starting the JVM with -D option in tomcat
Hi all is it possible to load a java class with -D option in tomcat ?? Thanks Regards Swetha Regards Swetha Yahoo! India Matrimony: Find your life partneronline.
Re: starting the JVM with -D option in tomcat
JAVA_OPTS=-D= -Dfile.encoding=ISO-8859-1 export JAVA_OPTS [start tomcat] Viorel Dragomir . .. --- - Original Message - From: swetha Ranganathan To: tomcat-user@jakarta.apache.org Sent: Monday, March 21, 2005 10:48 Subject: starting the JVM with -D option in tomcat Hi all is it possible to load a java class with -D option in tomcat ?? Thanks Regards Swetha Regards Swetha Yahoo! India Matrimony: Find your life partneronline.
RE: Tomcat Deploy
Hi Geoff, The general concensus I believe is to use a combination of Ant and source control (CVS, VSS). In our case, we have 4 developers all with Eclipse and local workstation Tomcat instances. We all check in to VSS via the VSS Plugin in Eclipse. When we wish to perform a staging or production build, we have written an Ant build.xml file to handle deployment. For staging, our Ant script copies JSPs, classes and resources only, nothing fancy. The staging server detects the class changes and reloads the web app and we can test. For production, our Ant script packages everything up as a WAR file which we then deploy by copying into the production webapps folder. You can also use the Tomcat deploy manager tool for this, adn I believe there are also some Tomcat specific Ant commands. But in general, Ant is what you need and some form of source control is a must esp. on multi-dev projects. Allisatir. -Original Message- From: Geoff Wiggs [mailto:[EMAIL PROTECTED] Sent: 21 March 2005 02:41 To: tomcat-user@jakarta.apache.org Subject: Tomcat Deploy Quick question on deploying to Tomcat and Eclipse integration. If it's too far off topic I apologize in advance. The IDS is stellar for deploying to a single server. I personally have it deploying to Tomcat running on my workstation. What approach should I take for deploying to the production server? Do I need to get into a CVS of some sort? Or is there a way to set up an alternate installation to allow deployment from the IDE to the Production server? Geoff [EMAIL PROTECTED] www.orcastech.com FONT SIZE=1 FACE=VERDANA,ARIAL COLOR=BLUE --- QAS Ltd. Developers of QuickAddress Software a href=http://www.qas.com;www.qas.com/a Registered in England: No 2582055 Registered in Australia: No 082 851 474 --- /FONT - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
tomcat connector
I'm developing an application which is a java servlet, deployed on tomcat 5.5 Now, I want my application to take raw data from the client through sockets, for that it has to make a socket connection and listen that port for data. I've heard that we can create Connectors in Tomcat, which can listen to any protocol type of request i.e. Http, Telnet or any of application protocol. In my case I need a Connector which can listen to a socket for raw data type requests And, I can hook my application (or servlet) with that Connector can listen to those requests which are coming on that connection. But, as a solution I want my client to be a simple Telnet tool, which can send requests on the port, I've configured for my Connector. But, till now I've seen tomcat entertaining Http requests only. Please suggest, - How to implement this in tomcat 5.5 - Is there any built-in connector available - Is it possible to make a custom connector for this scenario Looking forward to your comments suggestions - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE : Tomcat behind IIS
In fact, what I really want is to prevent any other IIS or Apache to connect to my 8009 connector port, for my IIS machine is used for authentication. I don't want that someone can bypass this. I tried to use a Request Filter valve by adding this in my server.xml : Valve className=org.apache.catalina.valves.RemoteAddrValve allow=ip_address_of_my_iis_server/ But it doesn't work. Even if my clients don't connect directly to my Tomcat server (only my IIS server does, and i can verify this by using the netstat command), they are blocked by this valve. It seems that my IIS tells Tomcat that its IP adress is my client's one. Maybe that's why my clients IP addresses are logged in Tomcat when this valve is disabled. So now this valve is not enabled anymore, and if someone installs a web connector pointing to my Tomcat server, it will have access to my webapps... Any help will be appreciated. Fred -Message d'origine- De : SANTOS, DANIEL (SBCSI) [mailto:[EMAIL PROTECTED] Envoyé : vendredi 18 mars 2005 18:22 À : Tomcat Users List Cc : MAES NICOLAS Objet : RE: Tomcat behind IIS sure, just go into your server.xml and remove the web connector Connector port=8080 / I'm using the minimal server.xml (slightly modified) so there may be more parameters in yours. This element is contained with in the Service tag which is in the Server tag. Daniel -Original Message- From: VAN DER MARLIERE FREDERIC [mailto:[EMAIL PROTECTED] Sent: Friday, March 18, 2005 10:58 AM To: tomcat-user@jakarta.apache.org Cc: MAES NICOLAS Subject: Tomcat behind IIS Hi all, I installed a tomcat 5.0 behind an IIS server. Everything works fine with the connector. Now, I would like that Tomcat only accepts connections from this IIS server and not from others computers (still accessible from http://myhost:8080/myApplication http://myhost:8080/myApplication ). Is there a simple way to do this in server.xml (or other tomcat config files) or do I have to install a firewall ? Thanks in advance. Fred. Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified. Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
mod_jk2 and LocationMatch regexps
Hi, I'm trying to adjust the mod_jk2 JkUriSet entries for my server (apache 2.0, mod_jk2, tomcat 4.x). Specifically, I'm trying to set up some static files to be served by apache, not by tomcat. However, it seems the LocationMatch is very greedy and tends to intercept *all* requests that contain the path string. For example, assume I have the static file under apache htdocs: /var/www/htdocs/stuff/foo_bar.html And I have a webapp under tomcat: /opt/tomcat4/webapps/foo/ I have this mod_jk2 entry: LocationMatch /foo JkUriSet worker ajp13:localhost:8009 /LocationMatch This URL is properly forwarded to the tomcat foo webapp: http://www.example.com/foo However, it *also* forwards: http://www.example.com/stuff/foo/bar.html And even: http://www.example.com/stuff/foo_bar.html According to the docs, LocationMatch is supposed to support a regexp for the URL, but I can't seem to figure out how to get it to only forward foo at the beginning of the path. I tried: LocationMatch ^/foo This caused: [error] uriEnv.init() context must start with '/' in ^/foo I also tried: LocationMatch /^foo Which simply didn't forward http://www.example.com/foo to the webapp. I also tried simply changing LocationMatch to Location, in the hopes that Location's simpler specification might naturally Do The Right Thing. But it didn't foward http://www.example.com/foo to the webapp. -- Steven J. Owens [EMAIL PROTECTED] I'm going to make broad, sweeping generalizations and strong, declarative statements, because otherwise I'll be here all night and this document will be four times longer and much less fun to read. Take it all with a grain of salt. - http://darksleep.com/notablog - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Centos 3.3
Hello guys, I am not able to configure apache web server 2.something with apache tomcat 5.5.7. I am running centos 3.3. I installed mod_jk. I also changed httpd.conf files.. Also server.xml file in tomcat / conf directory Can anyone help? Can someone tell me an example of how to Put a context element in TOMCAT 5.5.7 . In Tomcat 5.5.7, the context element is in separate file. I have two problems, 1) mod_jk is not connecting Apache Web Server with Tomcat 5.5.5 2) I think tomcat is not picking the context Any hints? Kind Regards Vaneet Sharma executive manager iDeasTank Limited an iwg business dolphins' court po 388 valletta, m-malta/europe mobile: +356 9943 8263 skype: CALLVANEET fax: +356 9952 phone: +356 9942 [EMAIL PROTECTED] call me on www.skype.com - my ID is CALLVANEET Want a signature like this? - www.plaxo.com\signature iwg is a global e-mobile company creating, building and growing new businesses. iwg founders are pioneers in creating multi-billion dollar mobile and Internet businesses in Europe, Asia and the US. www.iWG.info www.countryprofiler.com/iWG www.visitmalta.com www.mfc.com.mt Privileged/Confidential Information may be contained in this message. If you are not the addressee indicated in this message (or responsible for delivery of the message to such person), you may not copy or deliver this message to anyone. In such case, you should destroy this message and kindly notify the sender by reply email.
Re: Overriding the browser language setting?
