Tomcat Maven Plug-In

Hi guys, I'm wondering if there are any plans (that have a real chance) to update the Tomcat Maven plug-in. The last release looks like it's from 2013, so my guess is no. There is a Tomcat 8 Maven repository at

[Bug 60844] ArrayIndexOutOfBoundsException when matching actionListener

https://bz.apache.org/bugzilla/show_bug.cgi?id=60844 --- Comment #2 from Daniel Gray --- (In reply to Christopher Schultz from comment #1) > Thanks for the patch! You're most welcome! :) > Is this not covered by the EL specification? We would prefer not to >

[Bug 60844] ArrayIndexOutOfBoundsException when matching actionListener

https://bz.apache.org/bugzilla/show_bug.cgi?id=60844 Christopher Schultz changed: What|Removed |Added OS|

[Bug 57665] support x-forwarded-host

https://bz.apache.org/bugzilla/show_bug.cgi?id=57665 --- Comment #12 from Christopher Schultz --- I think there are reasonable use-cases for X-Forwarded-Host. Stefan, if you wouldn't mind augmenting the patch to include similar changes to the Filter and the

svn commit: r1786393 - in /tomcat/tc8.0.x/trunk: ./ res/findbugs/filter-false-positives.xml

Author: markt Date: Fri Mar 10 17:22:05 2017 New Revision: 1786393 URL: http://svn.apache.org/viewvc?rev=1786393=rev Log: Suppress false positive Modified: tomcat/tc8.0.x/trunk/ (props changed) tomcat/tc8.0.x/trunk/res/findbugs/filter-false-positives.xml Propchange:

svn commit: r1786392 - in /tomcat/tc8.5.x/trunk: ./ res/findbugs/filter-false-positives.xml

Author: markt Date: Fri Mar 10 17:21:40 2017 New Revision: 1786392 URL: http://svn.apache.org/viewvc?rev=1786392=rev Log: Suppress false positive Modified: tomcat/tc8.5.x/trunk/ (props changed) tomcat/tc8.5.x/trunk/res/findbugs/filter-false-positives.xml Propchange:

svn commit: r1786378 - /tomcat/trunk/res/findbugs/filter-false-positives.xml

Author: markt Date: Fri Mar 10 16:21:34 2017 New Revision: 1786378 URL: http://svn.apache.org/viewvc?rev=1786378=rev Log: Suppress false positive Modified: tomcat/trunk/res/findbugs/filter-false-positives.xml Modified: tomcat/trunk/res/findbugs/filter-false-positives.xml URL:

svn commit: r1786377 - in /tomcat/trunk: java/org/apache/tomcat/util/threads/InlineExecutorService.java webapps/docs/changelog.xml

Author: markt Date: Fri Mar 10 16:17:57 2017 New Revision: 1786377 URL: http://svn.apache.org/viewvc?rev=1786377=rev Log: Correct a potential exception during shutdown when one or more Containers are configured with a value of 1 for startStopThreads. Modified:

svn commit: r1786375 - in /tomcat/trunk: java/org/apache/tomcat/util/descriptor/web/WebXml.java webapps/docs/changelog.xml

Author: markt Date: Fri Mar 10 16:13:55 2017 New Revision: 1786375 URL: http://svn.apache.org/viewvc?rev=1786375=rev Log: Correct a bug in the implementation of the new Servlet 4.0 feature that allows specifying a default request and/or response character encoding per web application. null

[Bug 60844] New: ArrayIndexOutOfBoundsException when matching actionListener

https://bz.apache.org/bugzilla/show_bug.cgi?id=60844 Bug ID: 60844 Summary: ArrayIndexOutOfBoundsException when matching actionListener Product: Tomcat 8 Version: 8.5.x-trunk Hardware: PC Status: NEW

svn commit: r1786364 - in /tomcat/site/trunk: docs/conference.html xdocs/conference.xml

Author: markt Date: Fri Mar 10 15:17:26 2017 New Revision: 1786364 URL: http://svn.apache.org/viewvc?rev=1786364=rev Log: Fix typo Modified: tomcat/site/trunk/docs/conference.html tomcat/site/trunk/xdocs/conference.xml Modified: tomcat/site/trunk/docs/conference.html URL:

svn commit: r1786363 - in /tomcat/site/trunk: docs/conference.html xdocs/conference.xml

Author: markt Date: Fri Mar 10 15:16:20 2017 New Revision: 1786363 URL: http://svn.apache.org/viewvc?rev=1786363=rev Log: Schedule is now published Modified: tomcat/site/trunk/docs/conference.html tomcat/site/trunk/xdocs/conference.xml Modified: tomcat/site/trunk/docs/conference.html

[Bug 50677] Allow system property variables in catalina.properties

https://bz.apache.org/bugzilla/show_bug.cgi?id=50677 Mark Thomas changed: What|Removed |Added Resolution|--- |FIXED

buildbot success in on tomcat-8-trunk

The Buildbot has detected a restored build on builder tomcat-8-trunk while building . Full details are available at: https://ci.apache.org/builders/tomcat-8-trunk/builds/948 Buildbot URL: https://ci.apache.org/ Buildslave for this Build: silvanus_ubuntu Build Reason: The AnyBranchScheduler

[Bug 57665] support x-forwarded-host

https://bz.apache.org/bugzilla/show_bug.cgi?id=57665 --- Comment #11 from Mark Thomas --- The proposed patch adds this to the Valve. The Filter also needs to be updated as does the documentation. Generally, I don't like adding features in Tomcat to work around 3rd party

buildbot failure in on tomcat-trunk

The Buildbot has detected a new failure on builder tomcat-trunk while building . Full details are available at: https://ci.apache.org/builders/tomcat-trunk/builds/2177 Buildbot URL: https://ci.apache.org/ Buildslave for this Build: silvanus_ubuntu Build Reason: The AnyBranchScheduler

