Tim Funk a écrit :
Then you need to extend org.apache.catalina.valves.RemoteAddrValve to check the
port (and other customizations as needed)
-Tim
I will try this.
Thanks
Sebastien Moretti wrote:
[EMAIL PROTECTED] a écrit :
I would like to deny access for my webapps through port 8080
Hallo,
I'm using Tomcat 5.0. For my web-application I use Hibernate, Struts and
Struts-Layout Frameworks.
I have following problem:
By starting my application with http://localhost:8080/app or
http://my_computer_name:8080/app I can normally work with application. I can
log me and so on.
But in
if you are only using one Host element in server.xml, then you don't
need any aliases at all, get rid of them. all your requests will go to
that host/app anyway
filip
Stasa Jerinic wrote:
Hallo,
I'm using Tomcat 5.0. For my web-application I use Hibernate, Struts and
Struts-Layout
I'm using only one Host. And I will to call the webapplication not through
http://dato.at:8080/app but buy http://dato.app.at that I inserted as a Alias.
Greeting,
if you are only using one Host element in server.xml, then you don't
need any aliases at all, get rid of them. all your
I'm using only one Host. And I will to call the web-application not for example
by http://dato.at:8080/app but by http://dato.app.at (dato.app.at I inserted
as a Alias)
Greetings,
Jerinic Stasa
if you are only using one Host element in server.xml, then you don't
need any aliases at all, get
the port (8080 vs 80) is not part of the hostname, but you set the port in
Connector port=...
element
FIlip
Stasa Jerinic wrote:
I'm using only one Host. And I will to call the web-application not for example by http://dato.at:8080/app but by http://dato.app.at (dato.app.at I inserted as a
Hi all
My question involves Tomcat in conjunction with Apache and mod_rewrite.
Tomcat appends a jsessionid to the first request, but not to subsequent
requests, which is normal behaviour. When I access my Servlet directly
through Tomcat that is precisely what I get.
But when I redirect
Yes I set the port 8080 in Connector port...
I think that I not anderstand you. I have now two ways to call my
web-application.
One is by the computer name (for example http://dato.at:8080/app) or the other
way is by the Alias that I inserted in the Host tag (http://dato.app.at).
The calling by
Hi Peter,
Peter Stavrinides wrote:
Hi all
My question involves Tomcat in conjunction with Apache and mod_rewrite.
Tomcat appends a jsessionid to the first request, but not to subsequent
requests, which is normal behaviour. When I access my Servlet directly
through Tomcat that is precisely
http://dato.app.at
--
port: 80
context: /
http://dato.at:8080/app
--
port: 8080
context: /app
does that paint the picture for you,
you are confusing too many things at the same time
Filip
Stasa Jerinic wrote:
Yes I set the port 8080 in Connector port...
I think that I not anderstand
Hi,
I'm using tomcat 5.5.20 on a linux-FC7 (krn 2.6.20). Every about 20 days
tomcat freeze and I must
restart it.
When tomcat freeze it doesn't accept any new connection (infinite connection
wait) and use no CPU.
As viewable form the jstack JVM dump (obtained from a freezed tomcat) it
seem
http://dato.app.at
--
port: 80
context: /
ok it should be called http://dato.app.at/app (this maked I wrong), but what
should I do because of Port, so that I have not to write the Port number in URL
adress. Should I write Connector port=80 ... and should it looks like by
port=8080
Thanks,
Although I am not responsible for the front end, I seem to recall we use
mod_proxy for the reverse proxy. We have front end Apache web servers
that listen for requests externally, internally I can access Tomcat
directly. mod_rewrite is used to make our applications on Tomcat and
Apache appear
I was just wondering how much effort it would require to set up an announce
list for Tomcat. I don't want the volume of user or dev, just notifications
of updates or patches, new releases and such. An announce list is pretty
standard for most open source projects, surely Tomcat is professional
Hi. I need two extra fields in my login form, other than j_username and
j_password. The problem is that these extra fields doesn't seem to be
forwarded to the original requested URL. Right now I've implemented my
own Authenticator, which extends
Brian McArdle wrote:
I was just wondering how much effort it would require to set up an announce
list for Tomcat. I don't want the volume of user or dev, just notifications
of updates or patches, new releases and such. An announce list is pretty
standard for most open source projects, surely
Diego Manilla Suárez wrote:
Hi. I need two extra fields in my login form, other than j_username and
j_password. The problem is that these extra fields doesn't seem to be
forwarded to the original requested URL. Right now I've implemented my
own Authenticator, which extends
Peter Stavrinides wrote:
Although I am not responsible for the front end, I seem to recall we use
mod_proxy for the reverse proxy. We have front end Apache web servers
that listen for requests externally, internally I can access Tomcat
directly. mod_rewrite is used to make our applications on
Hi
This part is still sligtly confusing to me:
We have 575 potential connections that we can except on the httpd
server, according to my understanding mod_jk will load balance these
connections to the tomcat servers. Thus typically 48 connections per
tomcat. This does seem obviously wrong ...
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lb,
lightbulb432 wrote:
But if the login and login-error pages are the same page (meaning
that when someone fails an access check they get redirected to the
login-error page, which is actually the login page where they must
re-enter their
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lb,
lightbulb432 wrote:
The requirement doesn't accept having two tables (i.e. userTableA and
userTableB), partly because increased maintenance, the possibility of table
definitions going out of sync, etc.
CREATE VIEW, anyone?
- -chris
[EMAIL PROTECTED] wrote:
Hi
This part is still sligtly confusing to me:
We have 575 potential connections that we can except on the httpd
server, according to my understanding mod_jk will load balance these
connections to the tomcat servers. Thus typically 48 connections per
tomcat. This does
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rahul,
Prasad, Rahul B (STSD) wrote:
I need information on whether IPv6 is supported on Tomcat for the
following [Linux] distros:
Redhat Enterprise Edition Linux 4 (base version) (Tomcat 4.1)
Yup.