One solution would be to map a Filter to whichever URLs you wish to override the browser settings. In the Filter wrap the request, using a sub-class of javax.servlet.http.HttpServletRequestWrapper, before passing the request to the rest of the chain. In your wrapper sub-class override the methods getLocale() and getLocales() and you should be set. see: http://java.sun.com/j2ee/sdk_1.3/techdocs/api/index.html HTH, Jon Kurt Overberg wrote: Hi there all! I'm trying to override the default struts/tomcat code that chooses an ApplicationResources.properties file based on the user's browser language setting. I'd like to manage which language to serve up on my own (or based on an item in the user's session). Does anyone have any pointers on how to do this? Normally I would bash my head against an issue like this for weeks and weeks before finally posting, but in this case, its an emergency and time is short. Thank you for any and all help any of you incredibly talented and intelligent people could provide. /kurt - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
connection timeouts mod_jk 1.2.9
Hi All, The beta mod_jk 1.2.9(and older) produce a lot of errors like this: [EMAIL PROTECTED] # tail catalina.out Mar 21, 2005 12:48:07 PM org.apache.jk.common.ChannelSocket processConnection INFO: connection timeout reached This is not solved yet, so what can I do about them? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Tomcat hangs up from time to time
I just finished dealing with the same problem. In the end I ended up having to install a new version of linux (rh 9 - rh enterprise) to resolve it. I'm not sure about the exact cause, but given that the problem acts like a socket problem (Hard to tell without errors) I'm guessing that that would be a good place to start looking. Please let me know if you find anything. Larry -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Sunday, March 20, 2005 11:55 PM To: Tomcat Users List Subject: Re: Tomcat hangs up from time to time Well, I have tried to kill tomcat process with SIGQUIT in order to take thread dump. No any reaction. Only SIGKILL works. On Thu, 17 Mar 2005 11:28:58 - Peter Crowther [EMAIL PROTECTED] wrote: From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] But about two-five times per day, Tomcat hangs up, java (version is 1.5.0_01-b08) eats much cpu (up to 90%), and no any response from Tomcat, no warnings/errors in logs. I even can't stop it with shutdown.sh! Have anyone the same problem? Any solutions, advices, thoughts? Check your JVM documentation, and then kill the main Tomcat process with the signal that causes a thread dump. Read/grep through the thread dump - who's doing what? - Peter - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE : tomcat-user Digest 20 Mar 2005 16:09:13 -0000 Issue 5487
In fact, what I really want is to prevent any other IIS or Apache to connect to my 8009 connector port, for my IIS machine is used for authentication. I don't want that someone can bypass this. I tried to use a Request Filter valve by adding this in my server.xml : Valve className=org.apache.catalina.valves.RemoteAddrValve allow=ip_address_of_my_iis_server/ But it doesn't work. Even if my clients don't connect directly to my Tomcat server (only my IIS server does, and i can verify this by using the netstat command), they are blocked by this valve. It seems that my IIS tells Tomcat that its IP adress is my client's one. Maybe that's why my clients IP addresses are logged in Tomcat when this valve is disabled. So now this valve is not enabled anymore, and if someone installs a web connector pointing to my Tomcat server, it will have access to my webapps... Any help will be appreciated. Fred -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] ] Envoyé : dimanche 20 mars 2005 17:09 À : tomcat-user@jakarta.apache.org Objet : tomcat-user Digest 20 Mar 2005 16:09:13 - Issue 5487 Fichier: ATT46691.txtMessage: java.lang.NoClassDefFoundError: org/apache/tools/ant/types/RedirectorElementMessage: Re: java.lang.NoClassDefFoundError: org/apache/tools/ant/types/RedirectorElementMessage: JSP being interpreted?Message: Re: JSP being interpreted?Message: Re: JSP being interpreted?Message: Re: [Slightly OT] MVC approach when JSP are not allowedMessage: Re: [Slightly OT] MVC approach when JSP are not allowedMessage: Re: [Slightly OT] MVC approach when JSP are not allowedMessage: Re: [Slightly OT] MVC approach when JSP are not allowedMessage: servlet api question Message: JSP compile with jdk 1.5 in 5.5.7Message: Re: mod_jk under Win32 (Tomcat 5.0.28, apache 1.13.33)Message: Tomcat not running(4.0.6/5.0.19)-urgentMessage: Re: Tomcat not running(4.0.6/5.0.19)-urgentMessage: Re: Tomcat not running(4.0.6/5.0.19)-urgentMessage: Re: Tomcat not running(4.0.6/5.0.19)-urgentMessage: Re: How to setup demo app? Message: Re: Tomcat 5 on VPS service stops, still no luck. Message: Re: Authentication for streaming file (OT)Message: Re: Authentication for streaming file (OT)Message: Re: Using RealmBase.Digest(...)Message: Re: Using RealmBase.Digest(...) Message: Re: Tomcat not runningMessage: How to speed up development wie AppServerMessage: Tomcat rookie needs help building applicationMessage: Re: Tomcat rookie needs help building applicationMessage: Howto MBean Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified.
RE: RE : Tomcat behind IIS
Why not try blocking traffic at the router level? Your network router should allow you to configure which machine can connect to your tomcat. - Jim -Original Message- From: VAN DER MARLIERE FREDERIC [mailto:[EMAIL PROTECTED] Sent: Monday, March 21, 2005 5:36 PM To: SANTOS, DANIEL (SBCSI); Tomcat Users List Cc: MAES NICOLAS Subject: RE : Tomcat behind IIS In fact, what I really want is to prevent any other IIS or Apache to connect to my 8009 connector port, for my IIS machine is used for authentication. I don't want that someone can bypass this. I tried to use a Request Filter valve by adding this in my server.xml : Valve className=org.apache.catalina.valves.RemoteAddrValve allow=ip_address_of_my_iis_server/ But it doesn't work. Even if my clients don't connect directly to my Tomcat server (only my IIS server does, and i can verify this by using the netstat command), they are blocked by this valve. It seems that my IIS tells Tomcat that its IP adress is my client's one. Maybe that's why my clients IP addresses are logged in Tomcat when this valve is disabled. So now this valve is not enabled anymore, and if someone installs a web connector pointing to my Tomcat server, it will have access to my webapps... Any help will be appreciated. Fred -Message d'origine- De : SANTOS, DANIEL (SBCSI) [mailto:[EMAIL PROTECTED] Envoyé : vendredi 18 mars 2005 18:22 À : Tomcat Users List Cc : MAES NICOLAS Objet : RE: Tomcat behind IIS sure, just go into your server.xml and remove the web connector Connector port=8080 / I'm using the minimal server.xml (slightly modified) so there may be more parameters in yours. This element is contained with in the Service tag which is in the Server tag. Daniel -Original Message- From: VAN DER MARLIERE FREDERIC [mailto:[EMAIL PROTECTED] Sent: Friday, March 18, 2005 10:58 AM To: tomcat-user@jakarta.apache.org Cc: MAES NICOLAS Subject: Tomcat behind IIS Hi all, I installed a tomcat 5.0 behind an IIS server. Everything works fine with the connector. Now, I would like that Tomcat only accepts connections from this IIS server and not from others computers (still accessible from http://myhost:8080/myApplication http://myhost:8080/myApplication ). Is there a simple way to do this in server.xml (or other tomcat config files) or do I have to install a firewall ? Thanks in advance. Fred. Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified. Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified. The information in this email is confidential and is intended solely for the addressee(s). Access to this email by anyone else is unauthorized. If you are not an intended recipient, please notify the sender of this email immediately. You should not copy, use or disseminate the information contained in the email. Any views expressed in this message are those of the individual sender, except where the sender specifically states them to be the views of Capco. http://www.capco.com/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: RE : tomcat-user Digest 20 Mar 2005 16:09:13 -0000 Issue 5487
Isn't a firewall what you really want/need, i.e. to disallow connections to port 8009 except when they come from your IIS server? VAN DER MARLIERE FREDERIC wrote: In fact, what I really want is to prevent any other IIS or Apache to connect to my 8009 connector port, for my IIS machine is used for authentication. I don't want that someone can bypass this. I tried to use a Request Filter valve by adding this in my server.xml : Valve className=org.apache.catalina.valves.RemoteAddrValve allow=ip_address_of_my_iis_server/ But it doesn't work. Even if my clients don't connect directly to my Tomcat server (only my IIS server does, and i can verify this by using the netstat command), they are blocked by this valve. It seems that my IIS tells Tomcat that its IP adress is my client's one. Maybe that's why my clients IP addresses are logged in Tomcat when this valve is disabled. So now this valve is not enabled anymore, and if someone installs a web connector pointing to my Tomcat server, it will have access to my webapps... Any help will be appreciated. Fred -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] ] Envoyé : dimanche 20 mars 2005 17:09 À : tomcat-user@jakarta.apache.org Objet : tomcat-user Digest 20 Mar 2005 16:09:13 - Issue 5487 Fichier: ATT46691.txtMessage: java.lang.NoClassDefFoundError: org/apache/tools/ant/types/RedirectorElementMessage: Re: java.lang.NoClassDefFoundError: org/apache/tools/ant/types/RedirectorElementMessage: JSP being interpreted?Message: Re: JSP being interpreted?Message: Re: JSP being interpreted?Message: Re: [Slightly OT] MVC approach when JSP are not allowedMessage: Re: [Slightly OT] MVC approach when JSP are not allowedMessage: Re: [Slightly OT] MVC approach when JSP are not allowedMessage: Re: [Slightly OT] MVC approach when JSP are not allowedMessage: servlet api question Message: JSP compile with jdk 1.5 in 5.5.7Message: Re: mod_jk under Win32 (Tomcat 5.0.28, apache 1.13.33)Message: Tomcat not running(4.0.6/5.0.19)-urgentMessage: Re: Tomcat not running(4.0.6/5.0.19)-urgentMessage: Re: Tomcat not running(4.0.6/5.0.19)-urgentMessage: Re: Tomcat not running(4.0.6/5.0.19)-urgentMessage: Re: How to setup demo app? Message: Re: Tomcat 5 on VPS service stops, still no luck. Message: Re: Authentication for streaming file (OT)Message: Re: Authentication for streaming file (OT)Message: Re: Using RealmBase.Digest(...)Message: Re: Using RealmBase.Digest(...) Message: Re: Tomcat not runningMessage: How to speed up development wie AppServerMessage: Tomcat rookie needs help building applicationMessage: Re: Tomcat rookie needs help building applicationMessage: Howto MBean Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified.