[Bug 54618] Add filter implementing HTTP Strict Transport Security (HSTS) [PATCH]

https://bz.apache.org/bugzilla/show_bug.cgi?id=54618 Mark Thomas changed: What|Removed |Added Resolution|--- |FIXED

svn commit: r1786346 - in /tomcat/tc7.0.x/trunk: ./ java/org/apache/catalina/filters/HttpHeaderSecurityFilter.java webapps/docs/changelog.xml webapps/docs/config/filter.xml

Author: markt Date: Fri Mar 10 14:03:58 2017 New Revision: 1786346 URL: http://svn.apache.org/viewvc?rev=1786346=rev Log: Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=54618 Add support to the HttpHeaderSecurityFilter for the HSTS preload parameter. Modified: tomcat/tc7.0.x/trunk/

svn commit: r1786345 - in /tomcat/tc8.0.x/trunk: ./ java/org/apache/catalina/filters/HttpHeaderSecurityFilter.java webapps/docs/changelog.xml webapps/docs/config/filter.xml

Author: markt Date: Fri Mar 10 14:02:26 2017 New Revision: 1786345 URL: http://svn.apache.org/viewvc?rev=1786345=rev Log: Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=54618 Add support to the HttpHeaderSecurityFilter for the HSTS preload parameter. Modified: tomcat/tc8.0.x/trunk/

svn commit: r1786343 - in /tomcat/tc8.5.x/trunk: ./ java/org/apache/catalina/filters/HttpHeaderSecurityFilter.java webapps/docs/changelog.xml webapps/docs/config/filter.xml

Author: markt Date: Fri Mar 10 14:01:06 2017 New Revision: 1786343 URL: http://svn.apache.org/viewvc?rev=1786343=rev Log: Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=54618 Add support to the HttpHeaderSecurityFilter for the HSTS preload parameter. Modified: tomcat/tc8.5.x/trunk/

svn commit: r1786341 - in /tomcat/trunk: java/org/apache/catalina/filters/HttpHeaderSecurityFilter.java webapps/docs/changelog.xml webapps/docs/config/filter.xml

Author: markt Date: Fri Mar 10 13:59:18 2017 New Revision: 1786341 URL: http://svn.apache.org/viewvc?rev=1786341=rev Log: Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=54618 Add support to the HttpHeaderSecurityFilter for the HSTS preload parameter. Modified:

[Bug 48358] JSP-unloading reloaded

https://bz.apache.org/bugzilla/show_bug.cgi?id=48358 Mark Thomas changed: What|Removed |Added Status|REOPENED|RESOLVED

Re: Documentation Contribution: Tomcat Container Managed Security

On 10/03/17 11:19, Adrian Bartlett wrote: > Hi All, > > I documented the: */jsp/security/protected/index.html*, example that > comes bundled with Tomcat. It is documented using Sequence Diagrams and > Class Diagrams in the following two dashboards: >

Re: [VOTE] Release Apache Tomcat 8.5.12

Le 8/03/2017 à 19:56, Mark Thomas a écrit : > The proposed 8.5.12 release is: > [ ] Broken - do not release > [X] Stable - go ahead and release as 8.5.12 +1, all test suites passed on Debian 9 with OpenJDK 8u121. Emmanuel Bourg

[Bug 51142] Offer possible resolution of StringIndexOutOfBoundsException in Request.updateCounters when AJP packetSize is too small.

https://bz.apache.org/bugzilla/show_bug.cgi?id=51142 Mark Thomas changed: What|Removed |Added Status|NEW |RESOLVED

[Bug 49804] Allow Embedded.redirectStreams value to be configurable via System.property

https://bz.apache.org/bugzilla/show_bug.cgi?id=49804 Mark Thomas changed: What|Removed |Added Status|NEW |RESOLVED

Documentation Contribution: Tomcat Container Managed Security

Hi All, I documented the: */jsp/security/protected/index.html*, example that comes bundled with Tomcat. It is documented using Sequence Diagrams and Class Diagrams in the following two dashboards: https://design.codelytics.io/?dashboardId=tomcat.cms.login_form

[Bug 49804] Allow Embedded.redirectStreams value to be configurable via System.property

https://bz.apache.org/bugzilla/show_bug.cgi?id=49804 Mark Thomas changed: What|Removed |Added Attachment #25929|0 |1 is patch|

[Bug 60515] Improve ThreadLocal memory leak clean-up for ContainerBackgroundProcessor

https://bz.apache.org/bugzilla/show_bug.cgi?id=60515 Mark Thomas changed: What|Removed |Added Resolution|--- |WORKSFORME

Re: [VOTE] Release Apache Tomcat 8.0.42

2017-03-09 12:05 GMT+01:00 Mark Thomas : > Correcting the subject. > > On 08/03/17 20:26, Mark Thomas wrote: > > The proposed Apache Tomcat 8.0.42 release is now available for voting. > > > > The main changes since 8.0.41 are: > > > > - Limited relaxation of the HTTP request

Re: [VOTE] Release Apache Tomcat 8.5.12

The proposed 8.5.12 release is: [ ] Broken - do not release [ X ] Stable - go ahead and release as 8.5.12 Test cases all passed. Our test web app works fine. One exception. The server push example will be failing by throwing an NPE if HTTP/2 is not supported. Stack trace is: