Re: JDBCRealm, Tomcat and MySQL
ubk wrote: Hi all I have a problem with authorization based on JDBCRealm. When I'm trying to get access to some html page which is store in protected directory all that I can see is just login-error.jsp page. I'm using login and password from my database. My server.xml: ?xml version='1.0' encoding='utf-8'? Server port=8005 shutdown=SHUTDOWN Listener className=org.apache.catalina.core.AprLifecycleListener SSLEngine=on / Listener className=org.apache.catalina.core.JasperListener / Listener className=org.apache.catalina.mbeans.ServerLifecycleListener / Listener className=org.apache.catalina.mbeans.GlobalResourcesLifecycleListener / GlobalNamingResources Resource name=jdbc/MySQL auth=Container type=javax.sql.DataSource/ ResourceParams name=jdbc/MySQL parameter namefactory/name valueorg.apache.commons.dbcp.BasicDataSourceFactory/value /parameter parameter namemaxActive/name value10/value /parameter parameter namemaxIdle/name value5/value /parameter parameter namevalidationQuery/name valueSELECT 1/value /parameter parameter nametestOnBorrow/name valuetrue/value /parameter parameter nametestWhileIdle/name valuetrue/value /parameter parameter nametimeBetweenEvictionRunsMillis/name value1/value /parameter parameter nameminEvictableIdleTimeMillis/name value6/value /parameter parameter nameusername/name valueroot/value /parameter parameter namepassword/name valueubk/value /parameter parameter namedriverClassName/name valuecom.mysql.jdbc.Driver/value /parameter parameter nameurl/name valuejdbc:mysql://localhost:3306/wypozyczalnia/value /parameter /ResourceParams /GlobalNamingResources Service name=Catalina Connector port=8080 protocol=HTTP/1.1 connectionTimeout=2 redirectPort=8443 / Connector port=8009 protocol=AJP/1.3 redirectPort=8443 / Engine name=Catalina defaultHost=localhost Realm className=org.apache.catalina.realm.JDBCRealm debug=99 driverName=com.mysql.jdbc.Driver connectionURL=jdbc:mysql://localhost:3306/wypozyczalnia connectionName=root connectionPassword=ubk userTable=tomcat_users userNameCol=user_name userCredCol=user_pass userRoleTable=tomcat_roles roleNameCol=role_name / Host name=localhost appBase=webapps unpackWARs=true autoDeploy=true xmlValidation=false xmlNamespaceAware=false /Host /Engine /Service /Server My webapp web.xml: ?xml version=1.0 encoding=UTF-8? web-app version=2.5 xmlns=http://java.sun.com/xml/ns/javaee; xmlns:xsi=http://www.w3.org/2001/XMLSchema-instance; xsi:schemaLocation=http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd; session-config session-timeout5/session-timeout /session-config welcome-file-list welcome-fileindex.jsp/welcome-file /welcome-file-list security-constraint display-nameWstepWzbroniony/display-name web-resource-collection web-resource-namepliki/web-resource-name url-pattern/pliki/*/url-pattern /web-resource-collection auth-constraint role-nameadmin/role-name /auth-constraint /security-constraint login-config auth-methodFORM/auth-method realm-name/ form-login-config form-login-page/login.jsp/form-login-page form-error-page/login-error.jsp/form-error-page /form-login-config /login-config security-role description/ role-nameadmin/role-name /security-role /web-app I have no idea what's wrong. It's my first time with sth bigger in webapps. I'm rookie. I'm using Netbeans. Tomcat version? Are you sure you can connect to the database using the db user/pass you've specified? p - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: JDBCRealm, Tomcat and MySQL
Pid-2 wrote: Tomcat version? Are you sure you can connect to the database using the db user/pass you've specified? p - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org Apache Tomcat 6.0.18 I'm sure that db user and password are correct. -- View this message in context: http://www.nabble.com/JDBCRealm%2C-Tomcat-and-MySQL-tp23349009p23354551.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Database pooling prob
S Arvind wrote: Why ip is missing??? man netstat or netstat -h - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Basic authentication without a secure connection
Now why would you want to do that ? I want to connect applications: one is running on Tomcat (Java/Struts) with another (php). I have an application running on Tomcat that has a link to other application which is on another server. Application on another server is protected with: http://en.wikipedia.org/wiki/Basic_access_authentication http://en.wikipedia.org/wiki/Basic_access_authentication I want to pass credentials after link is clicked, so I don't need to fill the username and password informations. I see that I might need to add row: Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ== in the request header. Is this possible to do? How? Regards awarnier wrote: Tokajac wrote: Hello! I'm developing a Tomcat, Struts application. I want to send credentials to the Authentication Dialog that's shown by application which is running on another server. With this idea, I'd connect 2 application: the Tomcat application should have a redirection link to the other application. If I can modify the request header, I will add row Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ== http://en.wikipedia.org/wiki/Basic_access_authentication http://en.wikipedia.org/wiki/Basic_access_authentication http://www.ietf.org/rfc/rfc2616.txt http://www.ietf.org/rfc/rfc2616.txt How can I implement this? Now let us get this straight. You would like your Tomcat server to provide access to its own clients, without authentication, to a back-end service which requires authentication. Now why would you want to do that ? And if that is not what you want to do, what do you want to do ? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/Basic-authentication-without-a-secure-connection-tp23347310p23355186.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Basic authentication without a secure connection
On 3-May-2009, at 08:11, Tokajac wrote: Now why would you want to do that ? I want to connect applications: one is running on Tomcat (Java/ Struts) with another (php). I have an application running on Tomcat that has a link to other application which is on another server. Application on another server is protected with: http://en.wikipedia.org/wiki/Basic_access_authentication http://en.wikipedia.org/wiki/Basic_access_authentication I want to pass credentials after link is clicked, so I don't need to fill the username and password informations. I see that I might need to add row: Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ== in the request header. Is this possible to do? How? Is your Tomcat proxying a connection, or do you an application that needs information from another application, but is not exposed to the user? If it is the latter, then you could look at using Apache HttpClient: http://hc.apache.org/httpclient-3.x/ and then adding the header in the request. If the user is going to be accessing the application directly, then there is a reason the security is in place and you should not over-ride it, unless you are sure the people who protected the resource are fine with it. If the resource is requires authentication, then I would be surprised they would be okay with it, but I am not going to make any assumptions. André-John - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Database pooling prob
From: S Arvind [mailto: arvindw...@gmail.com] Subject: Re: Database pooling prob Why ip is missing??? It's not. [::1] is the IPv6 equivalent of IPv4 127.0.0.1. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: JDBCRealm, Tomcat and MySQL