Re: Persistence manager ClassNotFoundException during deserialization
I need to have a bug registered for this as I could convince my manager. I searched bugzilla but could'nt find one. If anyone know the relevant bug# please post it or shall I post a bug report and any one close it immediately ?. On Wed, 9 Mar 2005 15:05:13 +0530, Antony Paul [EMAIL PROTECTED] wrote: It is working in 4.1.31. Thanks for the help rgds Antony Paul On Tue, 08 Mar 2005 22:52:50 +, Mark Thomas [EMAIL PROTECTED] wrote: What happens on 4.1.31? Mark Antony Paul wrote: I created a sample application and is available at http://geocities.com/antonypaul24/web.html . Any one can download it and test. rgds Antony Paul On Tue, 8 Mar 2005 10:01:13 +0530, Antony Paul [EMAIL PROTECTED] wrote: I am waiting for some knowledgeable person to answer my questions. Meanwhile I will write a test application, download Tomcat source code and try to debug the problem. rgds Antony Paul On Mon, 7 Mar 2005 18:30:47 +0530, Antony Paul [EMAIL PROTECTED] wrote: Hi all, I am getting ClassNotFoundException when deserialising arrays/Lists stored in session. It have no problem with normal objects but have error when it is made an array or List. The set up is Tomcat 4.1.12 standalone. Sun J2SE 1.4.2_04. Using Filestore persistent manager which is set in example config. The full stack trace is given below from catalina.out. 2005-03-07 18:22:23 CoyoteAdapter An exception or error occurred in the container during the request processing java.lang.IllegalStateException: Error deserializing Session 8D30D6F68AA046F5DEB574FCA3C8E06F: java.lang.ClassNotFoundException: [Lmd.edrugstore.model.AuthenticatedWebUser; at org.apache.catalina.session.PersistentManagerBase.swapIn(PersistentManagerBase.java:717) at org.apache.catalina.session.PersistentManagerBase.findSession(PersistentManagerBase.java:593) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:173) at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:643) at org.apache.catalina.valves.ErrorDispatcherValve.invoke(ErrorDispatcherValve.java:170) at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:641) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:172) at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:641) at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:480) at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:995) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:174) at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:643) at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:480) at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:995) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:223) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:405) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:380) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:508) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:533) at java.lang.Thread.run(Thread.java:534) rgds Antony Paul - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- rgds Antony Paul http://www.geocities.com/antonypaul24/ -- rgds Antony Paul http://www.geocities.com/antonypaul24/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
HEAD method doesn't propagate from apache to tomcat over mod_jk
Hi,
I've stumbled over a bug in the mod_jk, which can be described by:
If I send request using HEAD method to a servlet, the servlet allways shows the method as GET. POST method works as expected.
I've made attached servlet to verify the nature of the problem. I'm using the following environment
OS: Linux Redhat 9.0 on intel platform
Tomcat version: 4.1.31
Tomcat component: mod_jk(1.2.8)
JVM: sun java 1.4.2_03
Webserver: Apache 2.0.53
I've not seen this problem mentioned anywhere, but it surely is there. I would appreciate any comment about the matter.
BR. Arnar
Arnar Gestsson, MSc, Electrical Engineering
TrackWell Software
import java.util.*;
import java.io.*;
import javax.servlet.*;
import javax.servlet.http.*;
public class RequestType extends HttpServlet {
public void doGet(HttpServletRequest req, HttpServletResponse rsp)
throws ServletException, IOException {
rsp.setContentType(text/html);
PrintWriter out = rsp.getWriter();
String requestType = req.getMethod();
rsp.setHeader(Arnar, was here);
rsp.setHeader(Content-Type, arnar);
rsp.setHeader(Request-Type, requestType);
out.println(html);
out.println(headtitle Request Type: + requestType +
/title/head);
out.println(body);
out.println(pThis page is the result of a + requestType +
request./p);
String name = user-agent;
String value = req.getHeader(name);
if (value == null) {
// The request header was not present
}
// Get all request headers
Enumeration enum = req.getHeaderNames();
for (; enum.hasMoreElements(); ) {
// Get the name of the request header
name = (String)enum.nextElement();
out.println(name);
// Get a value of the request header
value = req.getHeader(name);
// If the request header can appear more than once, get all values
Enumeration valuesEnum = req.getHeaders(name);
for (; valuesEnum.hasMoreElements(); ) {
// Get a value of the request header
value = (String)valuesEnum.nextElement();
out.println(+value);
}
}
out.println(/body/html);
out.close();
}
public void doPost(HttpServletRequest req, HttpServletResponse rsp)
throws ServletException, IOException {
doGet(req,rsp);
}
public void doHead(HttpServletRequest req, HttpServletResponse rsp)
throws ServletException, IOException {
String requestType = req.getMethod();
rsp.setHeader(Arnar, sent head);
rsp.setHeader(Request-Type, requestType);
}
}
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection timeouts mod_jk 1.2.9
Sander de Boer wrote: The beta mod_jk 1.2.9(and older) produce a lot of errors like this: INFO: connection timeout reached Without configuration files, Apache version, OS, etc..., it's hard to tell, but I suspect that you have some problems with either your clients being slow for the connection timeout you set, or you have some network problems. Remember that default socketTimeout is 1 second, so if your client can not provide the data in that interval the exception will be thrown. This can also happen if server is very busy, so check your config, and adjust it to the 'real-life'. Regards, Mladen - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
How to trap errors while authenticating user : Custon Authentication mechanism ?
Hello, I'm trying to use a Novell LDAP server, and let it manage the Passwords instead of my webapp. Unfortunately I've found that the JNDIRealm doesn't tell me the reason of the failure when authenticating a user. In this case I cannot know where to redirect in the Novell portal ( Forgot Password or Password Expired functions - depending on the LDAP exception captured). since I'm new to authentication in Tomcat, can you tell me what is/are the best way to start implementing a Custom Realm that return to the application the trapped exception, in order to redirect to the correct Novell Function. Thanks in advance.. Cyril ZEKSER - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: HEAD method doesn't propagate from apache to tomcat over mod_jk
Arnar Gestsson wrote: If I send request using HEAD method to a servlet, the servlet allways shows the method as GET. POST method works as expected. This has been fixed already see: http://cvs.apache.org/viewcvs.cgi/jakarta-tomcat-connectors/jk/native/common/jk_ajp_common.c?r1=1.77r2=1.78diff_format=h So you'll need 1.2.9 for HEAD method to work. Regards, Mladen - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
invalid stream header
Hi, I've been getting the following exception on tomcat when I tried to send serialized data via HttpURLConnection to the servlet from applet. java.io.StreamCorruptedException: invalid stream header at java.io.ObjectInputStream.readStreamHeader(ObjectInputStream.java:737) at java.io.ObjectInputStream.init(ObjectInputStream.java:253) It happens like once in every 10 tries so it's really hard to trace the problem. Does anyone have any clue about it? Will set content-length header in each http request helps in any sense? Thanks, Simon - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
content_length/content_type
Hi, Does anyone know what is the default behavior on Content-Length header for tomcat? If I do not set it in the http request will tomcat still able to handle the binary data in the content correctly? I do set the Content-Type to application/octet-stream btw. Thanks, Simon - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RH 7.3 to ES 3 migration Tomcat 5.0.28
I am about to update from Red Hat 7.3 to Red Hat Enterprise Server 3. This a move from Linux 2.4 kernel to a 2.4/2.6 hybrid. The Native Posix Threading Library (NPTL) is the biggest change there seems to be, does this cause any problems with the 1.5 JVM? Is anyone running Tomcat 5.0.28 with 1.5 JVM on Red Hat ES 3, are there any configuration issues that I should be aware of? Thanks in advance. Andy - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: RH 7.3 to ES 3 migration Tomcat 5.0.28
I have configuration issues Im running Centos 3.3 I am trying to configure apache webserver with apache tomcat 5.5.7 I installed mod_jk.so in modules directory However my mod_jk is not listening? Any suggestions and hints will be appreciated vaneet -Original Message- From: Andrew Chapman [mailto:[EMAIL PROTECTED] Sent: Monday, March 21, 2005 4:23 PM To: tomcat-user@jakarta.apache.org Subject: RH 7.3 to ES 3 migration Tomcat 5.0.28 I am about to update from Red Hat 7.3 to Red Hat Enterprise Server 3. This a move from Linux 2.4 kernel to a 2.4/2.6 hybrid. The Native Posix Threading Library (NPTL) is the biggest change there seems to be, does this cause any problems with the 1.5 JVM? Is anyone running Tomcat 5.0.28 with 1.5 JVM on Red Hat ES 3, are there any configuration issues that I should be aware of? Thanks in advance. Andy - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Vaneet Sharma executive manager iDeasTank Limited an iwg business dolphins' court po 388 valletta, m-malta/europe mobile: +356 9943 8263 skype: CALLVANEET fax: +356 9952 phone: +356 9942 [EMAIL PROTECTED] call me on www.skype.com - my ID is CALLVANEET Want a signature like this? - www.plaxo.com\signature iwg is a global e-mobile company creating, building and growing new businesses. iwg founders are pioneers in creating multi-billion dollar mobile and Internet businesses in Europe, Asia and the US. www.iWG.info www.countryprofiler.com/iWG www.visitmalta.com www.mfc.com.mt Privileged/Confidential Information may be contained in this message. If you are not the addressee indicated in this message (or responsible for delivery of the message to such person), you may not copy or deliver this message to anyone. In such case, you should destroy this message and kindly notify the sender by reply email. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection timeouts mod_jk 1.2.9
Hi Mladen, System: Solaris 8 Apache: 2.0.53 Mod_jk: 1.2.9(or older) Tomcat: 5.0.30 (different machine) workers.properties: attached tomcat's server.xml Connector port=8082 minProcessors=150 maxProcessors=255 enableLookups=false acceptCount=10 debug=0 connectionTimeout=3 disableUploadTimeout=true protocol=AJP/1.3 / The docs says socket_timeout is default 0. I have tried to set it higher, but that do not make sense. Regards, Sander Mladen Turk wrote: Sander de Boer wrote: The beta mod_jk 1.2.9(and older) produce a lot of errors like this: INFO: connection timeout reached Without configuration files, Apache version, OS, etc..., it's hard to tell, but I suspect that you have some problems with either your clients being slow for the connection timeout you set, or you have some network problems. Remember that default socketTimeout is 1 second, so if your client can not provide the data in that interval the exception will be thrown. This can also happen if server is very busy, so check your config, and adjust it to the 'real-life'. Regards, Mladen - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] # # workers.properties # # In Unix, we use forward slashes: ps=/ # list the workers by name worker.list=loadbalancer, status #worker.status.type=status # # First tomcat server # worker.mmbase01.port=8082 worker.mmbase01.host=10.0.0.202 worker.mmbase01.type=ajp13 # Specify the size of the open connection cache. # worker.mmbase01.cachesize=3 # # Specifies the load balance factor when used with # a load balancing worker. # Note: # lbfactor must be 0 # Low lbfactor means less work done by the worker. worker.mmbase01.lbfactor=100 # # Second tomcat server # worker.mmbase02.port=8082 worker.mmbase02.host=10.0.0.222 worker.mmbase02.type=ajp13 # Specify the size of the open connection cache. #worker.mmbase02.cachesize=3 # # Specifies the load balance factor when used with # a load balancing worker. # Note: # lbfactor must be 0 # Low lbfactor means less work done by the worker. worker.mmbase02.lbfactor=0 # # Load Balancer worker # # # The loadbalancer (type lb) worker performs weighted round-robin # load balancing with sticky sessions. # Note: # If a worker dies, the load balancer will check its state #once in a while. Until then all work is redirected to peer #worker. worker.loadbalancer.type=lb worker.loadbalancer.balanced_workers=mmbase01, mmbase02 # # END workers.properties # - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Servlet / Jini lookup
Hello,
I think I have found something very interesting to solve my problem. I
tried to put the Jini jar-files (jini-core.jar, jini-ext.jar and
sun-util.jar) in $CATALINA_HOME/common/lib, or
$CATALINA_BASE/shared/lib, or anywhere if I set correctly the classpath
in setclasspath.sh (instead of placing these jars in WEB-INF/lib as I
did before). After that, the LookupDiscoveryManager() seems OK. I
suspect a classloader issue, but I'm not sure. Maybe somebody on this
list could explain this ?
But now, I'm stuck with some NoClassDefFoundError or
ClassCastException... I think it's the same classloader problem. In
fact, I don't know if it's good idea to place jars in the common
folders. But is there any other solution to make Jini and Tomcat working
together ? Is it possible to tell to Tomcat: now use the Webapp
classloader when dealing with these 3 Jini jars ??
Thanks, Olive
Olivier Dusacq wrote:
Hello,
I'm trying to contact a Jini lookup service (reggie) from a simple
servlet. I'm using Tomcat 5.5.7, Java 1.5.0_01, Jini 1.2.1 and Solaris8.
The problem is that, after the call to LookupDiscoveryManager() (see
source code below), the discovered() method is never called back.
Here is what I get in my browser after an exec :
before LookupDiscoveryManager
end
I have successfully run a similar code in a standalone Java app (i.e.
without Tomcat / servlet), and everything is OK.
In fact, I have no error message nor Exception thrown. :-( I simply
don't have any response from reggie.
Any help would be appreciate,
Olive
PS: I'm new to Tomcat and Jini.
=
== core servlet
=
protected void doGet(HttpServletRequest request,
HttpServletResponse response)
throws ServletException, IOException {
response.setContentType(text/plain);
PrintWriter out = response.getWriter();
new searchALookup(out).start();
try {
Thread.sleep(3);
} catch (InterruptedException ie) {
out.println(InterruptedException: + ie.getMessage());
}
out.println(end);
out.close();
}
==
== searchALookup.java
==
import java.io.*;
import net.jini.core.discovery.LookupLocator;
import net.jini.core.lookup.*;
import net.jini.discovery.*;
public class searchALookup extends Thread implements DiscoveryListener {
private LookupDiscoveryManager discover;
private PrintWriter sortie;
public chercheLookup(PrintWriter out) {
sortie = out;
}
public void run() {
try {
startServiceDiscovery();
} catch (IOException ioe) {
sortie.println(Error while connecting to service);
}
}
public synchronized void discovered(DiscoveryEvent dev) {
sortie.println(-- Discovered);
ServiceRegistrar[] lookup = dev.getRegistrars();
// We may have discovered one or more lookup services
sortie.println(lookup.length + lookups decouverts);
}
public synchronized void discarded(DiscoveryEvent dev) {
sortie.println(discarded);
}
private void startServiceDiscovery()
throws IOException {
String[] groups = null;
LookupLocator[] locators = null;
try{
LookupLocator locator =
new LookupLocator(jini://REGGIE_HOSTNAME);
locators = new LookupLocator[]{locator};
groups=DiscoveryGroupManagement.NO_GROUPS;
}catch(java.net.MalformedURLException e){
groups = new String[]{public};
sortie.println(Groups =+groups[0]);
}
// Initialize for receiving events from the lookup service
sortie.println(before LookupDiscoveryManager);
discover = new LookupDiscoveryManager(groups, locators, this);
}
}
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection timeouts mod_jk 1.2.9
Sander de Boer wrote: Connector port=8082 minProcessors=150 maxProcessors=255 enableLookups=false acceptCount=10 debug=0 connectionTimeout=3 disableUploadTimeout=true protocol=AJP/1.3 / The docs says socket_timeout is default 0. I have tried to set it higher, but that do not make sense. The problem is with Tomcat, not with the mod_jk. Try to add socketTimeout=3 (30 sec.) to the AJP connector. The INFO message is related to the Tomat's socket.read throwing timeout exception. Tell me if that helped. Regards, Mladen - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat 5.0.18 problems in WindowsXP
Hi, I'm having a problem with v.5.0.18 that I didn't have in v.4.x earlier: I'm creating a new dir under /webapps, with the webinf and webinf/classes etc. contents. But when I try to acess localhost:8080/newdir, I'm told that it doesen't exist, even though the other dirs (servlets-examples etc) are accessible. If there's a config file I need to edit when adding dirs under /webapps, I haven't found any info about it. Anyone able to enlighten me? Thanks in advance, Frank Hovin - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
servlet api question ?
