Re: no authentication with mod_jk-1.2.24
Leif Neve wrote: Hello, I just upgraded from mod_jk-1.2.19 to 1.2.24 using the available Solaris binary. I didn't change any of the configuration files in the process. But now I can't access the Tomcat Manager via the connector since my browser no longer prompts me for username/password information and so I get an error code of 401. (Log: No body with status=401 for worker=ajp13) I get prompted just fine if I go directly to Tomcat. You are correct. This is a obvious bug that got slipped. I already fixed the code in the SVN. Looks the 1.2.25 will follow pretty soon :) Regards, Mladen - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
New Problem to configure servlet on Tomcat
Hi, I've configured Servlet on Tomcat, and more problem I've resolved, but I've this problem: HTTP Status 500 - *type* Exception report *message* *description* _The server encountered an internal error () that prevented it from fulfilling this request._ *exception* java.util.MissingResourceException: Can't find bundle for base name LocalStrings, locale it_IT java.util.ResourceBundle.throwMissingResourceException(Unknown Source) java.util.ResourceBundle.getBundleImpl(Unknown Source) java.util.ResourceBundle.getBundle(Unknown Source) HelloWorldExample.doGet(HelloWorldExample.java:39) javax.servlet.http.HttpServlet.service(HttpServlet.java:690) javax.servlet.http.HttpServlet.service(HttpServlet.java:803) org.apache.catalina.servlets.InvokerServlet.serveRequest(InvokerServlet.java:402) org.apache.catalina.servlets.InvokerServlet.doGet(InvokerServlet.java:134) javax.servlet.http.HttpServlet.service(HttpServlet.java:690) javax.servlet.http.HttpServlet.service(HttpServlet.java:803) *note* _The full stack trace of the root cause is available in the Apache Tomcat/6.0.13 logs._ Apache Tomcat/6.0.13 Why? How can I resolve this? Tank for the help you give me. Sincerally yours, Fabbris Pierluigi - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat with/without Tomcat native library
Thank you both for the info. But what is your opinion about the crash I am experiencing with SSL: bash-3.00# /usr/apache2/bin/ab -c 4 -n 1 https://localhost:443/favicon.ico This is ApacheBench, Version 2.0.40-dev $Revision: 1.146 $ apache-2.0 Copyright 1996 Adam Twiss, Zeus Technology Ltd, http://www.zeustech.net/ Copyright 2006 The Apache Software Foundation, http://www.apache.org/ Benchmarking localhost (be patient) SSL handshake failed (5). Test aborted after 10 failures apr_socket_connect(): Connection refused (146) Total of 1 requests completed -- I understand that test is not good but Tomcat shouldn't crash, right? Thanks, Petr Mladen Turk [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] Petr Sumbera wrote: Hi Bill and all, not sure what is the right way for comparison between using and not using APR. I tried Apache ab tool like this: ab -c 4 -n 1 http://localhost:8080/favicon.ico And I don't see any difference. Actually it might be little bit slower with APR. The file size is 21630, so it should use sendfile then (well actually our APR doesn't use sendfile at the moment as far as I know). The purpose of APR is to change the model from thread-per-connection to thread-per-request. This means it will behave much faster when you have 1000 concurrent clients using Keep-Alive (HTTP 1.1). I agree with Mladen here. Your test is artificial, so under most systems the non-APR connector will win (since you only have 4 clients connecting to TC). And since you haven't specified '-k' to ab, you are really testing connection speed, which isn't realistic. On Solaris, having a 1000 threads blocking on input isn't that big of a deal, so I'm not sure about the much faster claim, but I haven't profiled Tomcat lately :). In that case you'll be able to serve them all with lower number of maxThreads. So, try to use the 'normal' test tool instead a brute force one like 'ab' that will reflect the real load to your boxes. I mean, the ab (Apache Bench) is a DoS tool, right ;) When I was profiling, I used JMeter and 500 clients with about a one minute ramp-up time (I don't care about how it handles an accept flood), and about a 5-10 second delay between requests (I don't have the script I used anymore, so I don't remember the exact value). Also, if you use JMeter, use the HttpClient Sampler or configure the java.net Sampler to use a bigger than default pool, since by default the java.net Sampler doesn't scale up to this level (skewing the results). Also interesting would be to use a longer connectionTimeout on the Connector / and longer delays between requests. But for a good comparision, make sure that the maxThreads attribute on the Connector / is large enough to handle the lode. Regards, Mladen. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [NOT SOLVED]Tomcat native library Not found in Solaris 9
Hi, first of all: this is a gcc question. If you search for a high quality answer, you should contact the gcc commmunity. My personal way to do this (and there is definitely more than one wait to do it): export CC=gcc -specs=/path/to/my/specs Contents of file /path/to/my/specs: *libgcc: -lgcc -lgcc_eh Now whenever you use a build system, that respects the CC env variable (e.g. most configure based systems), libgcc should get compiled in statically. Regards, Rainer Lakshmi Venkataraman wrote: Please give me some tips for compiling libtcnative on Solaris 9 without the dynamic dependence on libgcc_s.1.so. We ship tomcat with our product. On customer installations, we cannot assume that libgcc_s will be found in some standard location. I have searched a lot on the web. I am also trying to compile gcc with --disable-shared option. I am running into some issues while trying to compile gcc. 1) How to modify Tomcat native's configure script to link libgcc statically? 2) What are the prerequisites before doing step 1)? We are using Tomcat 5.5.23. I am using tcnative-1.1.8-src with OpenSSL-0.9.8b. --Thanks Lakshmi - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat cluster serving ~50 lines of the page when a request hits a stopped webapp for the first time
Rainer, I setup a test httpd + loadbalancer with jk 1.2.24 and could reproduce the problem over and over again. Then I patched the source and have been unable to reproduce the problem with the patched mod_jk.so. So the patch looks good. Regards Ben On 8/1/07, ben short [EMAIL PROTECTED] wrote: I'll give it ago first thing tomorrow, well after a cup of tea :) On 8/1/07, Rainer Jung [EMAIL PROTECTED] wrote: hi Ben, could you try the following patch for 1.2.24: http://people.apache.org/~rjung/mod_jk-dev/patches/fail-on-status.patch I guess you can build the module yourself (it's easy: configure --with-apxs=PATHTOAPXS; make; make install). Now simply download the source of 1.2.24 and use the patch command to add the above file as a patch. Then build and retest. If you really can't build it yourself let me know. The patch is not well tested, don't go straight to production with it :) Regards, Rainer ben short wrote: Sure for stable operation, but what if the machine reboots, tomcat starts up and your webapp doesn't for some reason. This situation could occur then. Many thanks for your help with this one. Regards Ben On 8/1/07, Rainer Jung [EMAIL PROTECTED] wrote: Hi Ben, I think I understand the problem now, and it is a jk bug. For stable operation you should really use the disable/stop feature. Nevertheless I'm starting thinking about how to fix this in a good way. The bug has to do with the new fail on status feature you use. It is not very old, so we didn't experience the bug before. Stay tuned ... Regards, Rainer - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Application outside WEBAPPS
Hello! How can I invoke an application located outside WEBAPPS? What setup I need to do? If I have an application inside WEBAPPS, p.e., ../WEBAPPS/test/ in URL I invoke http://localhost/test... but if application is in other location? Thanks a lot
ResourceLink Problems in 6.0.13
Hello, here is my problem: Its not possible to override web.xml env.entries with server.xml env. entries (this works fine in TC 5.0.30) conf/server.xml: Server port=8005 shutdown=SHUTDOWN GlobalNamingResources Environment override=false description=Web Portal URL mit ending Slash name=uiportal.webapp1.url type=java.lang.String value=http://server:port/portalurl// ... conf/Cataline/localhost/appcontext.xml: ... ResourceLink global=uiportal.webapp1.url name=uiportal.webapp1.url type=java.lang.String / ... web.xml (!DOCTYPE web-app PUBLIC -//Sun Microsystems, Inc.//DTD Web Application 2.3//EN http://java.sun.com/dtd/web-app_2_3.dtd;): env-entry env-entry-nameuiportal.webapp1.url/env-entry-name env-entry-valuehttp://test.com/env-entry-value env-entry-typejava.lang.String/env-entry-type /env-entry Thanks for any help!!! Ing Hans-Dieter Mader Software Engineering / IT-Systeme Jeep/Chrysler Produktion [EMAIL PROTECTED] MAGNA STEYR Fahrzeugtechnik Liebenauer Hauptstrasse 317, A-8041 Graz Tel.: ++43 316 404-190 3415 Fax ++43 316 404 2266 Diese Nachricht ist ausschliesslich fuer den oben bezeichneten Adressaten bestimmt und enthaelt moeglicherweise vertrauliche Informationen. Sollten Sie nicht der oben bezeichnete Adressat sein oder diese Nachricht irrtuemlich erhalten haben, ersuchen wir Sie, diese Nachricht nicht weiterzugeben, zu kopieren oder im Vertrauen darauf zu handeln, sondern den Absender zu verstaendigen und diese Nachricht samt allfaelliger Anlagen sofort zu loeschen. Vielen Dank. This message is intended only for use by the named addressee and may contain privileged and/or confidential information. If you are not the named addressee, you should not disseminate, copy, or take any action in reliance on it. If you have received this message in error, please immediately notify the sender of this message and delete this message and any attachment. Thank you.
AW: Application outside WEBAPPS
Place the myapp.xml in the /conf/Catalina/localhost/ directory. ?xml version='1.0' encoding='utf-8'? Context docBase=\\server02\share\dir1\dir2 path=/myapp useNaming=false /Context That's all. Regards, Hans -Ursprüngliche Nachricht- Von: Mladen Turk [mailto:[EMAIL PROTECTED] Gesendet: Donnerstag, 02. August 2007 13:11 An: Tomcat Users List Betreff: Re: Application outside WEBAPPS André Vila Cova wrote: Hello! How can I invoke an application located outside WEBAPPS? What setup I need to do? If I have an application inside WEBAPPS, p.e., ../WEBAPPS/test/ in URL I invoke http://localhost/test... but if application is in other location? Take a look at http://tomcat.apache.org/tomcat-6.0-doc/config/context.html docBase is your friend ;) Regards, Mladen - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Diese Nachricht ist ausschliesslich fuer den oben bezeichneten Adressaten bestimmt und enthaelt moeglicherweise vertrauliche Informationen. Sollten Sie nicht der oben bezeichnete Adressat sein oder diese Nachricht irrtuemlich erhalten haben, ersuchen wir Sie, diese Nachricht nicht weiterzugeben, zu kopieren oder im Vertrauen darauf zu handeln, sondern den Absender zu verstaendigen und diese Nachricht samt allfaelliger Anlagen sofort zu loeschen. Vielen Dank. This message is intended only for use by the named addressee and may contain privileged and/or confidential information. If you are not the named addressee, you should not disseminate, copy, or take any action in reliance on it. If you have received this message in error, please immediately notify the sender of this message and delete this message and any attachment. Thank you. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: ResourceLink Problems in 6.0.13
Thanks Mark. What about the release date of 6.0.14? Regards, Hans. -Ursprüngliche Nachricht- Von: Mark Thomas [mailto:[EMAIL PROTECTED] Gesendet: Donnerstag, 02. August 2007 13:46 An: Tomcat Users List Betreff: Re: ResourceLink Problems in 6.0.13 [EMAIL PROTECTED] wrote: Hello, here is my problem: Its not possible to override web.xml env.entries with server.xml env. entries (this works fine in TC 5.0.30) This should be fixed in 6.0.14. See http://marc.info/?l=tomcat-devm=118261088127037w=2 Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Diese Nachricht ist ausschliesslich fuer den oben bezeichneten Adressaten bestimmt und enthaelt moeglicherweise vertrauliche Informationen. Sollten Sie nicht der oben bezeichnete Adressat sein oder diese Nachricht irrtuemlich erhalten haben, ersuchen wir Sie, diese Nachricht nicht weiterzugeben, zu kopieren oder im Vertrauen darauf zu handeln, sondern den Absender zu verstaendigen und diese Nachricht samt allfaelliger Anlagen sofort zu loeschen. Vielen Dank. This message is intended only for use by the named addressee and may contain privileged and/or confidential information. If you are not the named addressee, you should not disseminate, copy, or take any action in reliance on it. If you have received this message in error, please immediately notify the sender of this message and delete this message and any attachment. Thank you. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: ResourceLink Problems in 6.0.13
[EMAIL PROTECTED] wrote: Hello, here is my problem: Its not possible to override web.xml env.entries with server.xml env. entries (this works fine in TC 5.0.30) This should be fixed in 6.0.14. See http://marc.info/?l=tomcat-devm=118261088127037w=2 Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Java source encoding
Hello, can I specify the encoding of java source files in the war file? Best regards, Artur - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Forwarding based on URI's in Tomcat
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Bill, Bill Barker wrote: Christopher Schultz [EMAIL PROTECTED] wrote in message servlet-nameaction/servlet-name url-pattern/mymodule/sexy*/url-pattern url-pattern/mymodule/sexy/url-pattern That is, map both /sexy* and /sexy to the servlet. Nope, /sexy* is an exact-match pattern to a URL that is literally /myapp/sexy*. The servlet-spec doesn't implement arbitrary regex patterns, only the ones specified. In this case you need to have the url-pattern to be /sexy/* to get a prefix match. And, yes, this will match to a URL of /myapp/sexy (with an empty pathInfo). I'm pretty sure that the trailing / is required in the pattern /sexy/*, so it would match /sexy/ but not /sexy. I don't think that / counts as part of a wildcard expression. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGsdEX9CaO5/Lv0PARAudJAKCxJiF7GukKtxB+8W4hwmZ0jbaoKACfVDWO BcXGvffve4h4rdU0GNiHgeY= =c4y5 -END PGP SIGNATURE- - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Java source encoding
Artur Rataj wrote: Hello, can I specify the encoding of java source files in the war file? What do you need source files stored inside war file for? -- Mikolaj Rydzewski [EMAIL PROTECTED] smime.p7s Description: S/MIME Cryptographic Signature
Tomcat6 and JVMTI Interface provided by SUN for Java profiler.
Hi there, I am working on a Java profiler using JVMTI interface provided by JDK 5 and above. I always get abnormal termination of tomcat 6 when stopping it. I ran through DevStudio debugger and found the callback of jvmtiEventVMDeath in JVMTI is never activated when shutting down tomcat 6 and a unhandled exception is caught. It doesn't happen on tomcat 5.5. Thanks, Chong abnormal.doc The contents of this e-mail are intended for the named addressee only. It contains information that may be confidential. Unless you are the named addressee or an authorized designee, you may not copy or use it, or disclose it to anyone else. If you received it in error please notify us immediately and then destroy it. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: New Problem to configure servlet on Tomcat
From: Fabbris Pierluigi [mailto:[EMAIL PROTECTED] Subject: New Problem to configure servlet on Tomcat I've configured Servlet on Tomcat, and more problem I've resolved, but I've this problem: java.util.MissingResourceException: Can't find bundle for base name LocalStrings, locale it_IT Tomcat is delivered with internationalization for only a few languages: English, Spanish, French, and Japanese - but not Italian. If you want to include Italian, take one of the existing tomcat-i18n-xx.jar files in the lib directory and translate all the properties files therein, renaming each with a _it suffix, and creating a new tomcat-i18n-it.jar file. (The English LocalStrings.properties files are inside the main catalina.jar file.) Don't know if the committers would accept the addition should someone choose to submit it, but there's always hope. Or you could just change the locale to one of the included values. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Encrypt password in server.xml
Is there a way to encrypt the password in server.xml, so that people can't see the cleartext password when they open the server.xml file? I mean the connectionPassword attribute in the Realm element. Thanks, Ofer. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
error: The jspc task doesn't support the srcdir attribute
Hi There, I am trying to use ant task jspc to precompile my jsp along with my application build to check if there is any jsp problems that show up. But I always get this error as below: stacktrace![CDATA[file:C:/work/checkout/esp/buildmyproject.xml:54: The jspc task doesn't support the srcdir attribute. at org.apache.tools.ant.IntrospectionHelper.setAttribute(IntrospectionHelpe r.java:422) at org.apache.tools.ant.ProjectHelper.configure(ProjectHelper.java:306) at org.apache.tools.ant.RuntimeConfigurable.maybeConfigure(RuntimeConfigura ble.java:242) at org.apache.tools.ant.RuntimeConfigurable.maybeConfigure(RuntimeConfigura ble.java:211) at org.apache.tools.ant.Task.maybeConfigure(Task.java:259) at org.apache.tools.ant.Task.perform(Task.java:340) at org.apache.tools.ant.Target.execute(Target.java:309) at org.apache.tools.ant.Target.performTasks(Target.java:336) at org.apache.tools.ant.Project.executeTarget(Project.java:1339) at org.apache.tools.ant.Project.executeTargets(Project.java:1255) at org.apache.tools.ant.Main.runBuild(Main.java:609) at org.apache.tools.ant.Main.start(Main.java:196) at org.apache.tools.ant.Main.main(Main.java:235)]]/stacktrace /build /cruisecontrol Seems the srcdir attribute is not getting recognized by the jasper at all. I am using jasper library files from Tomcat-4.1.36 of Apache. All my classpath are well set too as I have tried with different approaches. Please let me know the resolution for this, if any. Thanks, Saleem
[ANN] Withdrawal of Apache Tomcat JK 1.2.24 Web Server Connectors
The Apache Tomcat team needs to withdraw release 1.2.24 of the Apache Tomcat Connectors. The release contains a bug that prevents the correct flushing of parts of responses from the web server to the client. This might result in unpredicted communication behaviour. We therefore have removed the source and binary distributions from the origin server. A fix for the problem has already been committed. We expect release of version 1.2.25 in sometime next week. We apologise for any inconvenience, -- The Apache Tomcat Team - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Tomcat6 and JVMTI Interface provided by SUN for Java profiler.
It happens on tomcat6 as service but not with commandline option. -Original Message- From: Liang, Chong [mailto:[EMAIL PROTECTED] Sent: Thursday, August 02, 2007 9:40 AM To: users@tomcat.apache.org Subject: Tomcat6 and JVMTI Interface provided by SUN for Java profiler. Hi there, I am working on a Java profiler using JVMTI interface provided by JDK 5 and above. I always get abnormal termination of tomcat 6 when stopping it. I ran through DevStudio debugger and found the callback of jvmtiEventVMDeath in JVMTI is never activated when shutting down tomcat 6 and a unhandled exception is caught. It doesn't happen on tomcat 5.5. Thanks, Chong abnormal.doc The contents of this e-mail are intended for the named addressee only. It contains information that may be confidential. Unless you are the named addressee or an authorized designee, you may not copy or use it, or disclose it to anyone else. If you received it in error please notify us immediately and then destroy it.
RE: How do I use tomcat5w.exe with a service name other than Tomcat5?
Ron, You can create a shortcut and add //ES//Your_Tomcat_service to the Target. Mark -Original Message- From: rmiller [mailto:[EMAIL PROTECTED] Sent: 01 August 2007 19:40 To: users@tomcat.apache.org Subject: How do I use tomcat5w.exe with a service name other than Tomcat5? I have multiple instances of Tomcat installed as services with different service names. The tomcat5w.exe utility seems to work only with the default service name Tomcat5. I can't find any documentation on this utility. How do I pass another service name into the utility? Thanks, Ron -- View this message in context: http://www.nabble.com/How-do-I-use-tomcat5w.exe-with-a-service-name-othe r-than-Tomcat5--tf4201616.html#a11950506 Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Connaught wins RoSPA Gold Award for fifth year running Considerate Contractor Gold Award in 2006 Partnering Contractor of the Year Award in 2005 Please visit our website to see a full list of Connaught's Registered Companies www.connaught.plc.uk/Investors/Registered-Companies Disclaimer: The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete this message. Connaught plc, Head Office 01392 444546 - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Encrypt password in server.xml
On 8/2/07, Ofer Kalisky [EMAIL PROTECTED] wrote: Is there a way to encrypt the password in server.xml, so that people can't see the cleartext password when they open the server.xml file? This is a FAQ, and the answer is no . :-) For more detailed discussion search the archives, or read this (last section specifically): http://www.owasp.org/index.php/Securing_tomcat HTH, -- Hassan Schroeder [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: error: The jspc task doesn't support the srcdir attribute
Hi, Here is the ant target that I use for this jsp pre-compilation during build: target name=compilejsp depends= mkdir dir=${java.dir} / mkdir dir=${classes.dir} / jspc srcdir=${build.dir} destdir=${java.dir} include name=**/*.jsp/ classpath refid=${jasper.classpath}/ /jspc javac debug=on includeAntRuntime=false srcdir=${java.dir} destdir=${classes.dir} classpath path location=${build.dir}/WEB-INF/classes / fileset dir=${build.dir}/WEB-INF/lib include name=**/*.jar / /fileset path refid=jasper.classpath/ /classpath /javac /target -Saleem -Original Message- From: Shaikh, Saleem (Saleem) Sent: Thursday, August 02, 2007 10:24 AM To: users@tomcat.apache.org Subject: error: The jspc task doesn't support the srcdir attribute Hi There, I am trying to use ant task jspc to precompile my jsp along with my application build to check if there is any jsp problems that show up. But I always get this error as below: stacktrace![CDATA[file:C:/work/checkout/esp/buildmyproject.xml:54: The jspc task doesn't support the srcdir attribute. at org.apache.tools.ant.IntrospectionHelper.setAttribute(IntrospectionHelpe r.java:422) at org.apache.tools.ant.ProjectHelper.configure(ProjectHelper.java:306) at org.apache.tools.ant.RuntimeConfigurable.maybeConfigure(RuntimeConfigura ble.java:242) at org.apache.tools.ant.RuntimeConfigurable.maybeConfigure(RuntimeConfigura ble.java:211) at org.apache.tools.ant.Task.maybeConfigure(Task.java:259) at org.apache.tools.ant.Task.perform(Task.java:340) at org.apache.tools.ant.Target.execute(Target.java:309) at org.apache.tools.ant.Target.performTasks(Target.java:336) at org.apache.tools.ant.Project.executeTarget(Project.java:1339) at org.apache.tools.ant.Project.executeTargets(Project.java:1255) at org.apache.tools.ant.Main.runBuild(Main.java:609) at org.apache.tools.ant.Main.start(Main.java:196) at org.apache.tools.ant.Main.main(Main.java:235)]]/stacktrace /build /cruisecontrol Seems the srcdir attribute is not getting recognized by the jasper at all. I am using jasper library files from Tomcat-4.1.36 of Apache. All my classpath are well set too as I have tried with different approaches. Please let me know the resolution for this, if any. Thanks, Saleem - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
mod_jk sticky sessions don't work
Hi all! I'm trying to configure mod_jk to handle balance two apache-tomcat instances through an Apache reverse proxy, i read all the documentation, reference guides and howtos i found but it still doesn't work... Below are some configuration I'm using. The symptoms are that I connect with a browser to a jsp page that prints out the tomcat server that is managing the session, and the relative session ID. Every time I refresh the page, the server name and the sessionID change. I'm using apache httpd 2.2.4 build from source, mod_jk 1.2.23 and apache-tomcat 5.5.23 . Now, this is the httpd.conf (relevant parts only): JkWorkersFile /usr/local/apache2/conf/workers.properties JkShmFile /usr/local/apache2/logs/mod_jk.shm JkLogFile /usr/local/apache2/logs/mod_jk.log JkLogLeveldebug JkLogStampFormat [%a %b %d %H:%M:%S %Y] JkOptions +ForwardKeySize +ForwardURICompatUnparsed -ForwardDirectories JkRequestLogFormat %w %V %T NameVirtualHost *:80 VirtualHost *:80 ServerName portal.domain.it JkMount /status status JkMount /* test /VirtualHost The workers.properties: worker.list=test worker.portal1.port=8009 worker.portal1.host=inca-portal1 worker.portal1.type=ajp13 worker.portal1.lbfactor=1 worker.portal2.port=8009 worker.portal2.host=inca-portal2 worker.portal2.type=ajp13 worker.portal2.lbfactor=1 worker.test.type=lb worker.test.balance_workers=portal1,portal2 worker.test.sticky_session=True And, finally, I changed the tomcat server.xml file: !-- Define an AJP 1.3 Connector on port 8009 -- Connector port=8009 enableLookups=false redirectPort=8443 protocol=AJP/1.3 / Engine name=Standalone defaultHost=localhost jvmRoute=portal1 debug=1 / Finally, this is a piece of the log saying that he founds a certain session ID, and then he sends the request to the other server which then obviously sets a new JSESSIONID... : [Thu Aug 02 16:52:09 2007] [1970:8] [debug] map_uri_to_worker::jk_uri_worker_map.c (589): Attempting to map URI '/jsp-examples/sesstest.jsp' from 2 maps [Thu Aug 02 16:52:09 2007] [1970:8] [debug] map_uri_to_worker::jk_uri_worker_map.c (601): Attempting to map context URI '/status=status' source 'JkMount' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] map_uri_to_worker::jk_uri_worker_map.c (601): Attempting to map context URI '/*=test' source 'JkMount' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] map_uri_to_worker::jk_uri_worker_map.c (616): Found a wildchar match '/*=test' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] jk_handler::mod_jk.c (2111): Into handler jakarta-servlet worker=test r-proxyreq=0 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] wc_get_worker_for_name::jk_worker.c (114): found a worker test [Thu Aug 02 16:52:09 2007] [1970:8] [debug] maintain_workers::jk_lb_worker.c (543): decay with 2^38 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] wc_get_name_for_type::jk_worker.c (290): Found worker type 'lb' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] init_ws_service::mod_jk.c (607): Service protocol=HTTP/1.1 method=GET host=(null) addr=192.168.10.2name= portal.inca.it port=80 auth=(null) user=(null) laddr=192.168.10.201 raddr= 192.168.10.2 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] service::jk_lb_worker.c (915): service sticky_session=1 id='64EEDE6D4E3C9EF3A2048741CDA5C189' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] get_most_suitable_worker::jk_lb_worker.c (767): searching worker for partial sessionid 64EEDE6D4E3C9EF3A2048741CDA5C189 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] get_most_suitable_worker::jk_lb_worker.c (819): found best worker portal2 (portal2) using method 'Request' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] service::jk_lb_worker.c (935): service worker=portal2 route=portal2 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_get_endpoint::jk_ajp_common.c (2343): acquired connection pool slot=0 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_marshal_into_msgb::jk_ajp_common.c (548): ajp marshaling done [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_service::jk_ajp_common.c (1796): processing portal2 with 2 retries [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ws_write::mod_jk.c (452): written 274 out of 274 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_connection_tcp_get_message::jk_ajp_common.c (1043): received from ajp13 pos=0 len=2 max=8192 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_connection_tcp_get_message::jk_ajp_common.c (1043): 05 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 - [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_process_callback::jk_ajp_common.c (1506): AJP13 protocol: Reuse is OK [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_done::jk_ajp_common.c (2286): recycling connection pool slot=0 for worker portal2 [Thu Aug 02 16:52:09 2007] test portal.inca.it 0.005241 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] jk_handler::mod_jk.c (2238): Service finished with status=200 for worker=test Any
Re: mod_jk sticky sessions don't work
If you configured jvmRoute in server.xml correctly, Tomcat should append .portal1 resp. .portal2 to the session IDs on portal 1 resp. portal2. From hte log it looks like this is not happening. So I suspect, either something is wrong with your server.xml, or you are talking to another Tomcat, or the server.xml wasn't used during the last restart etc. Before stickyness can work, you need to make jvmRoute in server.xml work. To check, if it works, you don't need to use the web server each time. You can also connect directly via http to the Tomcat http connector and check the ID in the JSESSIONID cookie. Regards, Rainer Claudio Tassini wrote: Hi all! I'm trying to configure mod_jk to handle balance two apache-tomcat instances through an Apache reverse proxy, i read all the documentation, reference guides and howtos i found but it still doesn't work... Below are some configuration I'm using. The symptoms are that I connect with a browser to a jsp page that prints out the tomcat server that is managing the session, and the relative session ID. Every time I refresh the page, the server name and the sessionID change. I'm using apache httpd 2.2.4 build from source, mod_jk 1.2.23 and apache-tomcat 5.5.23 . Now, this is the httpd.conf (relevant parts only): JkWorkersFile /usr/local/apache2/conf/workers.properties JkShmFile /usr/local/apache2/logs/mod_jk.shm JkLogFile /usr/local/apache2/logs/mod_jk.log JkLogLeveldebug JkLogStampFormat [%a %b %d %H:%M:%S %Y] JkOptions +ForwardKeySize +ForwardURICompatUnparsed -ForwardDirectories JkRequestLogFormat %w %V %T NameVirtualHost *:80 VirtualHost *:80 ServerName portal.domain.it JkMount /status status JkMount /* test /VirtualHost The workers.properties: worker.list=test worker.portal1.port=8009 worker.portal1.host=inca-portal1 worker.portal1.type=ajp13 worker.portal1.lbfactor=1 worker.portal2.port=8009 worker.portal2.host=inca-portal2 worker.portal2.type=ajp13 worker.portal2.lbfactor=1 worker.test.type=lb worker.test.balance_workers=portal1,portal2 worker.test.sticky_session=True And, finally, I changed the tomcat server.xml file: !-- Define an AJP 1.3 Connector on port 8009 -- Connector port=8009 enableLookups=false redirectPort=8443 protocol=AJP/1.3 / Engine name=Standalone defaultHost=localhost jvmRoute=portal1 debug=1 / Finally, this is a piece of the log saying that he founds a certain session ID, and then he sends the request to the other server which then obviously sets a new JSESSIONID... : [Thu Aug 02 16:52:09 2007] [1970:8] [debug] map_uri_to_worker::jk_uri_worker_map.c (589): Attempting to map URI '/jsp-examples/sesstest.jsp' from 2 maps [Thu Aug 02 16:52:09 2007] [1970:8] [debug] map_uri_to_worker::jk_uri_worker_map.c (601): Attempting to map context URI '/status=status' source 'JkMount' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] map_uri_to_worker::jk_uri_worker_map.c (601): Attempting to map context URI '/*=test' source 'JkMount' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] map_uri_to_worker::jk_uri_worker_map.c (616): Found a wildchar match '/*=test' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] jk_handler::mod_jk.c (2111): Into handler jakarta-servlet worker=test r-proxyreq=0 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] wc_get_worker_for_name::jk_worker.c (114): found a worker test [Thu Aug 02 16:52:09 2007] [1970:8] [debug] maintain_workers::jk_lb_worker.c (543): decay with 2^38 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] wc_get_name_for_type::jk_worker.c (290): Found worker type 'lb' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] init_ws_service::mod_jk.c (607): Service protocol=HTTP/1.1 method=GET host=(null) addr=192.168.10.2name= portal.inca.it port=80 auth=(null) user=(null) laddr=192.168.10.201 raddr= 192.168.10.2 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] service::jk_lb_worker.c (915): service sticky_session=1 id='64EEDE6D4E3C9EF3A2048741CDA5C189' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] get_most_suitable_worker::jk_lb_worker.c (767): searching worker for partial sessionid 64EEDE6D4E3C9EF3A2048741CDA5C189 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] get_most_suitable_worker::jk_lb_worker.c (819): found best worker portal2 (portal2) using method 'Request' [Thu Aug 02 16:52:09 2007] [1970:8] [debug] service::jk_lb_worker.c (935): service worker=portal2 route=portal2 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_get_endpoint::jk_ajp_common.c (2343): acquired connection pool slot=0 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_marshal_into_msgb::jk_ajp_common.c (548): ajp marshaling done [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_service::jk_ajp_common.c (1796): processing portal2 with 2 retries [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ws_write::mod_jk.c (452): written 274 out of 274 [Thu Aug 02 16:52:09 2007] [1970:8] [debug] ajp_connection_tcp_get_message::jk_ajp_common.c (1043):
Re: BasicDataSourceFactory.class where? (Tomcat 5.5, RHEL)
David Smith wrote: ... or at least post your question on a Redhat or jPackage list. We're not known for being all warm and fuzzy toward the tomcat rpm install packages. They've done things to tomcat in the process of packaging I know I wouldn't recommend. Apparently, yes. Using a plain Tomcat distribution made this indeed easier. Thanks for your help! (And to Chuck, too!) Regards, Juergen. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: New Problem to configure servlet on Tomcat
Just read: Can't find bundle for base name LocalStrings, locale it_IT in other words, you are missing ressource bundle LocalString_it.properties or LocalString_it_IT.properties check your code and your files. Fabbris Pierluigi a écrit : Hi, I've configured Servlet on Tomcat, and more problem I've resolved, but I've this problem: HTTP Status 500 - *type* Exception report *message* *description* _The server encountered an internal error () that prevented it from fulfilling this request._ *exception* java.util.MissingResourceException: Can't find bundle for base name LocalStrings, locale it_IT java.util.ResourceBundle.throwMissingResourceException(Unknown Source) java.util.ResourceBundle.getBundleImpl(Unknown Source) java.util.ResourceBundle.getBundle(Unknown Source) HelloWorldExample.doGet(HelloWorldExample.java:39) javax.servlet.http.HttpServlet.service(HttpServlet.java:690) javax.servlet.http.HttpServlet.service(HttpServlet.java:803) org.apache.catalina.servlets.InvokerServlet.serveRequest(InvokerServlet.java:402) org.apache.catalina.servlets.InvokerServlet.doGet(InvokerServlet.java:134) javax.servlet.http.HttpServlet.service(HttpServlet.java:690) javax.servlet.http.HttpServlet.service(HttpServlet.java:803) *note* _The full stack trace of the root cause is available in the Apache Tomcat/6.0.13 logs._ Apache Tomcat/6.0.13 Why? How can I resolve this? Tank for the help you give me. Sincerally yours, Fabbris Pierluigi - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
javax.servlet.ServletException: Cannot allocate servlet instance for path /servlet/HelloWorld
Hi, I've a problem with test of Servlet. I created a Hello World Severlet in the directory classes on Tomcat. I've try with: http://localhost:8080/servlet/Helloworld, but I've this Excpetion: javax.servlet.ServletException: Cannot allocate servlet instance for path /servlet/HelloWorld org.apache.catalina.servlets.InvokerServlet.serveRequest(InvokerServlet.java:380) org.apache.catalina.servlets.InvokerServlet.doGet(InvokerServlet.java:134) javax.servlet.http.HttpServlet.service(HttpServlet.java:690) javax.servlet.http.HttpServlet.service(HttpServlet.java:803) *root cause* java.lang.IllegalAccessException: Class org.apache.catalina.core.StandardWrapper can not access a member of class HelloWorld with modifiers sun.reflect.Reflection.ensureMemberAccess(Unknown Source) java.lang.Class.newInstance0(Unknown Source) java.lang.Class.newInstance(Unknown Source) org.apache.catalina.servlets.InvokerServlet.serveRequest(InvokerServlet.java:361) org.apache.catalina.servlets.InvokerServlet.doGet(InvokerServlet.java:134) javax.servlet.http.HttpServlet.service(HttpServlet.java:690) javax.servlet.http.HttpServlet.service(HttpServlet.java:803) Why? And how I remove this problem? Tanks for the help that you give me. Sincerally yours, Fabbris Pierluigi - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Optional authentication
Hello, I would like to be able to require authentication optionally and make my servlets or JSPs behave differently depending on which Principals they get. For example, I'd like a GET to be able to return a 200 status and not 401, even if the user has not been authenticated. Presumably, this is similar to what happens on web sites that say in a corner You're not logged in, but still display some information (e.g. forums). I've managed to set up authentication using either HTTP Basic or SSL client certificates. However, I'm not sure if there are mechanisms to let the servlet handle the roles and restrictions manually, for example using request.getUserPrincipal(). When I use this type of configuration: security-constraint web-resource-collection web-resource-nameTest/web-resource-name url-pattern/*/url-pattern /web-resource-collection auth-constraint role-nameuser/role-name /auth-constraint /security-constraint login-config auth-methodCLIENT-CERT/auth-method /login-config the authentication works, but removing the auth-constraint / element removes any authentication challenge, even if, in this case, a recognised SSL client certificate is used (whether using clientAuth=true or clientAuth=want). I'd also like the solution not to rely on request.getAttribute(javax.servlet.request.X509Certificate), as I'd like to be able to keep the abstraction provided by auth-method /, etc. Any suggestions? I might have missed something in the documentation. Best wishes, Bruno. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Question on JVM maximum heap size parameter in tomcat
Hi, I am using tomcat5.0 web server in Linux. At the time of tomcat startup, the maximum heap size for JVM is specified using Xmx parameter in catalina.sh, for e.g. java -Xms128m -Xmx1337m -classpath jre/lib/tools.jar:tomcat/bin/bootstrap.jar org.apache.catalina.startup.Bootstrap start The issue I found in some linux machines is that if Xmx parameter is too high, The tomcat does not startup and the tomcat log entry is as below Error occurred during initialization of VM. Could not reserve enough space for object heap. When Xmx parameter value is reduced manually then only tomcat works. For example, in one scenario, the total physical memory of the machine was 4GB, Xmx parameter was 2640MB, but tomcat did not start and I got the message as above. When I reduced the Xmx parameter to 1.5GB, then the tomcat was Started. I am looking for logic to specifying the optimal value for Xmx parameter so that the parameter need not be changed manually. In other words, is there any relationship between optimal Xmx value and some of the rseources in machine like total physical memory, available physical memory, swap space etc. Couple of observations that I had: 1. For 32 bit processors the maximum heap size can be specified is 1.8GB. But tomcat can use both 32 bit processor as well as 64 bit processor 2. When I gradually increase the Xmx parameter and start tomcat, just after the maximum Value of Xmx parameter for which tomcat works, I find a Error message like Exception in thread CompilerThread1 java.lang.OutOfMemoryError: requested 1292 36 bytes for Chunk::new. Out of swap space? So, it seems to me that Java Virtual machine uses swap space as well as available Physical memory for allocating maximum Heap size. So, I am looking for the logic for specifying optimum value for Xmx parameter which I can specify without any manual intervention. Please provide me any help on this. Thanks Monimoy ___ Yahoo! Answers - Got a question? Someone out there knows the answer. Try it now. http://uk.answers.yahoo.com/ - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [NOT SOLVED]Tomcat native library Not found in Solaris 9
Thanks for your reply! I will try the steps suggested below. Lakshmi -Original Message- From: Rainer Jung [mailto:[EMAIL PROTECTED] Sent: Thursday, August 02, 2007 2:20 AM To: Tomcat Users List Subject: Re: [NOT SOLVED]Tomcat native library Not found in Solaris 9 Hi, first of all: this is a gcc question. If you search for a high quality answer, you should contact the gcc commmunity. My personal way to do this (and there is definitely more than one wait to do it): export CC=gcc -specs=/path/to/my/specs Contents of file /path/to/my/specs: *libgcc: -lgcc -lgcc_eh Now whenever you use a build system, that respects the CC env variable (e.g. most configure based systems), libgcc should get compiled in statically. Regards, Rainer Lakshmi Venkataraman wrote: Please give me some tips for compiling libtcnative on Solaris 9 without the dynamic dependence on libgcc_s.1.so. We ship tomcat with our product. On customer installations, we cannot assume that libgcc_s will be found in some standard location. I have searched a lot on the web. I am also trying to compile gcc with --disable-shared option. I am running into some issues while trying to compile gcc. 1) How to modify Tomcat native's configure script to link libgcc statically? 2) What are the prerequisites before doing step 1)? We are using Tomcat 5.5.23. I am using tcnative-1.1.8-src with OpenSSL-0.9.8b. --Thanks Lakshmi - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: javax.servlet.ServletException: Cannot allocate servlet instancefor path /servlet/HelloWorld
From: Fabbris Pierluigi [mailto:[EMAIL PROTECTED] Subject: javax.servlet.ServletException: Cannot allocate servlet instancefor path /servlet/HelloWorld java.lang.IllegalAccessException: Class org.apache.catalina.core.StandardWrapper can not access a member of class HelloWorld with modifiers You've likely not used the public modifier on your doGet(), etc., methods. If that's not the case, post your servlet code to the list. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat IIS Redirector Issues with SSL and Query Strings
Team, We have been using the Tomcat Redirector in our Dev environment and even our local machines while developing code. We have a classic ASP site that works with JSP hosted by Tomcat. The redirector has been working in these two environments fine, but when we move our code to Certification, it fails to read any query string parameters. Basically all the standard JSP works just fine through the ISAPI redirector, but when it goes through https://hostname/somefolder/filename.jsp?par_name=value, the query string gets truncated or something. We get a Page Cannot Be Displayed error (404) from IIS. Take off the Query String Parameter from the URL and the page loads fine, but our code referencing the lacking query string cannot do its job. I am curious if you have suggestions related to this problem. I cannot find anything on the web related to this. Thank you, -- Antonio Santana 214-403-5266 cell 817-741-5266 home 682-605-2423 office
Re: Tomcat IIS Redirector Issues with SSL and Query Strings
Please post your configuration. If the configuration is fine, set your redirector log level to debug, do one request with http and query parameter, one with https and query parameter and a third with https without query parameter and let us have a look at the redirector log file. Regards, Rainer Antonio Santana wrote: Team, We have been using the Tomcat Redirector in our Dev environment and even our local machines while developing code. We have a classic ASP site that works with JSP hosted by Tomcat. The redirector has been working in these two environments fine, but when we move our code to Certification, it fails to read any query string parameters. Basically all the standard JSP works just fine through the ISAPI redirector, but when it goes through https://hostname/somefolder/filename.jsp?par_name=value, the query string gets truncated or something. We get a Page Cannot Be Displayed error (404) from IIS. Take off the Query String Parameter from the URL and the page loads fine, but our code referencing the lacking query string cannot do its job. I am curious if you have suggestions related to this problem. I cannot find anything on the web related to this. Thank you, - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [OT] Question on JVM maximum heap size parameter in tomcat
From: Monimoy Deb [mailto:[EMAIL PROTECTED] Subject: Question on JVM maximum heap size parameter in tomcat So, I am looking for the logic for specifying optimum value for Xmx parameter which I can specify without any manual intervention. This has nothing to do with Tomcat per se, but rather with JVM operation. Maximum heap size also has nothing to do with the amount of RAM on your system. Instead, it is limited by the largest contiguous are available within the process virtual space. On most 32-bit systems, the process virtual space is limited to 2 GB, but some of this must be allocated to code and data structures necessary for operation of the process. Fragmentation may also occur within the process virtual space, further limiting the maximum heap size. The amount of RAM does come into play when taking performance into account, of course, since a heap that exceeds the available RAM is likely to suffer from significant paging activity. The net result is that there is no guaranteed or automatically calculable maximum heap setting - you have to experiment for the platform you're running on. - Chuck P.S. Things work better when -Xms = -Xmx. THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
javax.servlet.ServletException: Cannot allocate servlet instancefor path /servlet/HelloWorld (repost I don't resolve the problem with your reply)
Hi, I've read the reply for the my question about javax.servlet.ServletException: Cannot allocate servlet instancefor path /servlet/HelloWorld. I ask again because I don't understand how apply it. *My Exception is:* HTTP Status 500 - *type* Exception report *message* *description* _The server encountered an internal error () that prevented it from fulfilling this request._ *exception* javax.servlet.ServletException: Cannot allocate servlet instance for path /servlet/HelloWorld org.apache.catalina.servlets.InvokerServlet.serveRequest(InvokerServlet.java:380) org.apache.catalina.servlets.InvokerServlet.doGet(InvokerServlet.java:134) javax.servlet.http.HttpServlet.service(HttpServlet.java:690) javax.servlet.http.HttpServlet.service(HttpServlet.java:803) *root cause* java.lang.IllegalAccessException: Class org.apache.catalina.core.StandardWrapper can not access a member of class HelloWorld with modifiers sun.reflect.Reflection.ensureMemberAccess(Unknown Source) java.lang.Class.newInstance0(Unknown Source) java.lang.Class.newInstance(Unknown Source) org.apache.catalina.servlets.InvokerServlet.serveRequest(InvokerServlet.java:361) org.apache.catalina.servlets.InvokerServlet.doGet(InvokerServlet.java:134) javax.servlet.http.HttpServlet.service(HttpServlet.java:690) javax.servlet.http.HttpServlet.service(HttpServlet.java:803) *note* _The full stack trace of the root cause is available in the Apache Tomcat/6.0.13 logs._ Apache Tomcat/6.0.13 *My first servlet in directory classes is:* class HelloWorld { public static void main(String[] args) { System.out.println(Hello World!); } } *The web.xml is:* ?xml version=1.0 encoding=ISO-8859-1? web-app xmlns=http://java.sun.com/xml/ns/javaee; xmlns:xsi=http://www.w3.org/2001/XMLSchema-instance; xsi:schemaLocation=http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd; version=2.5 !-- Introduction == -- !-- This document defines default values for *all* web applications -- !-- loaded into this instance of Tomcat. As each application is -- !-- deployed, this file is processed, followed by the-- !-- /WEB-INF/web.xml deployment descriptor from your own -- !-- applications.-- !-- -- !-- WARNING: Do not configure application-specific resources here! -- !-- They should go in the /WEB-INF/web.xml file in your application. -- !-- == Built In Servlet Definitions -- !-- The default servlet for all web applications, that serves static -- !-- resources. It processes all requests that are not mapped to other -- !-- servlets with servlet mappings (defined either here or in your own -- !-- web.xml file. This servlet supports the following initialization-- !-- parameters (default values are in square brackets): -- !-- -- !-- debug Debugging detail level for messages logged -- !-- by this servlet. [0] -- !-- -- !-- fileEncodingEncoding to be used to read static resources -- !-- [platform default] -- !-- -- !-- input Input buffer size (in bytes) when reading -- !-- resources to be served. [2048]-- !-- -- !-- listingsShould directory listings be produced if there -- !-- is no welcome file in this directory? [false] -- !-- WARNING: Listings for directories with many-- !-- entries can be slow and may consume-- !-- significant proportions of server resources. -- !-- -- !-- output Output buffer size (in bytes) when writing -- !-- resources to be served. [2048]-- !-- -- !-- readonlyIs this context read only, so HTTP -- !-- commands like PUT and DELETE are --
Re: Tomcat IIS Redirector Issues with SSL and Query Strings
The main unique thing we have with IIS is a redirector on port 80 traffic so it is forced to 443 (SSL). Here is the log: [Thu Aug 02 14:20:53 2007] [5856:3368] [debug] map_uri_to_worker::jk_uri_worker_map.c (449): Attempting to map URI '/eservices-cert.sabre.com/jtest/john/jp.jsp' from 7 maps [Thu Aug 02 14:20:53 2007] [5856:3368] [debug] map_uri_to_worker::jk_uri_worker_map.c (461): Attempting to map context URI '/jkmanager' [Thu Aug 02 14:20:53 2007] [5856:3368] [debug] map_uri_to_worker::jk_uri_worker_map.c (461): Attempting to map context URI '/*/*.jsp' [Thu Aug 02 14:20:53 2007] [5856:3368] [debug] map_uri_to_worker::jk_uri_worker_map.c (475): Found a wildchar match wlb - /*/*.jsp [Thu Aug 02 14:20:53 2007] [5856:3368] [debug] HttpFilterProc::jk_isapi_plugin.c (831): check if [/jtest/john/jp.jsp] is points to the web-inf directory [Thu Aug 02 14:20:53 2007] [5856:3368] [debug] HttpFilterProc::jk_isapi_plugin.c (849): [/jtest/john/jp.jsp] is a servlet url - should redirect to wlb [Thu Aug 02 14:41:21 2007] [5856:7368] [debug] close_workers::jk_worker.c (212): close_workers will destroy worker wlb [Thu Aug 02 14:41:21 2007] [5856:7368] [debug] ajp_destroy::jk_ajp_common.c (2012): up to 10 endpoints to close [Thu Aug 02 14:41:21 2007] [5856:7368] [debug] ajp_close_endpoint::jk_ajp_common.c (723): closed socket with sd = 1624 [Thu Aug 02 14:41:21 2007] [5856:7368] [debug] close_workers::jk_worker.c (212): close_workers will destroy worker jkstatus [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] jk_shm_open::jk_shm.c (91): Initialized shared memory size=66560 free=65536 addr=0x18f0048 [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] init_jk::jk_isapi_plugin.c (1136): Using registry. [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] init_jk::jk_isapi_plugin.c (1139): Using log file D:\Program Files\Apache Software Foundation\Jakarta Isapi Redirector\log\isapi_redirect.log. [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] init_jk::jk_isapi_plugin.c (1140): Using log level 1. [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] init_jk::jk_isapi_plugin.c (1141): Using extension uri /jakarta/isapi_redirect.dll. [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] init_jk::jk_isapi_plugin.c (1142): Using worker file D:\Program Files\Apache Software Foundation\Jakarta Isapi Redirector\conf\workers.properties.minimal. [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] init_jk::jk_isapi_plugin.c (1143): Using worker mount file D:\Program Files\Apache Software Foundation\Jakarta Isapi Redirector\conf\uriworkermap.properties. [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] init_jk::jk_isapi_plugin.c (1145): Using uri select 0. [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] uri_worker_map_add::jk_uri_worker_map.c (260): wildchar rule /*/*.jsp=wlb was added [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] uri_worker_map_add::jk_uri_worker_map.c (260): wildchar rule /*/*.e=wlb was added [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] uri_worker_map_add::jk_uri_worker_map.c (260): wildchar rule /*/*.es=wlb was added [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] uri_worker_map_add::jk_uri_worker_map.c (260): wildchar rule /*/*.esv=wlb was added [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] uri_worker_map_add::jk_uri_worker_map.c (260): wildchar rule /*/*.xml=wlb was added [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] uri_worker_map_add::jk_uri_worker_map.c (260): wildchar rule /servlets-examples/*.jpeg=wlb was added [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] uri_worker_map_add::jk_uri_worker_map.c (268): exact rule /jkmanager=jkstatus was added [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] build_worker_map::jk_worker.c (236): creating worker wlb [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] wc_create_worker::jk_worker.c (141): about to create instance wlb of lb [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] wc_create_worker::jk_worker.c (154): about to validate and init wlb [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] wc_create_worker::jk_worker.c (141): about to create instance ajp13w of ajp13 [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] wc_create_worker::jk_worker.c (154): about to validate and init ajp13w [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] ajp_validate::jk_ajp_common.c (1806): worker ajp13w contact is 'localhost:8009' [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] ajp_init::jk_ajp_common.c (1895): setting socket keepalive to 0 [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] ajp_init::jk_ajp_common.c (1934): setting socket timeout to -1 [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] ajp_init::jk_ajp_common.c (1938): setting socket buffer size to 0 [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] ajp_init::jk_ajp_common.c (1942): setting connection recycle timeout to 0 [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] ajp_init::jk_ajp_common.c (1946): setting cache timeout to 0 [Thu Aug 02 15:05:27 2007] [8096:3284] [debug] ajp_init::jk_ajp_common.c (1950): setting connect timeout to 0 [Thu Aug 02 15:05:27 2007] [8096:3284]