From: ubk [mailto:m.urbanow...@o2.pl] Subject: JDBCRealm, Tomcat and MySQL GlobalNamingResources Resource name=jdbc/MySQL auth=Container type=javax.sql.DataSource/ ResourceParams name=jdbc/MySQL You say you're using Tomcat 6.0.18, but the Resource config you've specified is for some ancient version. Read the doc appropriate to your level: http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JDBCRealm - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Database pooling prob
The IP address isn't missing. What you are seeing is an IPv6 address, and more specifically the localhost IP address. For information see: http://en.wikipedia.org/wiki/IPv6 You can try doing 'ping6 ::1' and you will get a repsonse. André-John On 2-May-2009, at 17:17, S Arvind wrote: Why ip is missing??? -Arvind S * Many of lifes failure are people who did not realize how close they were to success when they gave up. -Thomas Edison* On Sun, May 3, 2009 at 2:42 AM, Filip Hanik - Dev Lists devli...@hanik.comwrote: if the client and the server are on the same machine, you would get two lines in the netstat output TCP[::1]:80 Michael:50522 ESTABLISHED TCP[::1]:50522Michael:http ESTABLISHED one line is for the server connection, and the other one is for the client connection. Filip S Arvind wrote: from this stack trace i can find that there is no problem in Tomcat or dbcp. But when i try my postgre from outside application its working fine but when i connect from local tomcat application it not working fine. I disable the firewall and all ... but i keep on getting this stack AbandonedObjectPool is used (org.apache.tomcat.dbcp.dbcp.abandonedobjectp...@d5eb7) LogAbandoned: true RemoveAbandoned: true RemoveAbandonedTimeout: 300 org.apache.tomcat.dbcp.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Connection refused. Check that the hostname and port are correct and that the postmaster is accepting TCP/IP connections.) at org .apache .tomcat .dbcp.dbcp.BasicDataSource.createDataSource(BasicDataSource.java: 1225) at org .apache .tomcat .dbcp.dbcp.BasicDataSource.getConnection(BasicDataSource.java:880) When i tried the netstat to check my vista ports , at that time i found one wierd line... TCP[::1]:80 Michael:50522 ESTABLISHED TCP[::1]:50522Michael:http ESTABLISHED As my tomcat is listening to 80, i dont know why i dont get the ip address in the netstat result for port 80 alone.. It is surely my tomcat request since only when i make the request its showing... I think the problem in ip only... please any one help.. postgres and tomcat in same system and postgres is watchin to port 5432 only. Arvind * Many of lifes failure are people who did not realize how close they were to success when they gave up. -Thomas Edison* - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Redurect URL From Tomcat to IIS
From: akkad [mailto:ahmed.ak...@gmail.com] Subject: Redurect URL From Tomcat to IIS the tomcat server is directly connected to the internet and also it has dhcp which assign the IIS server IP address The above is not at all clear and is probably key to your issue. http://tomcatserver/index.html http://iisserver/index.html then tomcat Are you saying that both tomcatserver and iisserver resolve to the IP address of the Tomcat box? Why don't you simply correct your DNS entries to have iisserver resolve to the IIS box? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: hot-deploy problems
yes. I prefer to keep things that simple if possible. But I do need to find a way around the errors --- On Fri, 5/1/09, Pid p...@pidster.com wrote: From: Pid p...@pidster.com Subject: Re: hot-deploy problems To: Tomcat Users List users@tomcat.apache.org Date: Friday, May 1, 2009, 11:39 AM Umm, are you uploading war files directly to the webapps directory? p Peter Crowther wrote: Tomcat version? Java version? OS? -Original Message- From: david owens [mailto:ym...@yahoo.com] Sent: 01 May 2009 15:52 To: users@tomcat.apache.org Subject: hot-deploy problems I hope you folks are not sick to death of this question, but I have still not found a satisfactory answer. I used to hot-deploy war files with no problems, and about half the time I get ZipException: error in opening zip file, or Illegal access: this web application instance has been stopped already. errors. I don't currently specify a config.xml and it seems to have something to do with that (docbase and appbase being the same?). But I hate to add app configurations that are not contained in the war files themselves. Is there a way to solve this with the META-INF/config.xml? If so, can someone please provide an example? If not, what is the best solution? (I have no spaces or other unusual characters in my jar or war file names, and half the time things work fine). Thank you much, -- David D. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: jk-to-tomcat multiple retries
From: Dmitry Beransky [mailto:dmitry.ma...@gmail.com] Subject: Re: jk-to-tomcat multiple retries Unfortunately, the pesky reality is that I would not be permitted to do such an upgrade to our entire infrastructure until I can show that all other options have been exhausted. This reminds me of the opening line to Still Crazy: History teaches us that men behave wisely... once they've exhausted all other alternatives. Which is actually a variation on a quote from Churchill. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: hot-deploy problems
Hello Tomcat 6.0.18 Java 1.6.0_01 OS winXPPro I really like the flexability of just dropping a war file in the webapp directory (as opposed to having individual deploy directories on the server for each webapp). Do you know any way around these occational deploy problems? Thanks again, -- David --- On Fri, 5/1/09, Peter Crowther peter.crowt...@melandra.com wrote: From: Peter Crowther peter.crowt...@melandra.com Subject: RE: hot-deploy problems To: 'Tomcat Users List' users@tomcat.apache.org Date: Friday, May 1, 2009, 10:55 AM Tomcat version? Java version? OS? -Original Message- From: david owens [mailto:ym...@yahoo.com] Sent: 01 May 2009 15:52 To: users@tomcat.apache.org Subject: hot-deploy problems I hope you folks are not sick to death of this question, but I have still not found a satisfactory answer. I used to hot-deploy war files with no problems, and about half the time I get ZipException: error in opening zip file, or Illegal access: this web application instance has been stopped already. errors. I don't currently specify a config.xml and it seems to have something to do with that (docbase and appbase being the same?). But I hate to add app configurations that are not contained in the war files themselves. Is there a way to solve this with the META-INF/config.xml? If so, can someone please provide an example? If not, what is the best solution? (I have no spaces or other unusual characters in my jar or war file names, and half the time things work fine). Thank you much, -- David D. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: hot-deploy problems
On Fri, May 1, 2009 at 7:52 AM, david owens ym...@yahoo.com wrote: I don't currently specify a config.xml and it seems to have something to do with that (docbase and appbase being the same?). Are you saying you have docBase == appBase? If so, don't :-) -- Hassan Schroeder hassan.schroe...@gmail.com - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Database pooling prob
Andre-John Mas wrote: The IP address isn't missing. What you are seeing is an IPv6 address, and more specifically the localhost IP address. For information see: http://en.wikipedia.org/wiki/IPv6 You can try doing 'ping6 ::1' and you will get a repsonse. TCP[::1]:80 Michael:50522 ESTABLISHED TCP[::1]:50522Michael:http ESTABLISHED The OP might have been talking about the Michael: part though. That is the resolved DNS name of the destination, appearing when one does a netstat without the -n switch. The same is true for the port http instead of 80. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Basic authentication without a secure connection
