Unless the certificate is invalid, this usually stops further prompts to accept the certificate.
Mark
Xeth Waxman wrote:
Mark:
Here is my server.xml file. I do have one application that I need the secure connection for, so I can't comment out the AJP running on 8009.
<?xml version='1.0' encoding='utf-8'?>
<Server>
<Listener className="org.apache.catalina.mbeans.ServerLifecycleListener"/>
<Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener"/>
<GlobalNamingResources>
<Environment name="simpleValue" type="java.lang.Integer" value="30"/>
<Resource auth="Container" description="User database that can be
updated and saved" name="UserDatabase"
type="org.apache.catalina.UserDatabase"/>
<Resource name="jdbc/bestDB" type="javax.sql.DataSource"/>
<ResourceParams name="UserDatabase">
<parameter>
<name>factory</name>
<value>org.apache.catalina.users.MemoryUserDatabaseFactory</value>
</parameter>
<parameter>
<name>pathname</name>
<value>conf/tomcat-users.xml</value>
</parameter>
</ResourceParams>
<ResourceParams name="jdbc/bestDB">
<parameter>
<name>validationQuery</name>
<value>select * from invoiceitem</value>
</parameter>
<parameter>
<name>maxWait</name>
<value>5000</value>
</parameter>
<parameter>
<name>maxActive</name>
<value>50</value>
</parameter>
<parameter>
<name>password</name>
<value>board97</value>
</parameter>
<parameter>
<name>url</name>
<value>jdbc:jtds:sqlserver://192.168.12.9/best_app</value>
</parameter>
<parameter>
<name>driverClassName</name>
<value>net.sourceforge.jtds.jdbcx.TdsDataSource</value>
</parameter>
<parameter>
<name>maxIdle</name>
<value>2</value>
</parameter>
<parameter>
<name>username</name>
<value>admin</value>
</parameter>
</ResourceParams>
</GlobalNamingResources>
<Service name="Catalina">
<Connector acceptCount="100" connectionTimeout="20000"
disableUploadTimeout="true" port="8080" redirectPort="8081">
</Connector>
<Connector port="8009" protocol="AJP/1.3"
protocolHandlerClassName="org.apache.jk.server.JkCoyoteHandler"
redirectPort="8081">
</Connector>
<Connector className="org.apache.coyote.tomcat5.CoyoteConnector"
port="8081" minProcessors="5" maxProcessors="75"
enableLookups="true" disableUploadTimeout="true"
acceptCount="100" debug="0" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS"
keystoreFile="C:\Certs\.keystore"> </Connector>
<Engine defaultHost="localhost" name="Catalina">
<Host appBase="webapps" name="localhost">
<DefaultContext
className="org.apache.catalina.core.StandardDefaultContext"
reloadable="true">
</DefaultContext>
<Logger className="org.apache.catalina.logger.FileLogger"
prefix="localhost_log." suffix=".txt" timestamp="true"/>
</Host>
<Logger className="org.apache.catalina.logger.FileLogger"
prefix="catalina_log." suffix=".txt" timestamp="true"/>
<Realm className="org.apache.catalina.realm.UserDatabaseRealm"/>
</Engine>
</Service>
</Server>
I'm almost positive the issue is with my server.xml file, I just don't know what it is. Your help and time is definitely valued!
--Xeth
---------- Forwarded message ---------- From: Mark Thomas <[EMAIL PROTECTED]> To: Tomcat Users List <tomcat-user@jakarta.apache.org> Date: Tue, 15 Feb 2005 19:38:40 +0000 Subject: Re: Security Constraint Could be a server.xml problem. Can you post the connector parts of your server.xml?
Mark
Xeth Waxman wrote:
I have a new servlet which I've created - whenever you try to access this servlet, I get the security certificate dialog box (do you want to accept this certificate). However, this application has no security constraint in its web.xml file - I don't know why it's trying to serve up a certificate. In addition, you have to click 'yes' on the security dialog three times, as if it's trying to serve the certificate three times in a row. And, in the end, it doesn't take the user to a secur connection - it just takes them to the http: connection I wanted to get to in the first place. I'm using Tomcat 5.5 - here's a copy of my very simple web.xml - if anyone has any ideas, I'd appreciate it. I don't want to make this a secure site and take on the added overhead just because I can't stop the stupid certificate from popping up.
<?xml version="1.0" encoding="UTF-8"?> <web-app version="2.4" xmlns="http://java.sun.com/xml/ns/j2ee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd"> <servlet> <servlet-name>ACHLogin</servlet-name> <servlet-class>com.gcc.achpayments.ACHLogin</servlet-class> </servlet> <servlet> <servlet-name>AddACHPayment</servlet-name> <servlet-class>com.gcc.achpayments.AddACHPayment</servlet-class> </servlet>
<servlet-mapping> <servlet-name>ACHLogin</servlet-name> <url-pattern>/ACHLogin</url-pattern> </servlet-mapping> <servlet-mapping> <servlet-name>AddACHPayment</servlet-name> <url-pattern>/AddACHPayment</url-pattern> </servlet-mapping>
<session-config> <session-timeout>30</session-timeout> </session-config>
<welcome-file-list> <welcome-file> login.jsp </welcome-file> <welcome-file> index.jsp </welcome-file> <welcome-file> index.html </welcome-file> <welcome-file> index.htm </welcome-file> </welcome-file-list> </web-app>
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]