Installing Tomcat on Linux
I am going to install Tomcat standalone (not fronted by Apache) on a Linux box that will eventually be opened up to small portion of the outside world. I am a developer and as such haven't ever done anything with Tomcat except install the binaries on my Windows machine and run it locally for development purposes. A coworker claims that all unix admins should never install open source binaries. They should build using the source. Looking for a concensus. Is it ok to install the Tomcat binaries or should I build using the Tomcat source then install? Reasons why? Thanks! Nick
Re: javax.servlet.ServletException: Cannot allocate servlet instancefor path /servlet/HelloWorld (repost I don't resolve the problem with your reply)
On 8/2/07, Fabbris Pierluigi [EMAIL PROTECTED] wrote: javax.servlet.ServletException: Cannot allocate servlet instance for path /servlet/HelloWorld *My first servlet in directory classes is:* Uh, well -- this *isn't* a servlet. I'm guessing that's the problem :-) javax.servlet.Servlet is an interface -- your servlet needs to extend it (actually HttpServlet in this case). class HelloWorld { public static void main(String[] args) { System.out.println(Hello World!); } } See the examples packaged with Tomcat, and take a look at the Servlet Spec JavaDocs. HTH, -- Hassan Schroeder [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Installing Tomcat on Linux
I would question his reason for this statement A coworker claims that all unix admins should never install open source binaries. They should build using the source. On 8/2/07, Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: I am going to install Tomcat standalone (not fronted by Apache) on a Linux box that will eventually be opened up to small portion of the outside world. I am a developer and as such haven't ever done anything with Tomcat except install the binaries on my Windows machine and run it locally for development purposes. A coworker claims that all unix admins should never install open source binaries. They should build using the source. Looking for a concensus. Is it ok to install the Tomcat binaries or should I build using the Tomcat source then install? Reasons why? Thanks! Nick - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Using HSQLDB for Authentication
I am trying to use HSQLDB for container authentication in Tomcat. When I start Tomcat, I get this message in the catalina.-MM-DD.log: INFO: Starting Servlet Engine: Apache Tomcat/5.5.23 Aug 2, 2007 3:10:29 PM org.apache.catalina.realm.JDBCRealm start SEVERE: Exception opening database connection java.sql.SQLException: The database is already in use by another process: [EMAIL PROTECTED] =\\localhost\data\Auth.lck, exists=false, locked=false, valid=false, fl =null]: java.io.FileNotFoundException: \\localhost\data\Auth.lck (The network path was not found) Apparently, Tomcat cannot find my database files. Without success, I have located them in various places: webbapps/MyApp/WEB-INF/data webbapps/MyApp/WEB-INF/classes/data webbapps/MyApp/WEB-INF/lib/data webapps/data I am using the following connectionURL: connectionURL=jdbc:hsqldb://localhost/data/Auth where Auth is the name of my HSQLDB database with the following files: data/Auth.log data/Auth.properties data/Auth.script I setup my realm in server.xml as follows: Realm className=org.apache.catalina.realm.JDBCRealm driverName=org.hsqldb.jdbcDriver connectionURL=jdbc:hsqldb://localhost/data/Auth connectionName=SA connectionPassword= userTable=USER userNameCol=USERNAME userCredCol=PASSWORD userRoleTable=USER_ROLE roleNameCol=ROLENAME / Can someone tell me where to put the database files so Tomcat can find them? I am using Tomcat 5.5. -- Robert Emmons, P.E., Aurigen Inc. [EMAIL PROTECTED], http://www.aurigen.com Computer Programming and Consulting - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Installing Tomcat on Linux
Here are some quotes from this person: You are trusting that someone built the binaries directly from the source code without any additional modification or back-doors built in. Also building from the source allows you to either specify the default build or add/subtract modules/functionality that you want or don't want. The only sys admins I know of that install from binaries on Linux machines are the lazy ones or the ones that have no clue what they are doing. I would never install open source from binaries on a machine I did not want someone to break into. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] rg] On Behalf Of ben short Sent: Thursday, August 02, 2007 4:44 PM To: Tomcat Users List Subject: Re: Installing Tomcat on Linux I would question his reason for this statement A coworker claims that all unix admins should never install open source binaries. They should build using the source. On 8/2/07, Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: I am going to install Tomcat standalone (not fronted by Apache) on a Linux box that will eventually be opened up to small portion of the outside world. I am a developer and as such haven't ever done anything with Tomcat except install the binaries on my Windows machine and run it locally for development purposes. A coworker claims that all unix admins should never install open source binaries. They should build using the source. Looking for a concensus. Is it ok to install the Tomcat binaries or should I build using the Tomcat source then install? Reasons why? Thanks! Nick - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Installing Tomcat on Linux
On 8/2/07, Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: A coworker claims that all unix admins should never install open source binaries. They should build using the source. Looking for a concensus. Is it ok to install the Tomcat binaries or should I build using the Tomcat source then install? Reasons why? Install the binary and be done. I've never built Tomcat from source, but I've heard the pain in the voices of those who've tried. The sound haunts me yet :-) Seriously, if I were installing Apache httpd, or PHP, something with a gazillion options -- sure, I always build from source, so I have just what I want and no more included. Tomcat's nothing like that. And yes, you're trusting that the checksum on the download page matches the signature on the downloaded tar file, which is good enough for most folks. :-) YMMV, -- Hassan Schroeder [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Installing Tomcat on Linux
On 8/2/07, Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: Here are some quotes from this person: You are trusting that someone built the binaries directly from the source code without any additional modification or back-doors built in. Flip side: you have gone through the *entire source tree* that you've downloaded *file by file* and *can personally confirm* that there are no additional modifications or back-doors. Oh, yeah, baby. Leaving aside the question of where you get the master source to compare to, and how you confirm that *it* hasn't been tampered with... But I'd love to know how many packages your co-worker is willing to personally vouch for. :-) heh. -- Hassan Schroeder [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Installing Tomcat on Linux
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Nicholas, Vigorito, Nicholas E. wrote: You are trusting that someone built the binaries directly from the source code without any additional modification or back-doors built in. True. But then again, you are trusting commercial companies to do the same. Also, are you really going to read every source file to make sure that there are no back doors built-in? If you trust the source, why not trust the binary? You can always make sure that a mirror isn't serving a Trojan'd binary by comparing the digital signature of the file you download with the official signature on the Tomcat website. Also building from the source allows you to either specify the default build or add/subtract modules/functionality that you want or don't want. This guy must be a Gentoo fan ;) (Seriously, though, I love Gentoo.) Tomcat pretty much has no optional components. Sure, there are lots of Valves and stuff not enabled by default, but their presence doesn't slow anything down since they're not active. I suppose you could argue that few could save a few megabytes of disk space by removing some of the unused portions, but it's really just not worth it. The only sys admins I know of that install from binaries on Linux machines are the lazy ones or the ones that have no clue what they are doing. Heh. Building from source can be seriously tedious, especially when your package management utility isn't designed to do it gracefully (apt-get: I'm looking at /you/). Any system administrator that just downloads tarballs and builds/installs from them is seriously wasting their time. I would never install open source from binaries on a machine I did not want someone to break into. Sounds like rampant paranoia to me. Want my advice? Install Tomcat as a binary package. You get no benefit whatsoever from compiling it yourself IMO. Tell your sysadmin friend that he can build you a binary once he finishes his code audit of the source he downloads. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGsk8c9CaO5/Lv0PARAnY1AJ48lJcgAVXBf+AupoQpvTq7H5uXdQCbBZO4 jQjskp7P/2rIoYlClqQUPJs= =gzEz -END PGP SIGNATURE- - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Installing Tomcat on Linux