The browser takes care of that, and you should not be trying to over- ride it. If you don't want to retype the username/password all the time, then you can tell teh browser to remember the password, or have the server in question not asking for the password, understanding the consequences - this latter one being more of a 'social' issue than a technical one. If you don't want an authentication attempt without having a secure connection, then you could arrange to have any http pages redirect to https. André-John On 3-May-2009, at 14:06, Tokajac wrote: Thank you for the link, André-John! User should access the application directly (not proxying). On http://hc.apache.org/httpclient-3.x/tutorial.html as I see header is created for programatic access and not via browser. Is it possible to do this when I use browser for accessing? How? Regards P.S. I opened this topic on http://www.coderanch.com/t/442467/Security/Basic-authentication-without-secure-connection also - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Basic authentication without a secure connection
Imre, just repeating some of the things you've said previously : Tokajac wrote: I want to connect applications: one is running on Tomcat (Java/Struts) with another (php). I want to pass credentials after link is clicked, so I don't need to fill the username and password informations. I see that I might need to add row: Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ== in the request header. ... I want to send credentials to the Authentication Dialog that's shown by application which is running on another server. (*) With this idea, I'd connect 2 application: the Tomcat application should have a redirection link to the other application. If I can modify the request header, I will add row Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ== ... User should access the application directly (not proxying). On http://hc.apache.org/httpclient-3.x/tutorial.html as I see header is created for programatic access and not via browser. Is it possible to do this when I use browser for accessing? How? ... Someone is missing something here (either you or us). Either what you want to do does not make a lot of sense, or else we don't understand what you mean. You say above : User should access the application directly (not proxying). Than why does the user not do it ? why do you have to put Tomcat and your Struts application in the middle ? Schematically, there are different ways : 1) User (browser) --- Tomcat -- Struts application User (browser) --- ?? -- php application In that case (1), you don't have to do anything. The user just access your Tomcat application OR the php application. If they access the php application, they have to login and that's it. 2) User -- Tomcat -- Struts application Tomcat -- other server/php application In that case, what you are asking is for Tomcat to proxy the call to the php application, and make it look to the user as if this is a direct call to the php application. In that case, Tomcat would just be the mailbox between the user and the php server. It would just pass the entire user request to the php server, get the entire response, and pass evrything back to the user. everything would include all the HTTP headers in both directions, including the authorization ones. The user would still have to login. But, there is not really any standard module in Tomcat to do that kind of proxying. See (4) below. 3) User -- Tomcat -- Struts application Tomcat -- special application -- calls php application In that case, a special application in Tomcat makes the request to the php application. Then it is that special Tomcat application that must do the authentication with the back-end server, and then you need some kind of HTTP client library in your Tomcat application (like Apache's HTTPClient library), to make your application look like a browser to the php application. The only advantage of that solution, is if you want to get the php results inside your Tomcat application, transform them in some way, and send then back to the user in another format. But it is quite complicated to do, and it is not just copying the authorization headers. 4) User -- front-end -- Tomcat -- Struts application front-end -- other server -- php application If you don't need to be in-between, that is the easiest solution. As the front-end, you can use many things. Apache httpd being only one of the possibilities. So, which kind of scenario is yours ? And if it is not 4, then why exactly do you want Tomcat and/or Struts to be in-between the user and the php application ? Note (*) : that is maybe where you misunderstand something. The basic authentication dialog which you see in the browser, does not come from the server. It is an internal dialog from the browser. The browser displays this dialog when it tries to access a page on the server, and the server sends back a 401 Authorization required response. Then the user types a user-id and password. The the browser sends /the same request again/, but this time with an additional HTTP header : Authorization: .. Then the server /verifies/ this user-id and password contained in that header, and if it is ok, it sends back the requested page. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Problem to Deploy Grails 1.1 Web-App-
Hi all, I've a problem to deploy my Grails 1.1 web-app. For development I usesd Tomcat 5.5.27 (standalone) and it runs very well. But I want to deploy my Grails 1.1 web-app. with Apache and Tomcat 5.5.25 The prob is this error: INFO: Manager: restart: Reloading web application at '/testapp-0.1' Apr 30, 2009 12:00:46 AM org.apache.catalina.core.ApplicationContext log SEVERE: Manager: ManagerServlet.reload[/testapp-0.1] java.lang.IllegalStateException: Container org.apache.catalina.core.ContainerBase.[PSA].[testapp.com].[/testapp-0.1] has not been started at org.apache.catalina.core.StandardContext.reload(StandardContext.java:3005) at org.apache.catalina.manager.ManagerServlet.reload(ManagerServlet.java:904) at org.apache.catalina.manager.ManagerServlet.doGet(ManagerServlet.java:354) at javax.servlet.http.HttpServlet.service(HttpServlet.java:689) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:172) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:525) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:874) at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:665) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:528) at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:81) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619) Apr 30, 2009 12:00:46 AM org.apache.catalina.core.ApplicationContext log INFO: Manager: list: Listing contexts for virtual host 'testapp.com' Can anybody help me ? Thank you Martin - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Extra Threads in background
From: David.Meldrum [mailto:david.meld...@verizon.net] Subject: Re: Extra Threads in background I did not call the destroy() method because I though it was deprecated and dangerous. I believe Chris meant the ServletContextListener.contextDestroyed() method, not Thread.destroy(); the latter should never be used. Your extra thread should not have to wake up more often to check the terminate flag; the code in your contextDestroyed() method should simply interrupt the extra thread, which will then wake up from its sleep() or wait() call. As far as your having two instances of your extra thread running, your webapp might be getting deployed twice. Poorly constructed server.xml and context.xml configs can easily cause this. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers.
