Re: Tomcat Version problem
Thank you for your suggestion, i am new to this group, next time i'll this in mind GS On 06/07/07, hanasaki [EMAIL PROTECTED] wrote: What do you mean v r? Please do not post shortcut English ;) When you get things working... Please post the solution to the problem so we can all learn. Girish Havaldar wrote: Thnks for the resplone, now v r doing that only GS. On 06/07/07, hanasaki [EMAIL PROTECTED] wrote: Did you per-complile the JPS's? - don't - in this case Ensure the jsp version you coded against is the same as that supported by the hosting company. Jon Wingfield wrote: You are using jdk1.5 features (autoboxing, for example ) in your JSP pages. Early versions of the 5.5 tree bundled a jsp compiler (JDT) which didn't support these new language features. Later versions bundled an updated version of the compiler... For deploying on 5.5.9 just get rid of your autoboxing: int thing = 4; request.setAttribute(stuff, new Integer(thing)); instead of request.setAttribute(stuff, thing); Regards, Jon Girish Havaldar wrote: On 05/07/07, Girish Havaldar [EMAIL PROTECTED] wrote: Hi, we have an application developed using the following components as listed below mysql 5.0.27 jdk 1.5.0_06 jre 1.5.0_06 tomcat5.5.20 Apache 2 phpMyAdmin 2.9.2 Servlets 2.3 JSP1.2 Our application is showing errors when deployed on tomcat 5.5.9(the Hosting company is using Tomcat 5.5.9.) ERROR: type Exception report message description The server encountered an internal error () that prevented it from fulfilling this request. exception org.apache.jasper.JasperException: Unable to compile class for JSP An error occurred at line: 67 in the jsp file: /classification.jsp Generated servlet error: Type mismatch: cannot convert from Integer to int An error occurred at line: 67 in the jsp file: /classification.jsp Generated servlet error: The method add(int, Object) in the type ArrayList is not applicable for the arguments (int) An error occurred at line: 226 in the jsp file: /classification.jsp Generated servlet error: The method setAttribute(String, Object) in the type ServletRequest is not applicable for the arguments (String, int) An error occurred at line: 263 in the jsp file: /classification.jsp Generated servlet error: The method setAttribute(String, Object) in the type ServletRequest is not applicable for the arguments (String, int) org.apache.jasper.compiler.DefaultErrorHandler.javacError( DefaultErrorHandler.java:84) org.apache.jasper.compiler.ErrorDispatcher.javacError( ErrorDispatcher.java:328) org.apache.jasper.compiler.JDTCompiler.generateClass(JDTCompiler.java :397) org.apache.jasper.compiler.Compiler.compile(Compiler.java:288) org.apache.jasper.compiler.Compiler.compile(Compiler.java:267) org.apache.jasper.compiler.Compiler.compile(Compiler.java:255) org.apache.jasper.JspCompilationContext.compile( JspCompilationContext.java:556) org.apache.jasper.servlet.JspServletWrapper.service( JspServletWrapper.java:293) org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:291) org.apache.jasper.servlet.JspServlet.service(JspServlet.java:241) javax.servlet.http.HttpServlet.service(HttpServlet.java:853) note The full stack trace of the root cause is available in the Apache Tomcat/5.5.9 logs. so what is the solution. Also plz send me info abt hosting comapny who can support the above specification. Thank you, Girish S.Havaldar. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
How to remove port number from https adress and redirect http to https
Hi! I have set up a tomcat server with ssl that works fine as long as I go to the adress https://adress:8443 I want to get rid of the port number, is there any easy way to do this so that tomcat understands the https request that comes in? Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true maxThreads=150 scheme=https secure=true clientAuth=false keystorePass=changeit sslProtocol=TLS keystoreFile=/root/.keystore truststoreFile=/usr/lib/jvm/java-1.5.0-sun/jre/lib/security/cacerts / This is my ssl connector in my server.xml. I tried getting a redirct from http to https going but couldn't do that in tomcat alone, any tips on that aswell? I have done this: Connector port=8080 protocol=HTTP/1.1 redirectPort=8443 / With no luck... Thanks for any help!! -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11459871 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to remove port number from https adress and redirect http to https
Hi Christian, you have to replace all 8080 with 80 and all 8443 with 443. 80 is standard port for http and 443 is standard port for https. So if the URL is https://adress, the client requests the service via port 443. Tomcat uses different ports to avoid port conflicts with other application servers running on the same machine at the same time. René On Fri, 6 Jul 2007 00:26:24 -0700 (PDT) christianhau [EMAIL PROTECTED] wrote: Hi! I have set up a tomcat server with ssl that works fine as long as I go to the adress https://adress:8443 I want to get rid of the port number, is there any easy way to do this so that tomcat understands the https request that comes in? Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true maxThreads=150 scheme=https secure=true clientAuth=false keystorePass=changeit sslProtocol=TLS keystoreFile=/root/.keystore truststoreFile=/usr/lib/jvm/java-1.5.0-sun/jre/lib/security/cacerts / This is my ssl connector in my server.xml. I tried getting a redirct from http to https going but couldn't do that in tomcat alone, any tips on that aswell? I have done this: Connector port=8080 protocol=HTTP/1.1 redirectPort=8443 / With no luck... Thanks for any help!! -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11459871 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to remove port number from https adress and redirect http to https
Thanks!! That got rid of one of my problems.. Any clue on how to do a redirect from http to https? Changed the portnumber from 8080 to 80 and the redirect to 443 but nothing happens.. Rene Guenther-2 wrote: Hi Christian, you have to replace all 8080 with 80 and all 8443 with 443. 80 is standard port for http and 443 is standard port for https. So if the URL is https://adress, the client requests the service via port 443. Tomcat uses different ports to avoid port conflicts with other application servers running on the same machine at the same time. René On Fri, 6 Jul 2007 00:26:24 -0700 (PDT) christianhau [EMAIL PROTECTED] wrote: Hi! I have set up a tomcat server with ssl that works fine as long as I go to the adress https://adress:8443 I want to get rid of the port number, is there any easy way to do this so that tomcat understands the https request that comes in? Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true maxThreads=150 scheme=https secure=true clientAuth=false keystorePass=changeit sslProtocol=TLS keystoreFile=/root/.keystore truststoreFile=/usr/lib/jvm/java-1.5.0-sun/jre/lib/security/cacerts / This is my ssl connector in my server.xml. I tried getting a redirct from http to https going but couldn't do that in tomcat alone, any tips on that aswell? I have done this: Connector port=8080 protocol=HTTP/1.1 redirectPort=8443 / With no luck... Thanks for any help!! -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11459871 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11460012 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 6 + Apache 2.0 with SSL
