses that fall into the second category, but for anything longer than the response buffer size, it is your responsibility to buffer the data you're generating so that you can calculate and set the content length -- *before* writing any data to the response. This also works with 3.3.x with the CoyoteConnector (which will first ship in release for 3.3.2, but is available now in the nightly, or by installing the Coyote jars in 3.3.1). With the Http10Connector, you don't want to know ;-). With mod_jk(2) this is not (currently) true. If the servlet doesn't specify content-length, then the response will be sent as chunked. In future versions, it is likely to change to conform with the above. This is precisely what I'm seeing (and what caused the problem in the first place). The reported problem was that the request was missing a Content-Length header, but in reality the response was being sent with Content-Transfer-Encoding set to chunked (through mod_jk). I would add to the above that the standard HttpConnector (org.apache.catalina.connector.http.HttpConnector) doesn't seem to behave this way. With a buffer size of 2048 (default) and a response size of 610, sending a request directly to Tomcat produces response headers like this: HTTP/1.1 200 OK Content-Type: text/xml Date: Fri, 10 Jan 2003 18:45:28 GMT Transfer-Encoding: chunked Server: Apache Tomcat/4.0.3 (HTTP/1.1 Connector) Set-Cookie: JSESSIONID=6F80CF7B67D0621353A9C7C411C3DFBE;Path=/repeatorMonitor Setting the attribute allowChunking=false produces response headers like this: HTTP/1.1 200 OK Content-Type: text/xml Date: Fri, 10 Jan 2003 19:01:22 GMT Server: Apache Tomcat/4.0.3 (HTTP/1.1 Connector) Connection: close Point being it looks like all my responses are being chunked unless I specifically disallow chunking (at which point I lose persistent connections). If this is a configuration issue on my machine, I'd appreciate any pointers. If this is unexpected behavior, I'll simplify the components and work on it some more. If you (or anyone) could tell me which of these are more likely, I'd be happy. :) In case anyone's curious, requesting a static gif produces a non-chunked response like so: HTTP/1.1 200 OK Content-Type: image/gif Content-Length: 47 Date: Fri, 10 Jan 2003 19:09:46 GMT Server: Apache Tomcat/4.0.3 (HTTP/1.1 Connector) Last-Modified: Mon, 26 Aug 2002 17:40:28 GMT ETag: 47-1030383628000 Thanks, justin Justin Ruthenbeck Software Engineer, NextEngine Inc. [EMAIL PROTECTED] Confidential - See http://www.nextengine.com/confidentiality.php -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