RE: hot-deploy problems
From: Hassan Schroeder [mailto:hassan.schroe...@gmail.com] Subject: Re: hot-deploy problems On Fri, May 1, 2009 at 7:52 AM, david owens ym...@yahoo.com wrote: I don't currently specify a config.xml and it seems to have something to do with that (docbase and appbase being the same?). Are you saying you have docBase == appBase? If there's no context.xml (or Context element), then docBase cannot equal appBase. Just to be sure, the OP should post his server.xml for evaluation. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: hot-deploy problems
From: david owens [mailto:ym...@yahoo.com] Subject: RE: hot-deploy problems Java 1.6.0_01 For security and stability, you really should update the JVM. OS winXPPro Windows has serious file locking issues; you will likely need to set the antiJARLocking and antiResourceLocking attributes for the relevant Context elements. These can be set in the global conf/context.xml Context element, but since they do increase startup time, it's better to do it selectively in the webapps you actually might update on the fly. Since you don't currently have a context.xml file, create a META-INF/context.xml file inside each .war that needs it, containing just the following: Context antiJARLocking=true antiResourceLocking=true/ - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Problem to Deploy Grails 1.1 Web-App-
From: Martin Gelling [mailto:martin.gell...@gmx.de] Subject: Problem to Deploy Grails 1.1 Web-App- For development I usesd Tomcat 5.5.27 (standalone) and it runs very well. But I want to deploy my Grails 1.1 web-app. with Apache and Tomcat 5.5.25 1) Post the server.xml files from both your 5.5.25 and 5.5.27 implementations. 2) Since your intended target is 5.5.25 (why not upgrade?), you should be testing under that level, not a different one. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Basic authentication without a secure connection
I think my idea would be scenario 4.) I want to: 1.) Open a browser and write Tomcat application's address (localhost:8080/myapp); 2.) Write username and password in login fields of the application; 3.) Save credentials in session after successful login; 4.) Have link to completely separate application on newly opened page; 5.) When link is clicked, request should be sent that contains row: Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ== Login username and password would be the same for both applications. On this way, I don't need to type username and password again; 6.) From now on, php application is on-board and Tomcat can be forgotten (it remains reachable only via browser's Back button); I will look now after httpd that you mentioned, awarnier. Regards awarnier wrote: 4) User -- front-end -- Tomcat -- Struts application front-end -- other server -- php application If you don't need to be in-between, that is the easiest solution. As the front-end, you can use many things. Apache httpd being only one of the possibilities. So, which kind of scenario is yours ? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/Basic-authentication-without-a-secure-connection-tp23347310p23359828.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: IIS 6 Tomcat Connector isapi_redirect-1.2.28.dll not being called 404 2 1260 error
On 01.05.2009 22:46, FOREBACK Dianne wrote: I cannot get IIS 6 to use the Tomcat connector to redirect requests. I followed the directions in http://tomcat.apache.org/connectors-doc/webserver_howto/iis.html configuring the registry by hand. This should be a relatively simple task but I am obviously overlooking something. The following environment is being used, Tomcat 6.0, JDK 6.0.18, JRE 1.6.0_13, Apache Tomcat Connectors isapi_redirect-1.2.28.dll which I downloaded and did not rebuild, IIS 6 on Windows Server 2003. I've triple checked the registry settings and can open every single directory. The isapi.log file is not being created. (It appears that the dll is not being called.) Yes, as long as the log file is not created when you try to access a URL on the web server, the plugin is not loaded. The filter does show as being loaded (green) with high priority. IIS log file gives a 404 error. Tomcat is working fine. The uriworkermap.properties contains the following entries and I've tried testing a .jsp example going through the IIS port. It does pull up when I use Tomcat directly. /localhost/examples/*=ajp13 /localhost/examples=ajp13 The workers.properties file contains worker.ajp13.port=8009 worker.ajp13.host=localhost worker.ajp13.type=ajp13 I've searched and am at a loss. Any help is very much appreciated. Did you also follow all steps under Configuring the ISAPI Redirector on the documentation page you used? Including step 9 (allowing the web service extension)? Page http://tomcat.apache.org/connectors-doc/reference/iis.html; also contains a simplified way of setting the redirector properties without using the registry: put a file isapi_redirect.properties into the same directory, where your isapi_redirect.dll resides (the file name needs to be the same as that of the dll except for the suffix). The docs page describes its contents. Regards, Rainer - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: OT: GoDaddy Hosting and Tomcat
Evan Siegel wrote: This posting raises a question I've long had: What JSP-friendly hosts are to be recommended. I did some searching and came up with a large number of helpful sites, but I'd like to poll the list members on the matter.See the following: http://www.hosting-review.com/hosting-directory/top-10-lists/Top-JSP-Hosting-Companies.shtml I'm seriously consideringhttp://hostpapa.com/hr_offer_green.shtml Thank you. Since writing my original message, I've done two ISP/Hosting deployments. The first was to LunarPages.com. They're using an older version of resin. Installation was pretty smooth. My only comment is the older version of Resin they're using doesn't support welcome files that are created via servlet mapping in the web.xml. Installing the app, was as simple as uploading the war file. It deployed within a minute or so, and I was going. The second was on a Network Solutions Virtual Private Server deployment. I tried using Plesk to deploy the WAR file, and it wasn't working. Logging in via SSH to the root account helped me find out they were using the GNU 1.4.2 JVM. My app is 1.5 or higher. I downloaded JDK 1.5.0_18. Because of memory restrictions, I couldn't run the JVM. Then, I realized that the VPS only had enough memory to run one JVM. After I killed Tomcat and the GNU JVM, I was able to start the updated JVM. Once I updated the JVM, I was able to use Plesk to deploy the WAR file. This went pretty well. In this case, the application is deployed as an uncompressed WAR file. If your application can't handle this then you might have some problems. In my case, the application generally ran fine. I spent another hour or so fixing it so that features that wouldn't work when running as an undeployed WAR file were disabled. -- George Sexton MH Software, Inc. Voice: +1 303 438 9585 URL: http://www.mhsoftware.com/ - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: OT: GoDaddy Hosting and Tomcat
Hi George, checkout http://www.webappcabaret.com They offer a wide variety of Java hosting plans - shared jvm, private jvm, as well as VPS based. From: George Sexton geor...@mhsoftware.com To: Tomcat Users List users@tomcat.apache.org Sent: Sunday, May 3, 2009 4:08:19 PM Subject: Re: OT: GoDaddy Hosting and Tomcat Evan Siegel wrote: This posting raises a question I've long had: What JSP-friendly hosts are to be recommended. I did some searching and came up with a large number of helpful sites, but I'd like to poll the list members on the matter.See the following: http://www.hosting-review.com/hosting-directory/top-10-lists/Top-JSP-Hosting-Companies.shtml I'm seriously consideringhttp://hostpapa.com/hr_offer_green.shtml Thank you. Since writing my original message, I've done two ISP/Hosting deployments. The first was to LunarPages.com. They're using an older version of resin. Installation was pretty smooth. My only comment is the older version of Resin they're using doesn't support welcome files that are created via servlet mapping in the web.xml. Installing the app, was as simple as uploading the war file. It deployed within a minute or so, and I was going. The second was on a Network Solutions Virtual Private Server deployment. I tried using Plesk to deploy the WAR file, and it wasn't working. Logging in via SSH to the root account helped me find out they were using the GNU 1.4.2 JVM. My app is 1.5 or higher. I downloaded JDK 1.5.0_18. Because of memory restrictions, I couldn't run the JVM. Then, I realized that the VPS only had enough memory to run one JVM. After I killed Tomcat and the GNU JVM, I was able to start the updated JVM. Once I updated the JVM, I was able to use Plesk to deploy the WAR file. This went pretty well. In this case, the application is deployed as an uncompressed WAR file. If your application can't handle this then you might have some problems. In my case, the application generally ran fine. I spent another hour or so fixing it so that features that wouldn't work when running as an undeployed WAR file were disabled. -- George Sexton MH Software, Inc. Voice: +1 303 438 9585 URL: http://www.mhsoftware.com/ - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: OT: GoDaddy Hosting and Tomcat