Hi Filik: Just to end this because, probably, I am making a mistake or I didn't make myself clear in my previous post. Do you mean that in the apache configuration in the virtual host definition one must not point the DocumentRoot directive to the folder where your contents are?. Something like: DocumentRoot $CATALINA_HOME/webapps/$YOUR_APPLICATION I meant documents or applications not tomcat config files or whatever alike? or at least is what the previous line looks like. Please if this is wrong kindly consider to tell me how it must be done? I don't see where is the security issue cause like this, IMHO, any other file from tomcat is out of sight for sniffers. And Roger, original poster, just an example of how to integrate apache and tomcat with mod proxy for an application based in tomcat. Which will clarify any doubt you had for setting up a configuration with apache as proxy. I think I should have posted the example instead of try to explain myself, my english is not goot after all. http://195.14.236.181/opencms/opencms/alkacon-documentation/howto_apache_httpd/mod_proxy.html Hope you can explain me and thanking you in advance, arian Filip Hanik - Dev Lists wrote: Arian Abrahantes wrote: Hi Filik: I understood what he wanted to do. My post is about how needed is this for him?. If it is a company requirement ok. But if there is no requirement why to slow the server down?. IMHO, in a properly set apache proxy configuration nobody except apache will interact with the aplication (you name it) that lies bellow him. So even if companies or users wishes this double encryption I seriously doubt they will be getting more security. Anyway, as far as I know both servers can share the same keys for authentication (I am pretty sure there is a quite close in date -previous month- thread posted in this list or in Opencms' one) and just looking into his config it should work so just try it out. He is just missing the addition of the DocumentRoot where his contents under tomcat lies. uh, absolutely not, never point your DocumentRoot to the Tomcat file structure unless you know exactly how to secure it. Filip hth, arian Filip Hanik - Dev Lists wrote: I think what he wants is browser - http - Apache - http - tomcat browser - https- Apache - https- tomcat a lot of companies have these requirements Filip Arian Abrahantes wrote: Hi: I think this has alraedy being discussed somewhere here. Why do you need double enchriptation? It is enough with the apache one. Use something like: broweser - https - Apache - http - tomcat pro: 1- Single enchiptation fast server response. cons (at least fo security): 1- none I may be wrong plesa verify in the mailing list archive Filip Hanik - Dev Lists wrote: question, does it work? or does it always send requests to 8080, for both http and https? for your SSL, you can/need to add in your httpd client certificate, ie, the certificate to use when contacting Tomcat for SSL VirtualHost *:443 SSLProxyEngine On ProxyPass / https://localhost:8443/ ProxyPassReverse / https://localhost:8443/ # # Put your Proxy SSL Certificate directives here # /VirtualHost Filip Roger wrote: Hi there! I have some questions about how to setup Apache and Tomcat with SSL support. Currently I have the following setup: - Windows 2003 - Tomcat 6.0.13 - Apache 2.0.59 with - openssl 0.9.7j - mod_ssl - mod_proxy - mod_rewrite (not used) I have generated keys that work with Apache. So I can open a page like https://localhost/. I've tried to use mod_proxy to redirect all traffic to Tomcat, which works for http and https, using the following setup: IfModule mod_ssl.c Include conf/ssl.conf /IfModule ProxyPass / http://localhost:8080/ ProxyPassReverse / http://localhost:8080/ VirtualHost *:443 SSLProxyEngine On ProxyPass https://localhost:443/ https://localhost:8443/ ProxyPassReverse https://localhost:443/ https://localhost:8443/ /VirtualHost I have the following questions: 1) Is this a normal setup? Anything that could cause a problem? 2) I want to be able to route traffic for one webapp to https, not allowing it to be used via http. I don't care if this is done using mod_rewrite or mod_proxy or anything else. All suggestions are appreciated! Thanks, Roger - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Axis2 user name and pwd
Hi I am new to web services. I have installed tomcat6.0.13 and Axis2 war file on Fedora Core 5. When i run the validation it works fine for both tomcat and axis2, but when i click on the Administration link for axis2, it asks me for a user name and password. Is there a default username and password which I am unaware of. Thanks Fatima - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
iPlanet / SunONE web server tomcat connector connection re-use disabled
Hi, BACKGROUND: I have been using the tomcat connector for Netscape / SunONE web server from the tomcat-connectors-1.2.23-src bundle available from the main tomcat site. I have found that connections are not being re-used by the connector. i.e. the connector opens a separate connection to tomcat for each and every request it's configured to pass to tomcat and then closes that connection after receiving it's response. When I enable debug logging for the connector I see messages telling me that connection re-use is disabled. I found reference to an option for apache to disable re-use but nothing for Netscape. Looking at the source code I find that all but the Netscape connector appear to have a s-disable_reuse = JK_FALSE; statement in the init_ws_service function in the connector source code file (jk_nsapi_plugin.c for Netscape). As a test I have added this to the Netscape connector and re-compiled and it now re-uses connections which is an obvious performance gain (I'm assuming here as I haven't benchmarked anything). The implication is that someone either explicitly set re-use to be disabled for Netscape, presumably due to problems not immediately obvious if re-use is enabled,, or someone changed the common code to make re-use optional but forgot to enable it by default in the Netscape connector. I only suggest the latter as there is no immediately obvious indication that it is intentionally disable in Netscape and the plug-in seems to work with it enabled after some very brief testing. QUESTION: Can anyone confirm or deny whether the Netscape connector should not have connection re-use enabled as the other connectors do. Some overview of any reason would also be much appreciated. Many Thanks in advance. Dale Roberts ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify [EMAIL PROTECTED] This footnote also confirms that this email message has been checked for all known viruses. Sony Computer Entertainment Europe Limited Registered Office: 10 Great Marlborough Street, London W1F 7LP, United Kingdom Registered in England: 3277793 **
RE: Axis2 user name and pwd
http://ws.apache.org/axis2/0_93/webadminguide.html From axis2 index page you can go to administration page by following Axis2 Administration link, then logging page will appear asking for a user name and a password , the default username is 'admin' (without quotes) and default password is 'axis2' (without quotes). You can change those two values by changing following two parameters in server.xml as required. -Original Message- From: Fatima [mailto:[EMAIL PROTECTED] Sent: 06 July 2007 09:56 To: Tomcat Users List Subject: Axis2 user name and pwd Hi I am new to web services. I have installed tomcat6.0.13 and Axis2 war file on Fedora Core 5. When i run the validation it works fine for both tomcat and axis2, but when i click on the Administration link for axis2, it asks me for a user name and password. Is there a default username and password which I am unaware of. Thanks Fatima - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 6 + Apache 2.0 with SSL
But all the contents of $CATALINA_HOME/webapps/$YOUR_APPLICATION/WEB-INF does become exposed and that should not be. If you are going to do that, you should consider making sure you configure apache httpd to not server up anything contained there. --David Arian Abrahantes wrote: Hi Filik: Just to end this because, probably, I am making a mistake or I didn't make myself clear in my previous post. Do you mean that in the apache configuration in the virtual host definition one must not point the DocumentRoot directive to the folder where your contents are?. Something like: DocumentRoot $CATALINA_HOME/webapps/$YOUR_APPLICATION I meant documents or applications not tomcat config files or whatever alike? or at least is what the previous line looks like. Please if this is wrong kindly consider to tell me how it must be done? I don't see where is the security issue cause like this, IMHO, any other file from tomcat is out of sight for sniffers. And Roger, original poster, just an example of how to integrate apache and tomcat with mod proxy for an application based in tomcat. Which will clarify any doubt you had for setting up a configuration with apache as proxy. I think I should have posted the example instead of try to explain myself, my english is not goot after all. http://195.14.236.181/opencms/opencms/alkacon-documentation/howto_apache_httpd/mod_proxy.html Hope you can explain me and thanking you in advance, arian Filip Hanik - Dev Lists wrote: Arian Abrahantes wrote: Hi Filik: I understood what he wanted to do. My post is about how needed is this for him?. If it is a company requirement ok. But if there is no requirement why to slow the server down?. IMHO, in a properly set apache proxy configuration nobody except apache will interact with the aplication (you name it) that lies bellow him. So even if companies or users wishes this double encryption I seriously doubt they will be getting more security. Anyway, as far as I know both servers can share the same keys for authentication (I am pretty sure there is a quite close in date -previous month- thread posted in this list or in Opencms' one) and just looking into his config it should work so just try it out. He is just missing the addition of the DocumentRoot where his contents under tomcat lies. uh, absolutely not, never point your DocumentRoot to the Tomcat file structure unless you know exactly how to secure it. Filip hth, arian Filip Hanik - Dev Lists wrote: I think what he wants is browser - http - Apache - http - tomcat browser - https- Apache - https- tomcat a lot of companies have these requirements Filip Arian Abrahantes wrote: Hi: I think this has alraedy being discussed somewhere here. Why do you need double enchriptation? It is enough with the apache one. Use something like: broweser - https - Apache - http - tomcat pro: 1- Single enchiptation fast server response. cons (at least fo security): 1- none I may be wrong plesa verify in the mailing list archive Filip Hanik - Dev Lists wrote: question, does it work? or does it always send requests to 8080, for both http and https? for your SSL, you can/need to add in your httpd client certificate, ie, the certificate to use when contacting Tomcat for SSL VirtualHost *:443 SSLProxyEngine On ProxyPass / https://localhost:8443/ ProxyPassReverse / https://localhost:8443/ # # Put your Proxy SSL Certificate directives here # /VirtualHost Filip Roger wrote: Hi there! I have some questions about how to setup Apache and Tomcat with SSL support. Currently I have the following setup: - Windows 2003 - Tomcat 6.0.13 - Apache 2.0.59 with - openssl 0.9.7j - mod_ssl - mod_proxy - mod_rewrite (not used) I have generated keys that work with Apache. So I can open a page like https://localhost/. I've tried to use mod_proxy to redirect all traffic to Tomcat, which works for http and https, using the following setup: IfModule mod_ssl.c Include conf/ssl.conf /IfModule ProxyPass / http://localhost:8080/ ProxyPassReverse / http://localhost:8080/ VirtualHost *:443 SSLProxyEngine On ProxyPass https://localhost:443/ https://localhost:8443/ ProxyPassReverse https://localhost:443/ https://localhost:8443/ /VirtualHost I have the following questions: 1) Is this a normal setup? Anything that could cause a problem? 2) I want to be able to route traffic for one webapp to https, not allowing it to be used via http. I don't care if this is done using mod_rewrite or mod_proxy or anything else. All suggestions are appreciated! Thanks, Roger - - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to remove port number from https adress and redirect http to https
Hi This is my first contribution to this list and I expect others will have better ways of doing it but ... The way I managed to get his working is to set the ssl connector port to the default ssl port (443) and my non-ssl connector port to the default http port (80) Obviously there are issues starting Tomcat on these ports on *NIX systems but judging by the following entry in your ssl connector (keystoreFile=/root/.keystore) you appear to have access to root. That should do it Also in my etc/hosts file I have set 127.0.0.1 www.mywebapp.co.uk and my app is the root web app so now, combined with the following in web.xml security-constraint ... user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint ... /security-constraint and a suitable servlet filter I can switch between http and https almost at will with no messing about with ports just by asking for http://www.mywebapp.co.uk Hope this helps Cheers Duncan On 7/6/07, christianhau [EMAIL PROTECTED] wrote: Hi! I have set up a tomcat server with ssl that works fine as long as I go to the adress https://adress:8443 I want to get rid of the port number, is there any easy way to do this so that tomcat understands the https request that comes in? Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true maxThreads=150 scheme=https secure=true clientAuth=false keystorePass=changeit sslProtocol=TLS keystoreFile=/root/.keystore truststoreFile=/usr/lib/jvm/java-1.5.0-sun/jre/lib/security/cacerts / This is my ssl connector in my server.xml. I tried getting a redirct from http to https going but couldn't do that in tomcat alone, any tips on that aswell? I have done this: Connector port=8080 protocol=HTTP/1.1 redirectPort=8443 / With no luck... Thanks for any help!! -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11459871 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to remove port number from https adress and redirect http to https
Thanks man! I have tried a similar approach with the web.xml but no luck. This is what I wrote in web.xml security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/cas/WEB-INF/view/jsp/simple/ui/url-pattern /web-resource-collection user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint Now I am not 100% sure if the pattern is correct, how would I check that? And another thing, you mentioned a suitable servlet filter? How would you go about making a servlet filter for this purpose and where would you put it? As you can tell from my question I have little experience with servlet filters.. Thanks again :) Lyallex wrote: Hi This is my first contribution to this list and I expect others will have better ways of doing it but ... The way I managed to get his working is to set the ssl connector port to the default ssl port (443) and my non-ssl connector port to the default http port (80) Obviously there are issues starting Tomcat on these ports on *NIX systems but judging by the following entry in your ssl connector (keystoreFile=/root/.keystore) you appear to have access to root. That should do it Also in my etc/hosts file I have set 127.0.0.1 www.mywebapp.co.uk and my app is the root web app so now, combined with the following in web.xml security-constraint ... user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint ... /security-constraint and a suitable servlet filter I can switch between http and https almost at will with no messing about with ports just by asking for http://www.mywebapp.co.uk Hope this helps Cheers Duncan On 7/6/07, christianhau [EMAIL PROTECTED] wrote: Hi! I have set up a tomcat server with ssl that works fine as long as I go to the adress https://adress:8443 I want to get rid of the port number, is there any easy way to do this so that tomcat understands the https request that comes in? Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true maxThreads=150 scheme=https secure=true clientAuth=false keystorePass=changeit sslProtocol=TLS keystoreFile=/root/.keystore truststoreFile=/usr/lib/jvm/java-1.5.0-sun/jre/lib/security/cacerts / This is my ssl connector in my server.xml. I tried getting a redirct from http to https going but couldn't do that in tomcat alone, any tips on that aswell? I have done this: Connector port=8080 protocol=HTTP/1.1 redirectPort=8443 / With no luck... Thanks for any help!! -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11459871 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11462081 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to remove port number from https adress and redirect http to https
Not sure wether this could help: security-constraint web-resource-collection web-resource-nameall-except-attachments/web-resource-name url-pattern*.js/url-pattern url-pattern*.jsp/url-pattern url-pattern*.jspa/url-pattern url-pattern*.css/url-pattern url-pattern/browse/*/url-pattern /web-resource-collection user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint I needed those to configure JIRA to do everything via SSL - http://confluence.atlassian.com/display/JIRA/Running+JIRA+over+SSL+or+HTTPS So maybe you miss the *? René On Fri, 6 Jul 2007 03:40:50 -0700 (PDT) christianhau [EMAIL PROTECTED] wrote: Thanks man! I have tried a similar approach with the web.xml but no luck. This is what I wrote in web.xml security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/cas/WEB-INF/view/jsp/simple/ui/url-pattern /web-resource-collection user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint Now I am not 100% sure if the pattern is correct, how would I check that? And another thing, you mentioned a suitable servlet filter? How would you go about making a servlet filter for this purpose and where would you put it? As you can tell from my question I have little experience with servlet filters.. Thanks again :) Lyallex wrote: Hi This is my first contribution to this list and I expect others will have better ways of doing it but ... The way I managed to get his working is to set the ssl connector port to the default ssl port (443) and my non-ssl connector port to the default http port (80) Obviously there are issues starting Tomcat on these ports on *NIX systems but judging by the following entry in your ssl connector (keystoreFile=/root/.keystore) you appear to have access to root. That should do it Also in my etc/hosts file I have set 127.0.0.1 www.mywebapp.co.uk and my app is the root web app so now, combined with the following in web.xml security-constraint ... user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint ... /security-constraint and a suitable servlet filter I can switch between http and https almost at will with no messing about with ports just by asking for http://www.mywebapp.co.uk Hope this helps Cheers Duncan On 7/6/07, christianhau [EMAIL PROTECTED] wrote: Hi! I have set up a tomcat server with ssl that works fine as long as I go to the adress https://adress:8443 I want to get rid of the port number, is there any easy way to do this so that tomcat understands the https request that comes in? Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true maxThreads=150 scheme=https secure=true clientAuth=false keystorePass=changeit sslProtocol=TLS keystoreFile=/root/.keystore truststoreFile=/usr/lib/jvm/java-1.5.0-sun/jre/lib/security/cacerts / This is my ssl connector in my server.xml. I tried getting a redirct from http to https going but couldn't do that in tomcat alone, any tips on that aswell? I have done this: Connector port=8080 protocol=HTTP/1.1 redirectPort=8443 / With no luck... Thanks for any help!! -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11459871 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/How-to-remove-port-number-from-https-adress-and-redirect-http-to-https-tf4034030.html#a11462081 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to remove port number from https adress and redirect http to https
Hi
Ah, yes, well I'm not really an 'expert' myself but I have been through this
recently.
The first thing I would say is that the following looks different to my own
config
url-pattern/cas/WEB-INF/view/jsp/simple/ui/url-pattern
here is one of my constraints
security-constraint
display-nameStandard user constraint used for checkout and account
modification/display-name
web-resource-collection
web-resource-namemy super new site/web-resource-name
url-pattern/user/LoginPreCheck/url-pattern
url-pattern/user/loggedin/*/url-pattern
/web-resource-collection
auth-constraint
role-namewpcustomer/role-name
/auth-constraint
user-data-constraint
transport-guaranteeCONFIDENTIAL/transport-guarantee
/user-data-constraint
/security-constraint
the url-pattern should be a relative path from the root of your application
or some mapped path to a resource (experts correct me if I am wrong please).
If you want everything protected then just use * (or /* I think actually).
Now when a user tries this URL
http://www.mywebapp.co.uk/user/loggedin/editAccount.jsp Tomcat automatically
''redirects' to https.
As for the filter, well I'm a bit new to them as well. At the moment I have
decided that as long as a user is logged in then I'd like the session to be
secure. When they hit the logout button then I don't need secure I just need
straight http.
Here is my filter
public class HttpsRedirectFilter implements Filter{
...
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException, ServletException {
if((request instanceof HttpServletRequest) (response instanceof
HttpServletResponse)){
String redirectTarget =
((HttpServletRequest)request).getRequestURL().toString().replaceFirst(https,
http);
if(request.isSecure()){
((HttpServletResponse)response).sendRedirect(redirectTarget);
}
else{
chain.doFilter(request, response);
}
}
}
...
Very basic and primitive I'm sure but it does the job
The filter is mapped to the /logout url thus
filter
filter-nameredirectFilter/filter-name
filter-classcom.foo.bar.baz.HttpsRedirectFilter/filter-class
/filter
filter-mapping
filter-nameredirectFilter/filter-name
url-pattern/logout/url-pattern
/filter-mapping
Anytime anyone logs out this filter fires and redirects to 'standard' http.
Now of course the filter could be a lot more sophisticated but it proved the
concept to me, now all I need is that little bit of 'majik'
Hope all this helps.
All criticism welcome
Cheers
Duncan
On 7/6/07, christianhau [EMAIL PROTECTED] wrote:
Thanks man!
I have tried a similar approach with the web.xml but no luck. This is what
I
wrote in web.xml
security-constraint
web-resource-collection
web-resource-nameEntire
Application/web-resource-name
url-pattern/cas/WEB-INF/view/jsp/simple/ui/url-pattern
/web-resource-collection
user-data-constraint
transport-guaranteeCONFIDENTIAL/transport-guarantee
/user-data-constraint
/security-constraint
Now I am not 100% sure if the pattern is correct, how would I check that?
And another thing, you mentioned a suitable servlet filter? How would you
go
about making a servlet filter for this purpose and where would you put it?
As you can tell from my question I have little experience with servlet
filters..
Thanks again :)
Lyallex wrote:
Hi
This is my first contribution to this list and I expect others will have
better ways of doing it but ...
The way I managed to get his working is to set the ssl connector port to
the
default ssl port (443)
and my non-ssl connector port to the default http port (80)
Obviously there are issues starting Tomcat on these ports on *NIX
systems
but judging by the following
entry in your ssl connector (keystoreFile=/root/.keystore) you appear
to
have access to root.
That should do it
Also in my etc/hosts file I have set 127.0.0.1 www.mywebapp.co.uk and
my
app is the root web app
so now, combined with the following in web.xml
security-constraint
...
user-data-constraint
transport-guaranteeCONFIDENTIAL/transport-guarantee
/user-data-constraint
...
/security-constraint
and a suitable servlet filter I can switch between http and https almost
at
will with no messing about with ports just by asking for
http://www.mywebapp.co.uk
Hope this helps
Cheers
Duncan
On 7/6/07, christianhau [EMAIL PROTECTED] wrote:
Hi!
I have set up a tomcat server with ssl that works fine as long as I go
to
the adress https://adress:8443 I want to get rid of the port number, is
there any easy way to do this so that tomcat understands the https
request
that comes in?
Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true
maxThreads=150 scheme=https secure=true
clientAuth=false keystorePass=changeit
Realm problems - security issues?
Hi. I am having trouble setting up my application on a new laptop running XP. Every thing works perfectly on my old laptop with the same software versions. Only change is microsoft update upgrades. So I think that it could be security issues. Any Idears??? BR Soren, DK Context path=/um docBase=c:/projects/um_fsik/um debug=0 reloadable=true Realm name=UMRealm className=org.apache.catalina.realm.JDBCRealm debug=99 driverName=com.microsoft.jdbc.sqlserver.SQLServerDriver connectionURL=jdbc:microsoft:sqlserver://127.0.0.1;DatabaseName=XXX;ProgramName=XXX;SelectMethod=cursor connectionName=XXX connectionPassword=XXX userTable=users userNameCol=username userCredCol=password userRoleTable=user_roles roleNameCol=rolename / /Context *FROM LOG* [ERROR] um] - Exception performing authentication java.sql.SQLException: [Microsoft][SQLServer 2000 Driver for JDBC]Error establishing socket.java.sql.SQLException: [Microsoft][SQLServer 2000 Driver for JDBC]Error establishing socket. at com.microsoft.jdbc.base.BaseExceptions.createException (Unknown Source) at com.microsoft.jdbc.base.BaseExceptions.getException (Unknown Source) at com.microsoft.jdbc.base.BaseExceptions.getException (Unknown Source) at com.microsoft.jdbc.sqlserver.tds.TDSConnection.init (Unknown Source) at com.microsoft.jdbc.sqlserver.SQLServerImplConnection.open (Unknown Source) at com.microsoft.jdbc.base.BaseConnection.getNewImplConnection (Unknown Source) at com.microsoft.jdbc.base.BaseConnection.open (Unknown Source) at com.microsoft.jdbc.base.BaseDriver.connect (Unknown Source) at org.apache.catalina.realm.JDBCRealm.open (JDBCRealm.java:699) at org.apache.catalina.realm.JDBCRealm.authenticate (JDBCRealm.java:344) at org.apache.catalina.authenticator.FormAuthenticator.authent icate(FormAuthenticator.java:257) at org.apache.catalina.authenticator.AuthenticatorBase.invoke (AuthenticatorBase.java:416) at org.apache.catalina.core.StandardHostValve.invoke (StandardHostValve.java:126) at org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:105) at org.apache.catalina.core.StandardEngineValve.invoke (StandardEngineValve.java:107) at org.apache.catalina.connector.CoyoteAdapter.service (CoyoteAdapter.java:148) at org.apache.coyote.http11.Http11Processor.process (Http11Processor.java:869) at org.apache.coyote.http11.Http11BaseProtocol$Http11Connectio nHandler.processConnection(Http11BaseProtocol.java:664) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket (PoolTcpEndpoint.java:527) at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt (LeaderFollowerWorkerThread.java:80) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.r un(ThreadPool.java:684) at java.lang.Thread.run(Unknown Source) [DEBUG] ApplicationDispatcher - servletPath=/public/loginError.jsp, pathInfo=null, queryString=null, name=null [DEBUG] ApplicationDispatcher - Path Based Forward [DEBUG] JspServlet - JspEngine -- /public/loginError.jsp [DEBUG] JspServlet - ServletPath: /public/loginError.jsp [DEBUG] JspServlet - PathInfo: null [DEBUG] JspServlet - RealPath: C:\projects\um_fsik\um\public\loginError.jsp [DEBUG] JspServlet - RequestURI: /um/public/loginError.jsp [DEBUG] JspServlet - QueryString: null [DEBUG] JspServlet - Request Params: [DEBUG] JspServlet - j_username = XXX [DEBUG] JspServlet - j_password = XXX [DEBUG] ApplicationDispatcher - Disabling the response for futher output [DEBUG] AuthenticatorBase - Failed authenticate() test ??/um/login/j_security_check [DEBUG] AuthenticatorBase - Security checking request GET /um/login/um.jsp [DEBUG] AuthenticatorBase - Calling hasUserDataPermission () [DEBUG] AuthenticatorBase - Calling authenticate() [DEBUG] FormAuthenticator - Save request in session '69C7CDF7181DB575FAECF7D04492F180' [DEBUG] ApplicationDispatcher - servletPath=/public/login.jsp, pathInfo=null, queryString=null, name=null [DEBUG] ApplicationDispatcher - Path Based Forward [DEBUG] JspServlet - JspEngine -- /public/login.jsp [DEBUG] JspServlet - ServletPath: /public/login.jsp [DEBUG] JspServlet - PathInfo: null [DEBUG] JspServlet - RealPath: C:\projects\um_fsik\um\public\login.jsp [DEBUG] JspServlet - RequestURI: /um/public/login.jsp [DEBUG] JspServlet - QueryString: null [DEBUG] JspServlet - Request Params: [DEBUG] ApplicationDispatcher - Disabling the response for futher output [DEBUG] AuthenticatorBase - Failed authenticate() test Med venlig hilsen Søren Blidorf Nolas Consulting Web: http://www.nolas.dk Mobil: +45 61676513
Re: Tomcat 6 + Apache 2.0 with SSL
Hi there! First of all, thanks for all your replies. I don't know why, but I missed all your replies except the last of course. I'll try to answer your questions. What I need is to have the option to use SSL with Tomcat. Apache httpd is not a necessity. There is no need to have an https connection between Apache and Tomcat. I tried several setups in the past weeks. 1) Tomcat standalone + SSL; this worked with 5.5, but not 6.0. 2) Apache 2.2 with SSL; couldn't get SSL working. 3) Apache 2.0 with SSL; this worked without Tomcat, and I had a working certificate. 4) Apache 2.0 + mod_proxy to Tomcat; this worked, but not with SSL. -- At this point I mailed the list. 5) Apache 2.0 in a new setup, with SSL, mod_proxy, and server.xml slightly modified. This worked! 6) Apache 2.2 in the same setup (modified httpd.conf) In this setup all http traffic is redirected to https, which is not ideal. To answer some questions: - Apache httpd does not point to the Tomcat webapps. - Double https is not needed (like: browser - https- Apache - https- tomcat) - I use this for my SSL certificate IfModule ssl_moduleInclude conf/ ssl.conf/IfModule This is my current setup in 2.2: LoadModule proxy_module modules/mod_proxy.so LoadModule proxy_http_module modules/mod_proxy_http.so LoadModule ssl_module modules/mod_ssl.so IfModule ssl_module SSLRandomSeed startup builtin SSLRandomSeed connect builtin Include conf/ssl.conf /IfModule ProxyPass / http://localhost:8080/ ProxyPassReverse / http://localhost:8080/ VirtualHost *:443 SSLProxyEngine On ProxyPass https://localhost:443/ https://localhost:8443/ ProxyPassReverse https://localhost:443/ https://localhost:8443/ /VirtualHost Some questions: 1) Will this setup work to make https work for selected webapps or subdirectories only? Or do I need mod_rewrite? Do you have examples of how this can be done? 2) Could the same be done using mod_rewrite? It's not clear to me what the differences are, and what for instance mod_jk could add here. (Not that I plan to use mod_jk now, but I want to understand.) 3) I have difficulty understanding the mod_rewrite syntax. It this a good book on how to learn it? Do you have other suggestions? http://www.amazon.com/Definitive-Guide-Apache-mod_rewrite/dp/1590595610/ Roger Op 6 jul 2007, om 11:19 heeft David Smith het volgende geschreven: But all the contents of $CATALINA_HOME/webapps/$YOUR_APPLICATION/ WEB-INF does become exposed and that should not be. If you are going to do that, you should consider making sure you configure apache httpd to not server up anything contained there. --David Arian Abrahantes wrote: Hi Filik: Just to end this because, probably, I am making a mistake or I didn't make myself clear in my previous post. Do you mean that in the apache configuration in the virtual host definition one must not point the DocumentRoot directive to the folder where your contents are?. Something like: DocumentRoot $CATALINA_HOME/webapps/$YOUR_APPLICATION I meant documents or applications not tomcat config files or whatever alike? or at least is what the previous line looks like. Please if this is wrong kindly consider to tell me how it must be done? I don't see where is the security issue cause like this, IMHO, any other file from tomcat is out of sight for sniffers. And Roger, original poster, just an example of how to integrate apache and tomcat with mod proxy for an application based in tomcat. Which will clarify any doubt you had for setting up a configuration with apache as proxy. I think I should have posted the example instead of try to explain myself, my english is not goot after all. http://195.14.236.181/opencms/opencms/alkacon-documentation/ howto_apache_httpd/mod_proxy.html Hope you can explain me and thanking you in advance, arian Filip Hanik - Dev Lists wrote: Arian Abrahantes wrote: Hi Filik: I understood what he wanted to do. My post is about how needed is this for him?. If it is a company requirement ok. But if there is no requirement why to slow the server down?. IMHO, in a properly set apache proxy configuration nobody except apache will interact with the aplication (you name it) that lies bellow him. So even if companies or users wishes this double encryption I seriously doubt they will be getting more security. Anyway, as far as I know both servers can share the same keys for authentication (I am pretty sure there is a quite close in date -previous month- thread posted in this list or in Opencms' one) and just looking into his config it should work so just try it out. He is just missing the addition of the DocumentRoot where his contents under tomcat lies. uh, absolutely not, never point your DocumentRoot to the Tomcat file structure unless you know exactly how to secure it. Filip hth, arian Filip Hanik - Dev Lists wrote: I think what he wants
deployment issues
Hi I am new to web services, I am trying to deploy a service named HelloWorld. The service is uploaded without any problems but when i click on the service, it gives me This XML file does not appear to have any style information associated with it... What am i doing wrong? thanks - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat Farm Recommendation
Thanks, I have to still trying to convince some people that Tomcat can perform without a lot more of resources than Apache Http Server does. Johann -- View this message in context: http://www.nabble.com/Tomcat-Farm-Recommendation-tf4025344.html#a11463888 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Apache Http Server + Tomcat or just Tomcat?
I have an Apache Http Server farm and I'm trying to build a Tomcat one for my new java systems. I was thinking about what can make the use the Apache one as front end (proxy) of the Tomcat one useful? Thanks, Johann -- View this message in context: http://www.nabble.com/Apache-Http-Server-%2B-Tomcat-or-just-Tomcat--tf4035391.html#a11464034 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Apache Http Server + Tomcat or just Tomcat?
What version are you planning to install ? Tomcat 6 has great performance test (up to 16k concurrent connections in a conventional pc) Right now I'm doing the same thing and finally I decided use just tomcat with a load balancer in the front. But tomcat 6 seems to be enough mature to work for itself. Is painfull being worried just for 1 webserver, imagine 2.. What platform are you working ? Win, linux ? -Original Message- From: bajistaman [mailto:[EMAIL PROTECTED] Sent: Friday, July 06, 2007 9:08 AM To: users@tomcat.apache.org Subject: Apache Http Server + Tomcat or just Tomcat? I have an Apache Http Server farm and I'm trying to build a Tomcat one for my new java systems. I was thinking about what can make the use the Apache one as front end (proxy) of the Tomcat one useful? Thanks, Johann -- View this message in context: http://www.nabble.com/Apache-Http-Server-%2B-Tomcat-or-just-Tomcat--tf40 35391.html#a11464034 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] This message (including any attachments) contains confidential and/or proprietary information intended only for the addressee. Any unauthorized disclosure, copying, distribution or reliance on the contents of this information is strictly prohibited and may constitute a violation of law. If you are not the intended recipient, please notify the sender immediately by responding to this e-mail, and delete the message from your system. If you have any questions about this e-mail please notify the sender immediately. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Apache Http Server + Tomcat or just Tomcat?
Here is a performance review http://www.javalobby.org/java/forums/t92965.html -Original Message- From: bajistaman [mailto:[EMAIL PROTECTED] Sent: Friday, July 06, 2007 9:08 AM To: users@tomcat.apache.org Subject: Apache Http Server + Tomcat or just Tomcat? I have an Apache Http Server farm and I'm trying to build a Tomcat one for my new java systems. I was thinking about what can make the use the Apache one as front end (proxy) of the Tomcat one useful? Thanks, Johann -- View this message in context: http://www.nabble.com/Apache-Http-Server-%2B-Tomcat-or-just-Tomcat--tf40 35391.html#a11464034 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] This message (including any attachments) contains confidential and/or proprietary information intended only for the addressee. Any unauthorized disclosure, copying, distribution or reliance on the contents of this information is strictly prohibited and may constitute a violation of law. If you are not the intended recipient, please notify the sender immediately by responding to this e-mail, and delete the message from your system. If you have any questions about this e-mail please notify the sender immediately. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: deployment issues
On 7/6/07, Fatima [EMAIL PROTECTED] wrote: What am i doing wrong? http://www.catb.org/~esr/faqs/smart-questions.html -- Hassan Schroeder [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Apache Http Server + Tomcat or just Tomcat?