What are the advantages or the reason for the popularity of servlet api vis-a-vis the web server specific api ? Say Netscape server or IIS server also have their own specific api's as well where one could write server side code. But the servlet api is so popular and wide spread and one could argue that java sdk is free but then companies buy the third party j2ee servers like websphere or weblogic. (why ?? what is the real reason or advantages of servlet api __ Do you Yahoo!? Make Yahoo! your home page http://www.yahoo.com/r/hs - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Servlet / Jini lookup
Hi
I have made one servlet for JINI/RIO for
http://compiere-mfgscm.sourceforge.net/
It works and it is license apache v2.
It is not already online because it is part of a lot of softs, I am
currently testings.
I will publish during may probably.
If you need I can send you elements.
Contact me on my mail.
Andre
Olivier Dusacq wrote:
Hello,
I think I have found something very interesting to solve my problem. I
tried to put the Jini jar-files (jini-core.jar, jini-ext.jar and
sun-util.jar) in $CATALINA_HOME/common/lib, or
$CATALINA_BASE/shared/lib, or anywhere if I set correctly the
classpath in setclasspath.sh (instead of placing these jars in
WEB-INF/lib as I did before). After that, the LookupDiscoveryManager()
seems OK. I suspect a classloader issue, but I'm not sure. Maybe
somebody on this list could explain this ?
But now, I'm stuck with some NoClassDefFoundError or
ClassCastException... I think it's the same classloader problem. In
fact, I don't know if it's good idea to place jars in the common
folders. But is there any other solution to make Jini and Tomcat
working together ? Is it possible to tell to Tomcat: now use the
Webapp classloader when dealing with these 3 Jini jars ??
Thanks, Olive
Olivier Dusacq wrote:
Hello,
I'm trying to contact a Jini lookup service (reggie) from a simple
servlet. I'm using Tomcat 5.5.7, Java 1.5.0_01, Jini 1.2.1 and Solaris8.
The problem is that, after the call to LookupDiscoveryManager() (see
source code below), the discovered() method is never called back.
Here is what I get in my browser after an exec :
before LookupDiscoveryManager
end
I have successfully run a similar code in a standalone Java app (i.e.
without Tomcat / servlet), and everything is OK.
In fact, I have no error message nor Exception thrown. :-( I simply
don't have any response from reggie.
Any help would be appreciate,
Olive
PS: I'm new to Tomcat and Jini.
=
== core servlet
=
protected void doGet(HttpServletRequest request,
HttpServletResponse response)
throws ServletException, IOException {
response.setContentType(text/plain);
PrintWriter out = response.getWriter();
new searchALookup(out).start();
try {
Thread.sleep(3);
} catch (InterruptedException ie) {
out.println(InterruptedException: + ie.getMessage());
}
out.println(end);
out.close();
}
==
== searchALookup.java
==
import java.io.*;
import net.jini.core.discovery.LookupLocator;
import net.jini.core.lookup.*;
import net.jini.discovery.*;
public class searchALookup extends Thread implements DiscoveryListener {
private LookupDiscoveryManager discover;
private PrintWriter sortie;
public chercheLookup(PrintWriter out) {
sortie = out;
}
public void run() {
try {
startServiceDiscovery();
} catch (IOException ioe) {
sortie.println(Error while connecting to service);
}
}
public synchronized void discovered(DiscoveryEvent dev) {
sortie.println(-- Discovered);
ServiceRegistrar[] lookup = dev.getRegistrars();
// We may have discovered one or more lookup services
sortie.println(lookup.length + lookups decouverts);
}
public synchronized void discarded(DiscoveryEvent dev) {
sortie.println(discarded);
}
private void startServiceDiscovery()
throws IOException {
String[] groups = null;
LookupLocator[] locators = null;
try{
LookupLocator locator =
new LookupLocator(jini://REGGIE_HOSTNAME);
locators = new LookupLocator[]{locator};
groups=DiscoveryGroupManagement.NO_GROUPS;
}catch(java.net.MalformedURLException e){
groups = new String[]{public};
sortie.println(Groups =+groups[0]);
}
// Initialize for receiving events from the lookup service
sortie.println(before LookupDiscoveryManager);
discover = new LookupDiscoveryManager(groups, locators, this);
}
}
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: servlet api question ?
From: brian [mailto:[EMAIL PROTECTED] Say Netscape server or IIS server also have their own specific api's as well where one could write server side code. But the servlet api is so popular and wide spread and one could argue that java sdk is free but then companies buy the third party j2ee servers like websphere or weblogic. (why ?? what is the real reason or advantages of servlet api It's portable and the standard is vendor-neutral. If you write to (say) Netscape's or IIS's proprietary interface, you've just tied yourself and your customers to a single source for software and support. However, portability doesn't mean that all servers run the same app equally well. Websphere and Weblogic may (or may not!) run this portable code faster or using fewer resources than the open-source servers. Most of the time this is impossible to tell without evaluating the options yourself, as for some reason most commercial licenses forbid publishing benchmarks of their software sigh. - Peter - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Documentation Change Recommendation for Logging
For the page:
http://jakarta.apache.org/tomcat/tomcat-5.5-doc/logging.html
For the sample log4j.properties file, I would recommend changing:
log4j.appender.R.File=${catalina.home}/logs/tomcat.log
To
log4j.appender.R.File=${catalina.base}/logs/tomcat.log
George Sexton
MH Software, Inc.
http://www.mhsoftware.com/
Voice: 303 438 9585
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: servlet api question ?
I have customers running my software on WebSphere WebLogic Orion/Oracle 9iAS Tomcat Resin Jrun With no specific modifications for any specific product. If you want to sell into an enterprise market, the ability to run on various enterprise servers is a winner. George Sexton MH Software, Inc. http://www.mhsoftware.com/ Voice: 303 438 9585 -Original Message- From: brian [mailto:[EMAIL PROTECTED] Sent: Monday, March 21, 2005 9:32 AM To: tomcat list Subject: servlet api question ? What are the advantages or the reason for the popularity of servlet api vis-a-vis the web server specific api ? Say Netscape server or IIS server also have their own specific api's as well where one could write server side code. But the servlet api is so popular and wide spread and one could argue that java sdk is free but then companies buy the third party j2ee servers like websphere or weblogic. (why ?? what is the real reason or advantages of servlet api __ Do you Yahoo!? Make Yahoo! your home page http://www.yahoo.com/r/hs - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: servlet api question ?
Some of the reasons I know as a programmer is Servlet API ( its an extension of j2SDK and part of of J2EE) 1) It take care of many hidden programming implementations like connection to database, connection to remote hosts... Can be done with one method calls, While if u use SERVER API , then you have to write code to take care of these small details 2) Servlet API is being used time and again and hence has track history. Computer Science itself is not that old. With time, the software library improves and becomes robust. Servlet library has reached that stage. If you write your own code, you just cannot make it perfect in one time. You need testing under different environments. However servlet as FREE , is used by developers all over the world and hence tested all over world. Improvement of SERVLET API Is done by reports and bugs from developers all over the world. Bottom line: Whole open source community helps in development of SERVLET API 3) SERVLET API is better than cgi model, you should read the architecture of SERVLET. 4) j2EE is excellent framework. However, parts of framework has succeeded in market. For e.g JMS, SERVLET API and etc. EJB has however failed to succeed. 5) You should look at http://www.springframework.org ( it is really cool) I think it is best j2EE framework. Now, coming to IIS and other application servers, Servlet runs on java containers, like tomcat, jrun Go to http://www.apache.org http://java.sun.com http://www.google.com ( servlet tutorial) Have fun reading. However, the potential of JAVA comes on linux ~( I think ) Run Java on linux ( configure apache webserver with Tomcat ) and u can see it runs COOL Take care Vaneet -Original Message- From: brian [mailto:[EMAIL PROTECTED] Sent: Monday, March 21, 2005 5:32 PM To: tomcat list Subject: servlet api question ? What are the advantages or the reason for the popularity of servlet api vis-a-vis the web server specific api ? Say Netscape server or IIS server also have their own specific api's as well where one could write server side code. But the servlet api is so popular and wide spread and one could argue that java sdk is free but then companies buy the third party j2ee servers like websphere or weblogic. (why ?? what is the real reason or advantages of servlet api __ Do you Yahoo!? Make Yahoo! your home page http://www.yahoo.com/r/hs - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Vaneet Sharma executive manager iDeasTank limited an iwg business dolphins' court po 388 valletta, m-malta/europe mobile: +356 9943 8263 skype: CALLVANEET fax: +356 9952 phone: +356 9942 [EMAIL PROTECTED] call me on www.skype.com - my ID is CALLVANEET Want a signature like this? - www.plaxo.com\signature iwg is a global e-mobile company creating, building and growing new businesses. iwg founders are pioneers in creating multi-billion dollar mobile and Internet businesses in Europe, Asia and the US. www.iWG.info www.countryprofiler.com/iWG www.visitmalta.com www.mfc.com.mt Privileged/Confidential Information may be contained in this message. If you are not the addressee indicated in this message (or responsible for delivery of the message to such person), you may not copy or deliver this message to anyone. In such case, you should destroy this message and kindly notify the sender by reply email. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection timeouts mod_jk 1.2.9
The problem is with Tomcat, not with the mod_jk. Try to add socketTimeout=3 (30 sec.) to the AJP connector. The INFO message is related to the Tomat's socket.read throwing timeout exception. Tell me if that helped. If have added the socketTimeout option: Connector port=8082 minProcessors=150 maxProcessors=255 enableLookups=false acceptCount=10 debug=0 connectionTimeout=3 disableUploadTimeout=true socketTimeout=3 protocol=AJP/1.3 / It make not sense. Can this solve the problem: http://www.mail-archive.com/tomcat-dev%40jakarta.apache.org/msg69563.html Regards, Sander - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection timeouts mod_jk 1.2.9
sander wrote: If have added the socketTimeout option: Connector port=8082 minProcessors=150 maxProcessors=255 enableLookups=false acceptCount=10 debug=0 connectionTimeout=3 disableUploadTimeout=true socketTimeout=3 protocol=AJP/1.3 / It make not sense. So, you still have 'connection timeout reached'? Can this solve the problem: http://www.mail-archive.com/tomcat-dev%40jakarta.apache.org/msg69563.html No, you said that the 1.2.9 behaved like that as well. So I suppose 1.2.8 and 1.2.6 do that as well? Also inside your workers.properties you have: # Specifies the load balance factor when used with # a load balancing worker. # Note: # lbfactor must be 0 # Low lbfactor means less work done by the worker. worker.mmbase02.lbfactor=0 So why did you put lbfactor=0 if it has to be 0? Anyhow (it will default to 1) the other worker has lbfactor=100, meaning that he will receive 100 times more requests then the other. Is it intentionally? Regards, Mladen. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Newbie help
Hi, Please, can someone help me get started with this. I've used v4.x before, and it was very simple to just create your own dir with the necessary web.xml etc. and the deploy simple servlets. Now, I've downloaded JWSDP and tomcat50-jwsdp, and nothing makes sense anymore. What I want to do is the following: - create a directory in the /webapps dir, and place my small servlets in that dir and run them. Can someone give me a quick how-to for that? The JWSDP talks about putting your war-files in the /webapps dir, but says nothing more about it. Do I have to develop heaps of other things just to be able to test-run a few simple servlets? Thanks, Frank Høvin - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
LDAP/JNDI Realm Tomcat 5.0 vs 5.5
I am doing some investigation into upgrading from our Tomcat 5.0.x
servers to Tomcat 5.5.x and I am
trying to get everything working. In the old tomcat 5.0.x I was able to
create a realm which authenticated
against our ADS server. However, I cannot get it to work in Tomcat
5.5.7.
The only thing I have changed besides the version of tomcat is the
location of the file containing the
realm information. Originally I had put it in as
$CATALINA_HOME/conf/Catalina/localhost/myapp.xml
but for Tomcat 5.5 I have put the realm information in
webapps/myapp/META-INF/context.xml.
My understanding is that the location/name of the context information
should not change how the
realm works, but I thought it worth mentioning.
Here is the realm definition I used for both Tomcat 5.0.27 and Tomcat
5.5.7
Context ...
Realm className=org.apache.catalina.realm.JNDIRealm
debug=1
connectionURL=ldap://test.testtrust.com:389;
alternateURL=ldap://192.168.0.10:389;
connectionName=CN=ADSAdmin,OU=Service
Accounts,DC=testtrust,DC=com
connectionPassword=secretpassword
contextFactory=com.sun.jndi.ldap.LdapCtxFactory
authentication=simple
referrals=follow
userBase=OU=People,DC=testtrust,DC=com
userRoleName=memberOf
userSubtree=true
userSearch=(samaccountname={0})
roleBase=OU=Groups,DC=testtrust,DC=com
roleName=cn
roleSearch=(member={0})
roleSubtree=true
/
.
.
.
/Context
The error I get when deploying the app is:
SEVERE: Error deploying web application archive myapp.war
java.lang.IllegalStateException: ContainerBase.addChild: start:
LifecycleException: Exception opening directory server connection:
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308:
LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 52e,
v893 ]
at
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.ja
va:763)
.
.
.
My understanding is that it is picking up my realm information, and
trying to use it,
but his error means it is not properly authenticating.
So my question is, why did this exact realm setup work under Tomcat
5.0.x and not 5.5.x?
Any help would be greatly appreciated!
Thanks in advance,
Dave
Re: connection timeouts mod_jk 1.2.9
So, you still have 'connection timeout reached'? yeah No, you said that the 1.2.9 behaved like that as well. So I suppose 1.2.8 and 1.2.6 do that as well? 1.2.8 and 1.2.9 in any case. I have 1.2.6 not tested yet. Also inside your workers.properties you have: # Specifies the load balance factor when used with # a load balancing worker. # Note: # lbfactor must be 0 # Low lbfactor means less work done by the worker. worker.mmbase02.lbfactor=0 So why did you put lbfactor=0 if it has to be 0? Anyhow (it will default to 1) the other worker has lbfactor=100, meaning that he will receive 100 times more requests then the other. Is it intentionally? yes, I will use the loadbalancer as fallback system. unfortunately it is not possible to set it to 0 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Unable to load classes from commons-lang-2.0.jar
I've never used common/endorsed. Have you tried common/lib? Speculation: common/endorsed, though listed on this page: http://jakarta.apache.org/tomcat/tomcat-5.0-doc/class-loader-howto.html might only be used in cases where you are attempting to 'override' JDK-supplied classes. On the previous linked page, see the section XML Parsers and JDK1.4. In short: the TC classloaders might not look in common/endorsed unless you are looking for a JDK class. Mike Curwen -Original Message- From: ofero [mailto:[EMAIL PROTECTED] Sent: Monday, March 21, 2005 1:57 AM To: tomcat-user@jakarta.apache.org Subject: Unable to load classes from commons-lang-2.0.jar Hi, I need to use classes from commons-lang-2.0.jar in Tomcat 5.0.29 on Red Hat Linux (More specifically the class StringUtils). The jar is included in the web app and put in the /common/endorsed but still I am unable to load the classes. Does anyone help me solve the problem ? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection timeouts mod_jk 1.2.9
oeps wrong url: http://www.mail-archive.com/tomcat-dev%40jakarta.apache.org/msg69476.html - Original Message - From: Mladen Turk [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Monday, March 21, 2005 6:33 PM Subject: Re: connection timeouts mod_jk 1.2.9 sander wrote: If have added the socketTimeout option: Connector port=8082 minProcessors=150 maxProcessors=255 enableLookups=false acceptCount=10 debug=0 connectionTimeout=3 disableUploadTimeout=true socketTimeout=3 protocol=AJP/1.3 / It make not sense. So, you still have 'connection timeout reached'? Can this solve the problem: http://www.mail-archive.com/tomcat-dev%40jakarta.apache.org/msg69563.html No, you said that the 1.2.9 behaved like that as well. So I suppose 1.2.8 and 1.2.6 do that as well? Also inside your workers.properties you have: # Specifies the load balance factor when used with # a load balancing worker. # Note: # lbfactor must be 0 # Low lbfactor means less work done by the worker. worker.mmbase02.lbfactor=0 So why did you put lbfactor=0 if it has to be 0? Anyhow (it will default to 1) the other worker has lbfactor=100, meaning that he will receive 100 times more requests then the other. Is it intentionally? Regards, Mladen. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Newbie help
[EMAIL PROTECTED] wrote: Now, I've downloaded JWSDP and tomcat50-jwsdp, and nothing makes sense anymore. What I want to do is the following: - create a directory in the /webapps dir, and place my small servlets in that dir and run them. I don't know anything about JWSDP, but have you read the setup and configuration pages for the version of Tomcat you're using? e.g., http://jakarta.apache.org/tomcat/tomcat-5.0-doc/index.html That's the how-to you're looking for, I suspect... -- Hassan Schroeder - [EMAIL PROTECTED] Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com dream. code. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
CERT Vulnerability Note VU#204710 on Tomcat 3.x
Hi, CERT released a vulnerability note on Tomcat 3.x last week. See the following url for details: http://www.kb.cert.org/vuls/id/204710 We are running two configurations of Apache and Tomcat: Apache v1.3.27 with Tomcat v4.1.29 Apache v1.3.27 with Tomcat v4.0.6 I'm trying to determine if these versions of Tomcat are vulnerable. Can anyone confirm or deny? If you like, respond to summers_ed () emc ! com Thanks, Ed - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to trap errors while authenticating user : Custon Authentication mechanism ?
That seems like overkill. Did you try turning up the debug level of
your Realm?
Realm className=org.apache.catalina.realm.JNDIRealm
debug=9
connectionURL=ldap://localhost:389;
userBase=ou=people,dc=mycompany,dc=com
userSearch=(mail={0})
userRoleName=memberOf
roleBase=ou=groups,dc=mycompany,dc=com
roleName=cn
roleSearch=(uniqueMember={0})
/
- Erik
[EMAIL PROTECTED] wrote:
Hello,
I'm trying to use a Novell LDAP server, and let it manage the Passwords
instead of my webapp. Unfortunately I've found that the JNDIRealm doesn't
tell me the reason of the failure when authenticating a user.
In this case I cannot know where to redirect in the Novell portal ( Forgot
Password or Password Expired functions - depending on the LDAP exception
captured). since I'm new to authentication in Tomcat, can you tell me what
is/are the best way to start implementing a Custom Realm that return to the
application the trapped exception, in order to redirect to the correct
Novell Function.
Thanks in advance..
Cyril ZEKSER
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: CERT Vulnerability Note VU#204710 on Tomcat 3.x
This vulnerability note has to be amongst the most vague and least informative I've ever seen. It says that Tomcat 3.x and AJP12 has an issue and that the issue is not present in Tomcat 5. What about Tomcat 4 and 4.1? What about AJP13? The report simply does not address any of these variations. On the other hand, any production installation should block communication on the AJP 12 or AJP13 port except where it is coming from Apache. This completely addresses the vulnerability irrespective of version. -- Jess Holle [EMAIL PROTECTED] wrote: Hi, CERT released a vulnerability note on Tomcat 3.x last week. See the following url for details: http://www.kb.cert.org/vuls/id/204710 We are running two configurations of Apache and Tomcat: Apache v1.3.27 with Tomcat v4.1.29 Apache v1.3.27 with Tomcat v4.0.6 I'm trying to determine if these versions of Tomcat are vulnerable. Can anyone confirm or deny? If you like, respond to summers_ed () emc ! com Thanks, Ed - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Newbie: Deploy Updates
Hello there, I am using Tomcat 5.0.28 and deploying websites each as a webapp: i.e. /www_enthusiastinc_com WEB-INF/web.xml images/ components/ index.jsp If I have an update to a few files within the webapp, I am trying to deploy those updates without having to manually migrate any binary files the customer may have uploaded to their site. I have read the deployer HOWTO and it seems like I should be able to drop in a WAR with the additional/updated files and they should get transferred to the existing webapp. What is actually happening is that the original webapp is getting deleted and then the WAR file is exploded, thus losing any binary files the customer may have uploaded since the first deployment. Here is my server.xml file: Server port=8005 shutdown=SHUTDOWN GlobalNamingResources !-- Used by Manager webapp -- Resource name=UserDatabase auth=Container type=org.apache.catalina.UserDatabase description=User database that can be updated and saved /Resource ResourceParams name=UserDatabase parameter namefactory/name valueorg.apache.catalina.users.MemoryUserDatabaseFactory/value /parameter parameter namepathname/name valueconf/tomcat-users.xml/value /parameter /ResourceParams /GlobalNamingResources Service name=Catalina Connector port=8080 / !-- This is here for compatibility only, not required -- Connector port=8009 protocol=AJP/1.3 / Engine name=Catalina defaultHost=localhost Logger className=org.apache.catalina.logger.FileLogger / Realm className=org.apache.catalina.realm.UserDatabaseRealm resourceName=UserDatabase / !-- localhost -- Host name=localhost debug=1 appBase=webapps unpackWARs=true autoDeploy=true Context path= docBase= debug=1/ !-- manager webapp -- Context path=/manager debug=0 privileged=true docBase=C:\Apache\Tomcat 5.0\server\webapps\manager/ Valve className=org.apache.catalina.valves.AccessLogValve directory=logs prefix=localhost_access_log. suffix=.txt pattern=common resolveHosts=false/ /Host !-- BEGIN ENTHUSIAST ENTRIES -- !-- www.enthusiastinc.com -- Host name=www.enthusiastinc.com debug=1 appBase=webapps unpackWARs=true autoDeploy=true Context path= docBase=www_enthusiastinc_com debug=10 / /Host !-- END ENTHUSIAST ENTRIES -- /Engine /Service /Server thanks for your help. jc -- | Jon Cline Chief Product Evangelist Enthusiast, Inc www.enthusiastinc.com [EMAIL PROTECTED] 626.256.3505 | *Need help? Email [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Cluster Element Multicast Problem
I have a rather strange problem. I have two RedHat machines running Tomcat in a clustered arrangement. I am using the built in Cluster element from tomcat 5.5.4. When idle, the machines seem to be working fine. In fact, even under a slight load the machines perform well. I can open up a terminal and use tcpdump to listen to the multicast ip and both machines are present with heartbeats. The FarmWarDeployer, although somewhat buggy, is also working. However, when subjected to a heavy load, one of the machines stops multicasting. Machine 1 is a dual Athlon MP with 2 gigs of RAM Machine 2 is a single P4 with 1 gig of RAM It is machine 1 that stops multicasting. I have tried a number of things. I tried renicing tomcat thinking that it was hogging all of the system resources. This did not work. I tried a different NIC thinking that may be the problem. This did not work either. In fact, both machines now use the same NIC and same module (e100). Does anyone have any ideas? -Ian - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
post processing operations after servlet response is sent
Hi, I've got some operations I'd like to do (transaction logging and some web service calls) after the servlet response is sent to the user. Rather than creating a new thread every time, is there a way to do this in my servlet so that it uses tomcat's processor thread, but is executed after the response is sent? Thanks, Garth - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: CERT Vulnerability Note VU#204710 on Tomcat 3.x
Jess Holle [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] This vulnerability note has to be amongst the most vague and least informative I've ever seen. It says that Tomcat 3.x and AJP12 has an issue and that the issue is not present in Tomcat 5. What about Tomcat 4 and 4.1? What about AJP13? The report simply does not address any of these variations. AJP12 is deprecated in Tomcat 3.3.x, and isn't supported at all in Tomcat = 4. At a guess, the AJP13 variant of it is http://issues.apache.org/bugzilla/show_bug.cgi?id=31204. On the other hand, any production installation should block communication on the AJP 12 or AJP13 port except where it is coming from Apache. This completely addresses the vulnerability irrespective of version. -- Jess Holle [EMAIL PROTECTED] wrote: Hi, CERT released a vulnerability note on Tomcat 3.x last week. See the following url for details: http://www.kb.cert.org/vuls/id/204710 We are running two configurations of Apache and Tomcat: Apache v1.3.27 with Tomcat v4.1.29 Apache v1.3.27 with Tomcat v4.0.6 I'm trying to determine if these versions of Tomcat are vulnerable. Can anyone confirm or deny? If you like, respond to summers_ed () emc ! com Thanks, Ed - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: post processing operations after servlet response is sent
On Mon, Mar 21, 2005 at 05:43:40PM -0800, Garth Patil wrote: : I've got some operations I'd like to do (transaction logging and some : web service calls) after the servlet response is sent to the user. : Rather than creating a new thread every time, is there a way to do : this in my servlet so that it uses tomcat's processor thread, but is : executed after the response is sent? Why not offset the extra processing (the logging and ws calls) to another system? You could package up the needed info and either put it in: 1/ a database to be processed by a scheduled job (in-container or external) 2/ a JMS message, to be handled by a dedicated listener (again, in-container or otherwise) These solutions have the added benefits of not being tied to your servlet code. (Think modularity and ease of testing, among other things.) -QM -- software -- http://www.brandxdev.net/ tech news -- http://www.RoarNetworX.com/ code scan -- http://www.JxRef.org/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: post processing operations after servlet response is sent
Why don't you create a filter? They are designed to interact with the request/response loop either before the servlet is kicked off or after the servlet gets called. HTH -- Dov Rosenberg Conviveon Corporation http://www.conviveon.com On 3/21/05 10:13 PM, QM [EMAIL PROTECTED] wrote: On Mon, Mar 21, 2005 at 05:43:40PM -0800, Garth Patil wrote: : I've got some operations I'd like to do (transaction logging and some : web service calls) after the servlet response is sent to the user. : Rather than creating a new thread every time, is there a way to do : this in my servlet so that it uses tomcat's processor thread, but is : executed after the response is sent? Why not offset the extra processing (the logging and ws calls) to another system? You could package up the needed info and either put it in: 1/ a database to be processed by a scheduled job (in-container or external) 2/ a JMS message, to be handled by a dedicated listener (again, in-container or otherwise) These solutions have the added benefits of not being tied to your servlet code. (Think modularity and ease of testing, among other things.) -QM - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
DIGEST authentication; Does it work??
I'm trying to use DIGEST authentication with Tomcat, and it doesn't seem to work. I found some articles with Google about IE implementing DIGEST authentication in a way that only worked with MS servers, and I assume that hasn't been corrected. But I'm also using Firefox with the same results as IE. I saw an article about a workaround in Apache server to make DIGEST authentication work with IE, but I didn't see anything about Tomcat. Anyone know of any way to get DIGEST authentication in Tomcat to work with ANY browser? I should mention that I'm also using digested passwords in a JDBC Realm (implemented with mySQL), and I followed the how-to instructions for creating digested passwords to work with DIGEST authentication. And authentication with JDBCRealm works fine when I use BASIC authentication. For the record, I put the following in the Host element in Server.xml Context path=/MyApp docBase=MyApp Valve className=org.apache.catalina.authenticator.DigestAuthenticator disableProxyCaching=false / /Context I put the following in Server.xml's Engine element Realm className=org.apache.catalina.realm.JDBCRealm debug=99 driverName=com.mysql.jdbc.Driver connectionURL=jdbc:mysql:///Tomcat_Realm userTable=users userNameCol=user_name userCredCol=user_pass userRoleTable=user_roles roleNameCol=role_name digest=SHA/ And I put the following in my app's web.xml security-constraint.../ (elided) login-config auth-methodDIGEST/auth-method realm-nameJDBCRealm/realm-name /login-config security-role.../ (elided) And when I created the digested password to store in my JDBCRealm database, I digested: (username) : JDBCRealm : (password). As you can see, I specified SHA as the digest algorithm in Server.xml's realm element, and I used SHA to create the digested password that I stored in the database. I assume that the server will prompt the browser to use SHA also when it sends the challenge header requesting DIGEST authentication? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
pbm reg:Client-cert authentication
Hi , I installed a trial-client-cert , but iam facing an error while accessing my secured .jsp ,.Appreciate if any one can help us in resolving this issue. Here are the steps which I followed after installing the trial client-cert: Webserver: Tomcat 1) included an option called -auth in my httpd.config file 2) accessed the secure webserver's home page( https:/// https:// :porthttps://host-name:port) and got the value of the variable HTTPS_CLIENT_SUBJECT and provided the same under username in tomcat-users.xml file 2) included auth-name, realm-namein web.xml file 3) accessed the jsp under secure directory 4) the below error has been reported: === HTTP Status 400 - No client certificate chain in this request Type : Status report Message : No Client certificate chain in this request Description : The request sent by the client was syntactically in correct(No client certificate chain in this request) NonStop Servlets For JavaServer Pages == Please help me by giving any information which i might have missed out. Thanks in advance, Shyama Confidentiality Notice The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain confidential or privileged information. If you are not the intended recipient, please notify the sender at Wipro or [EMAIL PROTECTED] immediately and destroy all copies of this message and any attachments.
Tomcat Build-- Can I delete the \usr files?
I just completed a build of Tomcat 5.5.7 on Windows XP, after using the binary distribution for quite a while. Can I delete the 166 MB of stuff in the \usr directory? I didn't have any of this stuff with the binary distribution, so I guess it was all temporary files used to do the build? -Mark - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: CERT Vulnerability Note VU#204710 on Tomcat 3.x
Bill Barker wrote: Jess Holle [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] This vulnerability note has to be amongst the most vague and least informative I've ever seen. It says that Tomcat 3.x and AJP12 has an issue and that the issue is not present in Tomcat 5. What about Tomcat 4 and 4.1? What about AJP13? The report simply does not address any of these variations. AJP12 is deprecated in Tomcat 3.3.x, and isn't supported at all in Tomcat = 4. I know, which is why I was rather critical of the vulnerability note. It raises general fears and questions but only sheds very little light on the situation for anyone not using Tomcat 5. At a guess, the AJP13 variant of it is http://issues.apache.org/bugzilla/show_bug.cgi?id=31204. That sounds logical. Of course, a firewall seems like a better solution to the whole class of issues here. On the other hand, any production installation should block communication on the AJP 12 or AJP13 port except where it is coming from Apache. This completely addresses the vulnerability irrespective of version. -- Jess Holle
Admin Application
I'm hitting the error below with tomcat 5.5.8 This happens when I click on any object contained in a service (Host, connector, etc). Clicking on a resource and the user database works. The server.xml is at: http://www.mhsoftware.com/~gsexton/server.xml And the admin.xml is: http://www.mhsoftware.com/~gsexton/admin.xml ERROR http-8080-Processor4 org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/admin] - action: Error retrieving attribute debug javax.management.AttributeNotFoundException: Cannot find attribute debug at org.apache.commons.modeler.BaseModelMBean.getAttribute(BaseModelMBean.java:3 06) at mx4j.server.interceptor.InvokerMBeanServerInterceptor.getAttribute(InvokerMB eanServerInterceptor.java:244) at mx4j.server.interceptor.DefaultMBeanServerInterceptor.getAttribute(DefaultMB eanServerInterceptor.java:135) at mx4j.server.interceptor.SecurityMBeanServerInterceptor.getAttribute(Security MBeanServerInterceptor.java:106) at mx4j.server.interceptor.DefaultMBeanServerInterceptor.getAttribute(DefaultMB eanServerInterceptor.java:135) at mx4j.server.interceptor.DefaultMBeanServerInterceptor.getAttribute(DefaultMB eanServerInterceptor.java:135) at mx4j.server.interceptor.ContextClassLoaderMBeanServerInterceptor.getAttribut e(ContextClassLoaderMBeanServerInterceptor.java:269) at mx4j.server.MX4JMBeanServer.getAttribute(MX4JMBeanServer.java:1002) at org.apache.webapp.admin.service.EditServiceAction.perform(EditServiceAction. java:173) at org.apache.struts.action.Action.execute(Action.java:420) at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProces sor.java:484) at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:274) at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1482) at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:507) at javax.servlet.http.HttpServlet.service(HttpServlet.java:689) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Application FilterChain.java:252) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterCh ain.java:173) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.ja va:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.ja va:178) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase .java:482) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126 ) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105 ) at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:526) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java :107) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:825) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConne ction(Http11Protocol.java:743) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.jav a:527) at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWo rkerThread.java:80) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.jav a:684) at java.lang.Thread.run(Thread.java:534) George Sexton MH Software, Inc. http://www.mhsoftware.com/ Voice: 303 438 9585 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