if someone elses webapp does a system.exit(1) does that impact your JVM process ? since diskspace,memory and servers are dirt cheap what advantages does VPS offer? i would be curious as to which VPS implementation these guys use Martin _ Disclaimer and Confidentiality/Verzicht und Vertraulichkeitanmerkung / Note de déni et de confidentialité This message is confidential. If you should not be the intended receiver, then we ask politely to report. Each unauthorized forwarding or manufacturing of a copy is inadmissible. This message serves only for the exchange of information and has no legal binding effect. Due to the easy manipulation of emails we cannot take responsibility over the the contents. Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger sein, so bitten wir hoeflich um eine Mitteilung. Jede unbefugte Weiterleitung oder Fertigung einer Kopie ist unzulaessig. Diese Nachricht dient lediglich dem Austausch von Informationen und entfaltet keine rechtliche Bindungswirkung. Aufgrund der leichten Manipulierbarkeit von E-Mails koennen wir keine Haftung fuer den Inhalt uebernehmen. Ce message est confidentiel et peut être privilégié. Si vous n'êtes pas le destinataire prévu, nous te demandons avec bonté que pour satisfaire informez l'expéditeur. N'importe quelle diffusion non autorisée ou la copie de ceci est interdite. Ce message sert à l'information seulement et n'aura pas n'importe quel effet légalement obligatoire. Étant donné que les email peuvent facilement être sujets à la manipulation, nous ne pouvons accepter aucune responsabilité pour le contenu fourni. Date: Sun, 3 May 2009 17:07:40 -0700 From: kerryjacab...@yahoo.com Subject: Re: OT: GoDaddy Hosting and Tomcat To: users@tomcat.apache.org Hi George, checkout http://www.webappcabaret.com They offer a wide variety of Java hosting plans - shared jvm, private jvm, as well as VPS based. From: George Sexton geor...@mhsoftware.com To: Tomcat Users List users@tomcat.apache.org Sent: Sunday, May 3, 2009 4:08:19 PM Subject: Re: OT: GoDaddy Hosting and Tomcat Evan Siegel wrote: This posting raises a question I've long had: What JSP-friendly hosts are to be recommended. I did some searching and came up with a large number of helpful sites, but I'd like to poll the list members on the matter.See the following: http://www.hosting-review.com/hosting-directory/top-10-lists/Top-JSP-Hosting-Companies.shtml I'm seriously consideringhttp://hostpapa.com/hr_offer_green.shtml Thank you. Since writing my original message, I've done two ISP/Hosting deployments. The first was to LunarPages.com. They're using an older version of resin. Installation was pretty smooth. My only comment is the older version of Resin they're using doesn't support welcome files that are created via servlet mapping in the web.xml. Installing the app, was as simple as uploading the war file. It deployed within a minute or so, and I was going. The second was on a Network Solutions Virtual Private Server deployment. I tried using Plesk to deploy the WAR file, and it wasn't working. Logging in via SSH to the root account helped me find out they were using the GNU 1.4.2 JVM. My app is 1.5 or higher. I downloaded JDK 1.5.0_18. Because of memory restrictions, I couldn't run the JVM. Then, I realized that the VPS only had enough memory to run one JVM. After I killed Tomcat and the GNU JVM, I was able to start the updated JVM. Once I updated the JVM, I was able to use Plesk to deploy the WAR file. This went pretty well. In this case, the application is deployed as an uncompressed WAR file. If your application can't handle this then you might have some problems. In my case, the application generally ran fine. I spent another hour or so fixing it so that features that wouldn't work when running as an undeployed WAR file were disabled. -- George Sexton MH Software, Inc. Voice: +1 303 438 9585 URL: http://www.mhsoftware.com/ - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org _ Insert movie times and more without leaving Hotmail®. http://windowslive.com/Tutorial/Hotmail/QuickAdd?ocid=TXT_TAGLM_WL_HM_Tutorial_QuickAdd1_052009
Tomcat 6 on Win32 - Enabling Security Manager
_ Looking for a fresh way to share your photos? Check out the new Windows Live Messenger http://windowslive.ninemsn.com.au/article.aspx?id=792335 - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: OT: GoDaddy Hosting and Tomcat
Hi Martin, How the plans are setup at WebAppCabaret, the Shared JVMs are run under a Security Manager; so an app calling system.exit would just throw a security exception. I think many choose VPS as a cheaper alternative to a dedicated server as the cost for data center space keeps increasing. From: Martin Gainty mgai...@hotmail.com To: Tomcat Users List users@tomcat.apache.org Sent: Sunday, May 3, 2009 5:26:12 PM Subject: RE: OT: GoDaddy Hosting and Tomcat if someone elses webapp does a system.exit(1) does that impact your JVM process ? since diskspace,memory and servers are dirt cheap what advantages does VPS offer? i would be curious as to which VPS implementation these guys use Martin _ Disclaimer and Confidentiality/Verzicht und Vertraulichkeitanmerkung / Note de déni et de confidentialité This message is confidential. If you should not be the intended receiver, then we ask politely to report. Each unauthorized forwarding or manufacturing of a copy is inadmissible. This message serves only for the exchange of information and has no legal binding effect. Due to the easy manipulation of emails we cannot take responsibility over the the contents. Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger sein, so bitten wir hoeflich um eine Mitteilung. Jede unbefugte Weiterleitung oder Fertigung einer Kopie ist unzulaessig. Diese Nachricht dient lediglich dem Austausch von Informationen und entfaltet keine rechtliche Bindungswirkung. Aufgrund der leichten Manipulierbarkeit von E-Mails koennen wir keine Haftung fuer den Inhalt uebernehmen. Ce message est confidentiel et peut être privilégié. Si vous n'êtes pas le destinataire prévu, nous te demandons avec bonté que pour satisfaire informez l'expéditeur. N'importe quelle diffusion non autorisée ou la copie de ceci est interdite. Ce message sert à l'information seulement et n'aura pas n'importe quel effet légalement obligatoire. Étant donné que les email peuvent facilement être sujets à la manipulation, nous ne pouvons accepter aucune responsabilité pour le contenu fourni. Date: Sun, 3 May 2009 17:07:40 -0700 From: kerryjacab...@yahoo.com Subject: Re: OT: GoDaddy Hosting and Tomcat To: users@tomcat.apache.org Hi George, checkout http://www.webappcabaret.com They offer a wide variety of Java hosting plans - shared jvm, private jvm, as well as VPS based. From: George Sexton geor...@mhsoftware.com To: Tomcat Users List users@tomcat.apache.org Sent: Sunday, May 3, 2009 4:08:19 PM Subject: Re: OT: GoDaddy Hosting and Tomcat Evan Siegel wrote: This posting raises a question I've long had: What JSP-friendly hosts are to be recommended.. I did some searching and came up with a large number of helpful sites, but I'd like to poll the list members on the matter.See the following: http://www.hosting-review.com/hosting-directory/top-10-lists/Top-JSP-Hosting-Companies.shtml I'm seriously consideringhttp://hostpapa.com/hr_offer_green.shtml Thank you. Since writing my original message, I've done two ISP/Hosting deployments. The first was to LunarPages.com. They're using an older version of resin. Installation was pretty smooth. My only comment is the older version of Resin they're using doesn't support welcome files that are created via servlet mapping in the web.xml. Installing the app, was as simple as uploading the war file. It deployed within a minute or so, and I was going. The second was on a Network Solutions Virtual Private Server deployment. I tried using Plesk to deploy the WAR file, and it wasn't working. Logging in via SSH to the root account helped me find out they were using the GNU 1.4.2 JVM. My app is 1.5 or higher. I downloaded JDK 1.5.0_18. Because of memory restrictions, I couldn't run the JVM. Then, I realized that the VPS only had enough memory to run one JVM. After I killed Tomcat and the GNU JVM, I was able to start the updated JVM. Once I updated the JVM, I was able to use Plesk to deploy the WAR file. This went pretty well. In this case, the application is deployed as an uncompressed WAR file. If your application can't handle this then you might have some problems. In my case, the application generally ran fine. I spent another hour or so fixing it so that features that wouldn't work when running as an undeployed WAR file were disabled. -- George Sexton MH Software, Inc. Voice: +1 303 438 9585 URL: http://www.mhsoftware.com/ - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org _ Insert movie times and more without leaving Hotmail®.