Thanks!, We have a Solaris and AIX platform but thinking about trying an Intel/Linux one. For many reasons we can't use the latest versions of any product until they've rached some maturity so we are going to try Tomcat 5. Johann -- View this message in context: http://www.nabble.com/Apache-Http-Server-%2B-Tomcat-or-just-Tomcat--tf4035391.html#a11464581 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: deployment issues
Thanks that is really helpful On Fri, 2007-07-06 at 06:45 -0700, Hassan Schroeder wrote: On 7/6/07, Fatima [EMAIL PROTECTED] wrote: What am i doing wrong? http://www.catb.org/~esr/faqs/smart-questions.html - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Recommendations for commercial Tomcat hosting?
For a variety of business reasons, I'm required to host a Tomcat application on a commercial hosting service. I've tried one so far, but wasn't able to get my technical questions answered responsively. Can anyone recommend a commercial Tomcat hosting company? If folk would like to respond to me privately, I'll post a summary to the list. I searched the subject lines of the archive of this group going back to December, but didn't find any messages that seemed related. Please forgive me if I missed something that's been discussed before, and point out a link to it. Thank you all for your advice and recommendations. -Kevin Kevin Zembower Internet Services Group manager Center for Communication Programs Bloomberg School of Public Health Johns Hopkins University 111 Market Place, Suite 310 Baltimore, Maryland 21202 410-659-6139 - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Recommendations for commercial Tomcat hosting?
Too lazy to copy/paste your email I use dailyrazor with private jvm for 22 bucks, 96mb heap, 15 mysqldb, ssh, and a lot of features, is fast and reliable. Support is good. Best regards, Rodrigo www.rodrigoasensio.com -Original Message- From: Zembower, Kevin [mailto:[EMAIL PROTECTED] Sent: Friday, July 06, 2007 10:11 AM To: users@tomcat.apache.org Subject: Recommendations for commercial Tomcat hosting? For a variety of business reasons, I'm required to host a Tomcat application on a commercial hosting service. I've tried one so far, but wasn't able to get my technical questions answered responsively. Can anyone recommend a commercial Tomcat hosting company? If folk would like to respond to me privately, I'll post a summary to the list. I searched the subject lines of the archive of this group going back to December, but didn't find any messages that seemed related. Please forgive me if I missed something that's been discussed before, and point out a link to it. Thank you all for your advice and recommendations. -Kevin Kevin Zembower Internet Services Group manager Center for Communication Programs Bloomberg School of Public Health Johns Hopkins University 111 Market Place, Suite 310 Baltimore, Maryland 21202 410-659-6139 - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] This message (including any attachments) contains confidential and/or proprietary information intended only for the addressee. Any unauthorized disclosure, copying, distribution or reliance on the contents of this information is strictly prohibited and may constitute a violation of law. If you are not the intended recipient, please notify the sender immediately by responding to this e-mail, and delete the message from your system. If you have any questions about this e-mail please notify the sender immediately. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Error starting Tomcat 5.5 as a Windows service
Daniel, Thanks for the suggestion. That did the trick. The Tomcat application is now running as a windows service and everything is working. Odd situation though since I always thought that environment variables were recognized immediately (except for previously opened command windows). Lesson learned :). Thanks, Tony Fountain Benefit Concepts, Inc. (419) 244-9936 x9010 -Original Message- From: Daniel Stephens [mailto:[EMAIL PROTECTED] Sent: Thursday, July 05, 2007 4:32 PM To: Tomcat Users List Subject: Re: Error starting Tomcat 5.5 as a Windows service Make sure you have CATALINA_HOME pointed to your tomcat instance. make sure your java home is correct.. It sounds like it can't find the java home.. You did boot after the install right? If you added that environment variable to the system section, you'll need to boot to pick it up or open a new cmd prompt to re-read the environment. On 7/5/07, Tony Fountain [EMAIL PROTECTED] wrote: Hi, I am attempting to install Tomcat 5.5.23 as a Windows service on a Windows 2003 Server box. The steps I went through are as follows * Installed the JDK 1.5 Update 12 * Manually added the environment variable JAVA_HOME to C:\Program Files\Java\jdk1.5.0_12 (as a system variable, not user level) * Ran the windows installer package and selected the full install option. At this point I expected to be able to test the service can start and serve requests using examples installed with the installation but I am unable to. Anytime I try to start the Windows service the following error is logged: [2007-07-05 15:53:54] [1276 prunsrv.c] [debug] Procrun log initialized [2007-07-05 15:53:54] [info] Running Service... [2007-07-05 15:53:54] [1098 prunsrv.c] [debug] Inside ServiceMain... [2007-07-05 15:53:54] [info] Starting service... [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[0] -Dcatalina.home=C:\Program Files\Apache Software Foundation\Tomcat 5.5 [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[1] -Dcatalina.base=C:\Program Files\Apache Software Foundation\Tomcat 5.5 [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[2] -Djava.endorsed.dirs=C:\Program Files\Apache Software Foundation\Tomcat 5.5\common\endorsed [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[3] -Djava.io.tmpdir=C:\Program Files\Apache Software Foundation\Tomcat 5.5\temp [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[4] -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[5] -Djava.util.logging.config.file=C:\Program Files\Apache Software Foundation\Tomcat 5.5\conf\logging.properties [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[6] -Djava.class.path=C:\Program Files\Apache Software Foundation\Tomcat 5.5\bin\bootstrap.jar [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[7] vfprintf [2007-07-05 15:53:54] [info] Error occurred during initialization of VM [2007-07-05 15:53:54] [info] java/lang/NoClassDefFoundError [2007-07-05 15:53:54] [info] : java/lang/Object I'm assuming it's a class path issue but being new to the world of Java, I'm not sure what could be missing out of a basic installation. I have performed some Google searches and even searched through some of the archives but was unable to find anything specific to this situation. Any pointers or a push in the right direction would be greatly appreciated. FYI - Even at the Windows command prompt, if I type java -version I receive this error: Error occurred during initialization of VM java/lang/NoClassDefFoundError: java/lang/Object Same error, different cause so I'm not completely sure if this is even related to the Tomcat installation, rather possibly some odd situation that was encountered when the JDK was installed. Thanks, Tony This Email has been scanned for all viruses by PAETEC Email Scanning Services, utilizing MessageLabs proprietary SkyScan infrastructure. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.paetec.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Error starting Tomcat 5.5 as a Windows service