LOL, I would ask him if he sits there and examines all the code of everything that is on his system. On 2 Aug 2007 at 16:49, Vigorito, Nicholas E. wrote: Here are some quotes from this person: You are trusting that someone built the binaries directly from the source code without any additional modification or back-doors built in. Also building from the source allows you to either specify the default build or add/subtract modules/functionality that you want or don't want. The only sys admins I know of that install from binaries on Linux machines are the lazy ones or the ones that have no clue what they are doing. I would never install open source from binaries on a machine I did not want someone to break into. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] .o rg] On Behalf Of ben short Sent: Thursday, August 02, 2007 4:44 PM To: Tomcat Users List Subject: Re: Installing Tomcat on Linux I would question his reason for this statement A coworker claims that all unix admins should never install open source binaries. They should build using the source. On 8/2/07, Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: I am going to install Tomcat standalone (not fronted by Apache) on a Linux box that will eventually be opened up to small portion of the outside world. I am a developer and as such haven't ever done anything with Tomcat except install the binaries on my Windows machine and run it locally for development purposes. A coworker claims that all unix admins should never install open source binaries. They should build using the source. Looking for a concensus. Is it ok to install the Tomcat binaries or should I build using the Tomcat source then install? Reasons why? Thanks! Nick - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Optional authentication
Bruno Harbulot [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] Hello, I would like to be able to require authentication optionally and make my servlets or JSPs behave differently depending on which Principals they get. For example, I'd like a GET to be able to return a 200 status and not 401, even if the user has not been authenticated. Presumably, this is similar to what happens on web sites that say in a corner You're not logged in, but still display some information (e.g. forums). I've managed to set up authentication using either HTTP Basic or SSL client certificates. However, I'm not sure if there are mechanisms to let the servlet handle the roles and restrictions manually, for example using request.getUserPrincipal(). When I use this type of configuration: security-constraint web-resource-collection web-resource-nameTest/web-resource-name url-pattern/*/url-pattern /web-resource-collection auth-constraint role-nameuser/role-name /auth-constraint /security-constraint login-config auth-methodCLIENT-CERT/auth-method /login-config the authentication works, but removing the auth-constraint / element removes any authentication challenge, even if, in this case, a recognised SSL client certificate is used (whether using clientAuth=true or clientAuth=want). I'd also like the solution not to rely on request.getAttribute(javax.servlet.request.X509Certificate), as I'd like to be able to keep the abstraction provided by auth-method /, etc. Any suggestions? I might have missed something in the documentation. You haven't missed anything. Tomcat simply doesn't try to authenticate a user if authentication isn't required. Simplest and most portable is to create a Filter that is configured as the first filter, and takes an auth-method init param to tell it what to use, and then wraps the request in a HttpServletWrapper that overrided getUserPrincipal before sending it on it's way. Other options include extending one or more of Tomcat's Authenticators, and configuring your app to use your Authenticator rather than Tomcat's. Best wishes, Bruno. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Installing Tomcat on Linux
Exactly. Wade --- Hassan Schroeder [EMAIL PROTECTED] wrote: On 8/2/07, Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: Here are some quotes from this person: You are trusting that someone built the binaries directly from the source code without any additional modification or back-doors built in. Flip side: you have gone through the *entire source tree* that you've downloaded *file by file* and *can personally confirm* that there are no additional modifications or back-doors. Oh, yeah, baby. Leaving aside the question of where you get the master source to compare to, and how you confirm that *it* hasn't been tampered with... But I'd love to know how many packages your co-worker is willing to personally vouch for. :-) heh. -- Hassan Schroeder [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Installing Tomcat on Linux
My first question would be: Do you examine every line of code in these sources you compile? Then: If not, if you get the same sources and binaries from the same location, what is the difference? Most admins i know, who get sources and build them, do not know all the ins and outs of the application they are compiling. Wade --- Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: Here are some quotes from this person: You are trusting that someone built the binaries directly from the source code without any additional modification or back-doors built in. Also building from the source allows you to either specify the default build or add/subtract modules/functionality that you want or don't want. The only sys admins I know of that install from binaries on Linux machines are the lazy ones or the ones that have no clue what they are doing. I would never install open source from binaries on a machine I did not want someone to break into. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] rg] On Behalf Of ben short Sent: Thursday, August 02, 2007 4:44 PM To: Tomcat Users List Subject: Re: Installing Tomcat on Linux I would question his reason for this statement A coworker claims that all unix admins should never install open source binaries. They should build using the source. On 8/2/07, Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: I am going to install Tomcat standalone (not fronted by Apache) on a Linux box that will eventually be opened up to small portion of the outside world. I am a developer and as such haven't ever done anything with Tomcat except install the binaries on my Windows machine and run it locally for development purposes. A coworker claims that all unix admins should never install open source binaries. They should build using the source. Looking for a concensus. Is it ok to install the Tomcat binaries or should I build using the Tomcat source then install? Reasons why? Thanks! Nick - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Installing Tomcat on Linux
heh heh, from my experience with system admins, I will be willing to bet the answer is no, unless he is telling a big one ;-) Wade --- Steve Ochani [EMAIL PROTECTED] wrote: LOL, I would ask him if he sits there and examines all the code of everything that is on his system. On 2 Aug 2007 at 16:49, Vigorito, Nicholas E. wrote: Here are some quotes from this person: You are trusting that someone built the binaries directly from the source code without any additional modification or back-doors built in. Also building from the source allows you to either specify the default build or add/subtract modules/functionality that you want or don't want. The only sys admins I know of that install from binaries on Linux machines are the lazy ones or the ones that have no clue what they are doing. I would never install open source from binaries on a machine I did not want someone to break into. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] .o rg] On Behalf Of ben short Sent: Thursday, August 02, 2007 4:44 PM To: Tomcat Users List Subject: Re: Installing Tomcat on Linux I would question his reason for this statement A coworker claims that all unix admins should never install open source binaries. They should build using the source. On 8/2/07, Vigorito, Nicholas E. [EMAIL PROTECTED] wrote: I am going to install Tomcat standalone (not fronted by Apache) on a Linux box that will eventually be opened up to small portion of the outside world. I am a developer and as such haven't ever done anything with Tomcat except install the binaries on my Windows machine and run it locally for development purposes. A coworker claims that all unix admins should never install open source binaries. They should build using the source. Looking for a concensus. Is it ok to install the Tomcat binaries or should I build using the Tomcat source then install? Reasons why? Thanks! Nick - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]