Tomcat 6.0.18 on Win32 - Enabling Security Manager
Apologies for previous blank question, I am not sure what happened, actual question below... Chris -- Hi, I am writing a Tomcat 6 on Windows hardening guide at the moment and I am looking at the process for enabling the security manager. On the Tomcat 6 documentation website http://tomcat.apache.org/tomcat-6.0-doc/security-manager-howto.html it says that on Windows all you need to do is run the following command: %CATALINA_HOME%\bin\catalina start -security However, when I install Tomcat there is no such program as catalina in the bin directory so I can't run it like that. Within bin there is only bootstrap.jar, tomcat6.exe, tomcat6w.exe and tomcat-juli.jar Using the Tomcat monitor application there is a tab for startup and there is an input box for arguments that by default contains 'start' but if I try to add ' -security' to this argument text box the service fails to start at all. Can anyone help in advising me how you get tomcat 6.0.18 to start with a security manager. Please note that tomcat was installed from the Tomcat Windows Service installer and it is running Windows Server 2003 SP2 (32bit). Any help is appreciated, I have searched the archives and googled the web and this has revealed nothing, it is most likely my error however I am currently at a loss. Thanks Chris _ Looking to change your car this year? Find car news, reviews and more http://a.ninemsn.com.au/b.aspx?URL=http%3A%2F%2Fsecure%2Dau%2Eimrworldwide%2Ecom%2Fcgi%2Dbin%2Fa%2Fci%5F450304%2Fet%5F2%2Fcg%5F801459%2Fpi%5F1004813%2Fai%5F859641_t=762955845_r=tig_OCT07_m=EXT - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: OT: GoDaddy Hosting and Tomcat
How does the webapp owner configure a System Exception to throw a SecurityException? For which version of TC does this configuration use? Do you also support WL or Glassfish? Do you support EJB2 and or EJB3? Would this SecruityException be enabled for HTTPS with keystore or using a external provider such as LDAP or RSA? Martin Gainty __ Disclaimer and Confidentiality/Verzicht und Vertraulichkeitanmerkung / Note de déni et de confidentialité This message is confidential. If you should not be the intended receiver, then we ask politely to report. Each unauthorized forwarding or manufacturing of a copy is inadmissible. This message serves only for the exchange of information and has no legal binding effect. Due to the easy manipulation of emails we cannot take responsibility over the the contents. Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger sein, so bitten wir hoeflich um eine Mitteilung. Jede unbefugte Weiterleitung oder Fertigung einer Kopie ist unzulaessig. Diese Nachricht dient lediglich dem Austausch von Informationen und entfaltet keine rechtliche Bindungswirkung. Aufgrund der leichten Manipulierbarkeit von E-Mails koennen wir keine Haftung fuer den Inhalt uebernehmen. Ce message est confidentiel et peut être privilégié. Si vous n'êtes pas le destinataire prévu, nous te demandons avec bonté que pour satisfaire informez l'expéditeur. N'importe quelle diffusion non autorisée ou la copie de ceci est interdite. Ce message sert à l'information seulement et n'aura pas n'importe quel effet légalement obligatoire. Étant donné que les email peuvent facilement être sujets à la manipulation, nous ne pouvons accepter aucune responsabilité pour le contenu fourni. Date: Sun, 3 May 2009 17:40:39 -0700 From: kerryjacab...@yahoo.com Subject: Re: OT: GoDaddy Hosting and Tomcat To: users@tomcat.apache.org Hi Martin, How the plans are setup at WebAppCabaret, the Shared JVMs are run under a Security Manager; so an app calling system.exit would just throw a security exception. I think many choose VPS as a cheaper alternative to a dedicated server as the cost for data center space keeps increasing. From: Martin Gainty mgai...@hotmail.com To: Tomcat Users List users@tomcat.apache.org Sent: Sunday, May 3, 2009 5:26:12 PM Subject: RE: OT: GoDaddy Hosting and Tomcat if someone elses webapp does a system.exit(1) does that impact your JVM process ? since diskspace,memory and servers are dirt cheap what advantages does VPS offer? i would be curious as to which VPS implementation these guys use Martin _ Disclaimer and Confidentiality/Verzicht und Vertraulichkeitanmerkung / Note de déni et de confidentialité This message is confidential. If you should not be the intended receiver, then we ask politely to report. Each unauthorized forwarding or manufacturing of a copy is inadmissible. This message serves only for the exchange of information and has no legal binding effect. Due to the easy manipulation of emails we cannot take responsibility over the the contents. Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger sein, so bitten wir hoeflich um eine Mitteilung. Jede unbefugte Weiterleitung oder Fertigung einer Kopie ist unzulaessig. Diese Nachricht dient lediglich dem Austausch von Informationen und entfaltet keine rechtliche Bindungswirkung. Aufgrund der leichten Manipulierbarkeit von E-Mails koennen wir keine Haftung fuer den Inhalt uebernehmen. Ce message est confidentiel et peut être privilégié. Si vous n'êtes pas le destinataire prévu, nous te demandons avec bonté que pour satisfaire informez l'expéditeur. N'importe quelle diffusion non autorisée ou la copie de ceci est interdite. Ce message sert à l'information seulement et n'aura pas n'importe quel effet légalement obligatoire. Étant donné que les email peuvent facilement être sujets à la manipulation, nous ne pouvons accepter aucune responsabilité pour le contenu fourni. Date: Sun, 3 May 2009 17:07:40 -0700 From: kerryjacab...@yahoo.com Subject: Re: OT: GoDaddy Hosting and Tomcat To: users@tomcat.apache.org Hi George, checkout http://www.webappcabaret.com They offer a wide variety of Java hosting plans - shared jvm, private jvm, as well as VPS based. From: George Sexton geor...@mhsoftware.com To: Tomcat Users List users@tomcat.apache.org Sent: Sunday, May 3, 2009 4:08:19 PM Subject: Re: OT: GoDaddy Hosting and Tomcat Evan Siegel wrote: This posting raises a question I've long had: What JSP-friendly hosts are to be recommended.. I did some searching and came up with a large number of helpful sites, but I'd like to poll the list members on the matter.See the following:
Tomcat over AJP with Apache in front SSL Issues
when using apache 2.2, tomcat 5.5.20 on top of java 1.5.10+ using Apache with Mod_SSL and Mod_Proxy to connect the Incoming http session through AJP to Tomcat my browser repeatidly prompts me for a ceritficate. 3 times at the beginning, then about 3 times every 10 minutes. does anyone know why? should i be posting this in the apache user group? is it an apache issues or tomcat issue? -- View this message in context: http://www.nabble.com/Tomcat-over-AJP-with-Apache-in-front-SSL-Issues-tp23361836p23361836.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Tomcat 6.0.18 on Win32 - Enabling Security Manager
From: Chris Brookes [mailto:cabb...@hotmail.com] Subject: Tomcat 6.0.18 on Win32 - Enabling Security Manager However, when I install Tomcat there is no such program as catalina in the bin directory so I can't run it like that. The .bat scripts are only part of the .zip download, not the .exe (for unexplained reasons). One normally uses the startup.bat script to launch Tomcat, which does some necessary setup, then calls the catalina.bat script, which does the real work of getting Tomcat going. Using the Tomcat monitor application there is a tab for startup and there is an input box for arguments that by default contains 'start' but if I try to add '-security' to this argument text box the service fails to start at all. As it should. To use the Java tab in tomcat6w.exe, you must specify the appropriate JVM arguments, rather than the options for the scripts. In other words, set the following: -Djava.security.manager -Djava.security.policy=path_to_security_policy_file The standard Tomcat policy is located in Tomcat's conf/catalina.policy file, but you're free to specify whatever location you need. I am writing a Tomcat 6 on Windows hardening guide I must say that the nature of your questions leaves me with some concern about the content of your guide... - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Deploying a WAR file in tomcat 6
Hi, Thanks for your response. I have deployed the WAR file as you said. Im trying to bring that into NetBeans. Maciek Rakowski wrote: you don't need netbeans to deploy the .war file. You simply put it in your .war file in the webapps directory of the tomcat folder, or use tomcat manager. - Maciek From: astra123 sandhya.jayachand...@tcs.com To: users@tomcat.apache.org Sent: Monday, April 27, 2009 2:40:24 AM Subject: Deploying a WAR file in tomcat 6 Hi, I have downloaded one WAR file from net. I need to deploy that in Tomcat 6 which is inside NetBeans 6 IDE. Can you please help me to resolve this. -- View this message in context: http://www.nabble.com/Deploying-a-WAR-file-in-tomcat-6-tp23250903p23250903.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/Deploying-a-WAR-file-in-tomcat-6-tp23250903p23362241.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Tomcat 6.0.18 on Win32 - Enabling Security Manager
Thanks for your assistance, I will give that a try. I must say that the nature of your questions leaves me with some concern about the content of your guide... Hmmm, I wont bite but I will provide a little more information on what I am doing. The guide is specifically being written for Tomcat on Windows, which in my searching of the web there is very few resources available, and even fewer that provide collated recommendations. As you may have guessed (and is eluded to in the response below) I am not an expert at Tomcat or Java however I need to put together a guide that can be delivered to infrastructure managers whose primary goal is to 'get it working' without considering security. So as part of the information security team I have to provide recommendations to those Infrastructure managers on how to secure the infrastructure (as well as every other application and piece of infrastructure that is being deployed). The majority of the guide is focused on management of the Tomcat server. Things like running tomcat as an unprivileged user (and getting the appropriate Windows permissions to allow that to work properly), Separation of tomcat directories from program files, segregation of duties for Wep-app content and Infrastructure admins, removing or limiting access to default or manager applications, limiting access to sensitive (or dangerous) Windows files and folders, etc, etc, etc. I also give some configuration advice based on research from the internet such as: Setting up SSL to use an approved set of Ciphers, some configuration options in server.xml and web.xml And most importantly for them, I am combining this into a single document that they can follow, rather then having to rely on them to find the information on the web. Again thanks for your assistance, I will give it a try when I can Chris From: chuck.caldar...@unisys.com To: users@tomcat.apache.org Date: Sun, 3 May 2009 21:19:08 -0500 Subject: RE: Tomcat 6.0.18 on Win32 - Enabling Security Manager From: Chris Brookes [mailto:cabb...@hotmail.com] Subject: Tomcat 6.0.18 on Win32 - Enabling Security Manager However, when I install Tomcat there is no such program as catalina in the bin directory so I can't run it like that. The .bat scripts are only part of the .zip download, not the .exe (for unexplained reasons). One normally uses the startup.bat script to launch Tomcat, which does some necessary setup, then calls the catalina.bat script, which does the real work of getting Tomcat going. Using the Tomcat monitor application there is a tab for startup and there is an input box for arguments that by default contains 'start' but if I try to add '-security' to this argument text box the service fails to start at all. As it should. To use the Java tab in tomcat6w.exe, you must specify the appropriate JVM arguments, rather than the options for the scripts. In other words, set the following: -Djava.security.manager -Djava.security.policy= The standard Tomcat policy is located in Tomcat's conf/catalina.policy file, but you're free to specify whatever location you need. I am writing a Tomcat 6 on Windows hardening guide I must say that the nature of your questions leaves me with some concern about the content of your guide... - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org _ View photos of singles in your area Click Here http://a.ninemsn.com.au/b.aspx?URL=http%3A%2F%2Fdating%2Eninemsn%2Ecom%2Eau%2Fsearch%2Fsearch%2Easpx%3Fexec%3Dgo%26tp%3Dq%26gc%3D2%26tr%3D1%26lage%3D18%26uage%3D55%26cl%3D14%26sl%3D0%26dist%3D50%26po%3D1%26do%3D2%26trackingid%3D1046138%26r2s%3D1_t=773166090_r=Hotmail_Endtext_m=EXT - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Database pooling prob
What did you specify for the ip address that tomcat uses for connecting to the database? If, for example, tomcat is using the host name of your machine, or its ip address that you'd use to connect to it from the outside, and psql is using localhost (127.0.0.1) which is a special ip address that always goes to the machine you're on, so that you don't have to know its ip address, that would be a difference in the configuration. Or psql could be using a unix filesystem socket and not using tcp/ip. Postgres uses some config file with hba in its name to configure its network security; fiddle with that and make it wide open so that tomcat can connect, then go back and figure out how to tighten its security so that only localhost can connect. S Arvind wrote: from this stack trace i can find that there is no problem in Tomcat or dbcp. But when i try my postgre from outside application its working fine but when i connect from local tomcat application it not working fine. I disable the firewall and all ... but i keep on getting this stack AbandonedObjectPool is used (org.apache.tomcat.dbcp.dbcp.abandonedobjectp...@d5eb7) LogAbandoned: true RemoveAbandoned: true RemoveAbandonedTimeout: 300 org.apache.tomcat.dbcp.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Connection refused. Check that the hostname and port are correct and that the postmaster is accepting TCP/IP connections.) at org.apache.tomcat.dbcp.dbcp.BasicDataSource.createDataSource(BasicDataSource.java:1225) at org.apache.tomcat.dbcp.dbcp.BasicDataSource.getConnection(BasicDataSource.java:880) When i tried the netstat to check my vista ports , at that time i found one wierd line... TCP[::1]:80 Michael:50522 ESTABLISHED TCP[::1]:50522Michael:http ESTABLISHED As my tomcat is listening to 80, i dont know why i dont get the ip address in the netstat result for port 80 alone.. It is surely my tomcat request since only when i make the request its showing... I think the problem in ip only... please any one help.. postgres and tomcat in same system and postgres is watchin to port 5432 only. Arvind * Many of lifes failure are people who did not realize how close they were to success when they gave up. -Thomas Edison* - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Database pooling prob