Excellent! Glad to hear it worked out. On 7/6/07, Tony Fountain [EMAIL PROTECTED] wrote: Daniel, Thanks for the suggestion. That did the trick. The Tomcat application is now running as a windows service and everything is working. Odd situation though since I always thought that environment variables were recognized immediately (except for previously opened command windows). Lesson learned :). Thanks, Tony Fountain Benefit Concepts, Inc. (419) 244-9936 x9010 -Original Message- From: Daniel Stephens [mailto:[EMAIL PROTECTED] Sent: Thursday, July 05, 2007 4:32 PM To: Tomcat Users List Subject: Re: Error starting Tomcat 5.5 as a Windows service Make sure you have CATALINA_HOME pointed to your tomcat instance. make sure your java home is correct.. It sounds like it can't find the java home.. You did boot after the install right? If you added that environment variable to the system section, you'll need to boot to pick it up or open a new cmd prompt to re-read the environment. On 7/5/07, Tony Fountain [EMAIL PROTECTED] wrote: Hi, I am attempting to install Tomcat 5.5.23 as a Windows service on a Windows 2003 Server box. The steps I went through are as follows * Installed the JDK 1.5 Update 12 * Manually added the environment variable JAVA_HOME to C:\Program Files\Java\jdk1.5.0_12 (as a system variable, not user level) * Ran the windows installer package and selected the full install option. At this point I expected to be able to test the service can start and serve requests using examples installed with the installation but I am unable to. Anytime I try to start the Windows service the following error is logged: [2007-07-05 15:53:54] [1276 prunsrv.c] [debug] Procrun log initialized [2007-07-05 15:53:54] [info] Running Service... [2007-07-05 15:53:54] [1098 prunsrv.c] [debug] Inside ServiceMain... [2007-07-05 15:53:54] [info] Starting service... [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[0] -Dcatalina.home=C:\Program Files\Apache Software Foundation\Tomcat 5.5 [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[1] -Dcatalina.base=C:\Program Files\Apache Software Foundation\Tomcat 5.5 [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[2] -Djava.endorsed.dirs=C:\Program Files\Apache Software Foundation\Tomcat 5.5\common\endorsed [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[3] -Djava.io.tmpdir=C:\Program Files\Apache Software Foundation\Tomcat 5.5\temp [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[4] -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[5] -Djava.util.logging.config.file=C:\Program Files\Apache Software Foundation\Tomcat 5.5\conf\logging.properties [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[6] -Djava.class.path=C:\Program Files\Apache Software Foundation\Tomcat 5.5\bin\bootstrap.jar [2007-07-05 15:53:54] [400 javajni.c] [debug] Jvm Option[7] vfprintf [2007-07-05 15:53:54] [info] Error occurred during initialization of VM [2007-07-05 15:53:54] [info] java/lang/NoClassDefFoundError [2007-07-05 15:53:54] [info] : java/lang/Object I'm assuming it's a class path issue but being new to the world of Java, I'm not sure what could be missing out of a basic installation. I have performed some Google searches and even searched through some of the archives but was unable to find anything specific to this situation. Any pointers or a push in the right direction would be greatly appreciated. FYI - Even at the Windows command prompt, if I type java -version I receive this error: Error occurred during initialization of VM java/lang/NoClassDefFoundError: java/lang/Object Same error, different cause so I'm not completely sure if this is even related to the Tomcat installation, rather possibly some odd situation that was encountered when the JDK was installed. Thanks, Tony This Email has been scanned for all viruses by PAETEC Email Scanning Services, utilizing MessageLabs proprietary SkyScan infrastructure. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.paetec.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: anybody has javascript code example for using tomcat comet ?
Hi, take a look at [1]. The client side can be re-used with Tomcat 6 AIO. -- Jeanfrancois [1] http://weblogs.java.net/blog/jfarcand/archive/2007/06/new_adventures_3.html Bruno Simioni wrote: Hey, Szabolcs. I'm looking for things about AIO Tomcat, using Comet technology, but I didn't get anything yet. I have already sent an email to tomcat users list, but no one answer. If you found something, please retrieve me. I'm trying to discover how an client can acess the manager of events on server, then, I would be able to implement my that on my job. Thanks, Bruno Simioni. On 7/5/07, Szabolcs Márton [EMAIL PROTECTED] wrote: Hi! Has anybody got any workable code sample i javascript for use tomcat comet? - I tryed with pure xmlhttprequest, watching for state ready, but i got data after it has timeouted on server... - dojo.cometd is not usable, its need bayeux protocol - dojo.io.bind, i cannot make it could someone please send me an example? thank you regards Szabi - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
clients behind nat/masq: sessions mixed up?
Folks; dealing with quite an annoying problem right now: One of our web applications (running inside a tomcat 5.5.20 cluster spread across two machines behind an apache2 / mod_jk frontend) seems to act strangely in some situations: Most of the times, the application works rather fine. However, it seems that in some(?) cases when clients working in a LAN connected to the Internet using NAT or Masquerading (i.o.w.: comin' from the same public IP address), their sessions get sort of mixed up, leaving one user seeing the wrong data, suddenly also obviously being authenticated as someone completely else who's working in the application, on a different computer but just within the same network. On one side, this is something rather important to me as providing users access to the wrong data isn't to be considered a good thing. Other side, however, I don't at all know how on earth this could happen - for what I see, the application uses either a cookie (stored on the client side) or a JSESSIONID (also just available on the client side) so having these things mixed up should be virtually impossible... shouldn't it? I am aware that this also might be application-specific. However, does someone of the kind folks around here feel like pointing me some places where to look, here, to get this sorted out? TIA and bye, have a calm weekend everyone Kristian - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: clients behind nat/masq: sessions mixed up?
I don't at all know how on earth this could happen - for what I see, the application uses either a cookie (stored on the client side) or a JSESSIONID (also just available on the client side) so having these things mixed up should be virtually impossible... shouldn't it? That is correct. But there could be a problem with a proxy or NAT gateway. Things to investigate: Does the application keep track of user sessions the normal way using HttpSession? If not then that would be the first place to look for a problem. You can configure the Apache and Tomcat access logs to write out the JSESSIONID cookie. Then if you can pinpoint some of the bad requests in the log file, you can check the JSESSIONID (either cookie or URL param) to see if it is what the client should have sent, and if the application seemed to be using the correct session. If you have access to some clients that are seeing the problem, you can also check the JSESSIONID cookies on that end, using a browser plug-in such as Live HTTP Headers or ieHTTPHeaders. If the JSESSIONID sent by the client is different from the one in the server log file, then a proxy or something in between is changing it. -- Len - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