Hi, I am trying to configure Tomcat Server on Eclipse and I am not able to do it. My goal is to create a simple JSP page and deploy that on Tomcat Server and access that page through Browser. Guidance would be really appreciated. Regards, Ados. On Sun, May 3, 2009 at 9:12 PM, Rusty Wright rusty.wri...@gmail.com wrote: What did you specify for the ip address that tomcat uses for connecting to the database? If, for example, tomcat is using the host name of your machine, or its ip address that you'd use to connect to it from the outside, and psql is using localhost (127.0.0.1) which is a special ip address that always goes to the machine you're on, so that you don't have to know its ip address, that would be a difference in the configuration. Or psql could be using a unix filesystem socket and not using tcp/ip. Postgres uses some config file with hba in its name to configure its network security; fiddle with that and make it wide open so that tomcat can connect, then go back and figure out how to tighten its security so that only localhost can connect. S Arvind wrote: from this stack trace i can find that there is no problem in Tomcat or dbcp. But when i try my postgre from outside application its working fine but when i connect from local tomcat application it not working fine. I disable the firewall and all ... but i keep on getting this stack AbandonedObjectPool is used (org.apache.tomcat.dbcp.dbcp.abandonedobjectp...@d5eb7) LogAbandoned: true RemoveAbandoned: true RemoveAbandonedTimeout: 300 org.apache.tomcat.dbcp.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Connection refused. Check that the hostname and port are correct and that the postmaster is accepting TCP/IP connections.) at org.apache.tomcat.dbcp.dbcp.BasicDataSource.createDataSource(BasicDataSource.java:1225) at org.apache.tomcat.dbcp.dbcp.BasicDataSource.getConnection(BasicDataSource.java:880) When i tried the netstat to check my vista ports , at that time i found one wierd line... TCP[::1]:80 Michael:50522 ESTABLISHED TCP[::1]:50522Michael:http ESTABLISHED As my tomcat is listening to 80, i dont know why i dont get the ip address in the netstat result for port 80 alone.. It is surely my tomcat request since only when i make the request its showing... I think the problem in ip only... please any one help.. postgres and tomcat in same system and postgres is watchin to port 5432 only. Arvind * Many of lifes failure are people who did not realize how close they were to success when they gave up. -Thomas Edison* - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Database pooling prob
From: ados1...@gmail.com [mailto:ados1...@gmail.com] Subject: Re: Database pooling prob I am trying to configure Tomcat Server on Eclipse and I am not able to do it. Don't hijack threads. Start a completely new thread (don't just change the subject line) when you have a new topic to discuss. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Deploying a WAR file in tomcat 6
So do you want to deploy without copying the .war file? One way to do it is just to right-click on the project, and click 'Deploy.' It worked for me. Either way, you're able to attach the debugger through netbeans. Either way you deploy your application, you can attach the debugger using tomcat with these instructions: http://bugs.sakaiproject.org/confluence/display/BOOT/Setting+Up+Tomcat+For+Remote+Debugging To attach the debugger through netbeans, you go to Debug-Attach Debugger. I usually do a process attach, and type in the process ID of tomcat in the PID option. The socket attach seems less reliable, but this way never failed me. - Maciek From: astra123 sandhya.jayachand...@tcs.com To: users@tomcat.apache.org Sent: Sunday, May 3, 2009 10:32:36 PM Subject: Re: Deploying a WAR file in tomcat 6 Hi, Thanks for your response. I have deployed the WAR file as you said. Im trying to bring that into NetBeans. Maciek Rakowski wrote: you don't need netbeans to deploy the .war file. You simply put it in your .war file in the webapps directory of the tomcat folder, or use tomcat manager. - Maciek From: astra123 sandhya.jayachand...@tcs.com To: users@tomcat.apache.org Sent: Monday, April 27, 2009 2:40:24 AM Subject: Deploying a WAR file in tomcat 6 Hi, I have downloaded one WAR file from net. I need to deploy that in Tomcat 6 which is inside NetBeans 6 IDE. Can you please help me to resolve this. -- View this message in context: http://www.nabble.com/Deploying-a-WAR-file-in-tomcat-6-tp23250903p23250903.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/Deploying-a-WAR-file-in-tomcat-6-tp23250903p23362241.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Deploying a WAR file in tomcat 6
Hi, Thanks for ur reply. Through NetBeans im able to access the WAR file project. I simply imported the project as web existing web application into NetBeans 6. Now im able to hit the login page of it.:-)) Thanks, Maciek Rakowski wrote: So do you want to deploy without copying the .war file? One way to do it is just to right-click on the project, and click 'Deploy.' It worked for me. Either way, you're able to attach the debugger through netbeans. Either way you deploy your application, you can attach the debugger using tomcat with these instructions: http://bugs.sakaiproject.org/confluence/display/BOOT/Setting+Up+Tomcat+For+Remote+Debugging To attach the debugger through netbeans, you go to Debug-Attach Debugger. I usually do a process attach, and type in the process ID of tomcat in the PID option. The socket attach seems less reliable, but this way never failed me. - Maciek From: astra123 sandhya.jayachand...@tcs.com To: users@tomcat.apache.org Sent: Sunday, May 3, 2009 10:32:36 PM Subject: Re: Deploying a WAR file in tomcat 6 Hi, Thanks for your response. I have deployed the WAR file as you said. Im trying to bring that into NetBeans. Maciek Rakowski wrote: you don't need netbeans to deploy the .war file. You simply put it in your .war file in the webapps directory of the tomcat folder, or use tomcat manager. - Maciek From: astra123 sandhya.jayachand...@tcs.com To: users@tomcat.apache.org Sent: Monday, April 27, 2009 2:40:24 AM Subject: Deploying a WAR file in tomcat 6 Hi, I have downloaded one WAR file from net. I need to deploy that in Tomcat 6 which is inside NetBeans 6 IDE. Can you please help me to resolve this. -- View this message in context: http://www.nabble.com/Deploying-a-WAR-file-in-tomcat-6-tp23250903p23250903.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/Deploying-a-WAR-file-in-tomcat-6-tp23250903p23362241.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/Deploying-a-WAR-file-in-tomcat-6-tp23250903p23363090.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Basic authentication without a secure connection
Tokajac wrote: I think my idea would be scenario 4.) I want to: 1.) Open a browser and write Tomcat application's address (localhost:8080/myapp); 2.) Write username and password in login fields of the application; 3.) Save credentials in session after successful login; 4.) Have link to completely separate application on newly opened page; 5.) When link is clicked, request should be sent that contains row: Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ== Login username and password would be the same for both applications. On this way, I don't need to type username and password again; 6.) From now on, php application is on-board and Tomcat can be forgotten (it remains reachable only via browser's Back button); The question is still, why was it even there in the first place ? I will look now after httpd that you mentioned, awarnier. Hi. From what you write above, there is still a part that you do not understand properly. I would recommend that, before you start spending time on looking up httpd or designing your application, you first do as follows : - get Firefox - install the plugin named HttpFox - in Firefox, start HttpFox - look in the HttpFox window, to see what happens between the browser and the server - then access your php application server - look in the HttpFox window - login - look again in the HttpFox window - in the browser, go to www.google.com - look in the HttpFox window - in the browser, go back to the php application (Oh, you are logged in again, without re-entering user-id/password !) (even if you force a reload of the page) - look in the HttpFox window - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