Redhat Enterprise Edition Linux 5 (base
On 8/30/07, Mark Thomas [EMAIL PROTECTED] wrote:
[snip]
Brian McArdle wrote:
[snip]
There is also Apache Announce? Granted it isn't Tomcat specific, but
it is lower traffic then dev or users.
http://www.apache.org/foundation/mailinglists.html
-- brian
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark and Diego,
Mark Thomas wrote:
Diego Manilla Suárez wrote:
Hi. I need two extra fields in my login form, other than j_username
and j_password.
[snip]
Is there a simpler and/or nicer way to do what I want?
Take a look at
On 30/08/2007, Mark Thomas wrote:
Casting aspersions at the professionalism of the Tomcat project, and
by implication the Tomcat community (ie everyone on this list), isn't
the way to win friends and influence people. Neither is going to get
your question answered, at least not be me.
You
Thanks Rainer, this makes sense.
Peter
Rainer Jung wrote:
Peter Stavrinides wrote:
Although I am not responsible for the front end, I seem to recall we
use mod_proxy for the reverse proxy. We have front end Apache web
servers that listen for requests externally, internally I can access
Hello,
setting keyAlias=root did not change anything. Then I downloaded the
latest version of Tomcat, added the Verisign cert to my cacerts file
and imported my Verisign-signed SSL certificate into a new keystore.
Unfortunately that does not change my situation: Either Tomcat is unable to
Hi,
I was thinking that if the OS supports IPv6 and a Tomcat distro is available
for that OS, IPv6 would automatically be supported by Tomcat. Or is there
more to it than meets the eye(and I am grossly mistaken) ?
Sonal
On 8/30/07, Christopher Schultz [EMAIL PROTECTED] wrote:
-BEGIN PGP
Thanks for your patience, things are starting to make more sense now.
Tomcat associates one thread with each incoming connection
(at least the default connector) independant of it's
idleness, i.e. even if there is no request coming in. The
connectionTimeout parameter in the connector
From: Sonal Goyal [mailto:[EMAIL PROTECTED]
Subject: Re: Need info on IPv6 support for Tomcat in RHEL and
SLES distros
I was thinking that if the OS supports IPv6 and a Tomcat
distro is available for that OS, IPv6 would automatically
be supported by Tomcat.
Tomcat, since it's pure
if you want both port 80 and 8080 you need two connectors
Connector port=80
Connector port=8080 .
Filip
Stasa Jerinic wrote:
http://dato.app.at
--
port: 80
context: /
ok it should be called http://dato.app.at/app (this maked I wrong), but what should I do because of
Hi!, I'm trying to create a stateless tomcat's farm but wanted sticky session
mechanism. What is the best way to achieve this?, using hardware or software
load balancing?
Thanks,
Johann
--
View this message in context:
[EMAIL PROTECTED] wrote:
If no value is specified then the maximum connectors is default 200.
I assumed that Tomcat would not allow more connections than 200 to be
made to port 8009. Why then do we see more than 200 connections on port
8009 on the httpd and tomcat side. Is this additional
Yes, thanks. Extending further, if a JVM is available for an OS, and that OS
supports IPv6, the JVM will be supporting IPv6.
In answer to Rahul's question:
1. Does the OS support IPv6?
2. Is there a JVM available for that OS?
If answer to both of the above is yes, a Tomcat install on that OS
whether you run software on your own machines, or buy an appliance with
loadbalancing software (what you refer to hardware loadbalancer) is
dependent on your budget, nothing else :)
Filip
bajistaman wrote:
Hi!, I'm trying to create a stateless tomcat's farm but wanted sticky session
looks like the keyAlias=root is not taking into effect, as the
container complains for not finding one named tomcat
could be that it just looks for tomcat alias to be existent.
this is what I would try next, import the same certificate using the
tomcat alias, leave the root alias in there.
Hi all,
I've been trying hard to enable the SSL connector in TomCat for a few
days now. As I don't have very much experience with SSL, it's quite hard
for me to figure out what's going wrong.
I read a lot of different setup guides, but I'm getting the same error
messages all the time:
Hello Filip,
thanks a lot for all your support. No, that's something I already tried.
When importing the Verisign root cert in my cacerts
file and then importing the signed cert in my keystore, he seems to be able
to build a certificate chain because I am no
longet being asked whether I would
Hello Christoph,
welcome to the club, I am having the same problem. See my thread Problems
with SSL-enabled Tomcat 5.5.
Bye,
Werner.
- Original Message -
From: Christoph Lechner [EMAIL PROTECTED]
To: users@tomcat.apache.org
Sent: Thursday, August 30, 2007 5:11 PM
Subject: Tomcat
aah, now I think we are getting somewhere.
Is this not the keystore that was used to generate the CSR, and also
contains the private key?
if not, then I don't know how it would work, you still need your private
key in order to have a working SSL setup, the signed cert is only what
tomcat sends
Hi list,
We use 3 loadbalanced tomcat workers (tomcat 4.1.18 (!) ), fronted by apache2,
mod_jk 1.2.23.
They are defined as follows:
...
worker.worker1.type=ajp13
worker.worker2.type=ajp13
worker.worker2.type=ajp13
...
worker.loadbalancer.balanced_workers=worker1, worker2, worker3
...
We
my guess is that the keystore file doesn't contain your private key,
Filip
Christoph Lechner wrote:
Hi all,
I've been trying hard to enable the SSL connector in TomCat for a few
days now. As I don't have very much experience with SSL, it's quite hard
for me to figure out what's going wrong.
I
Filip Hanik - Dev Lists wrote:
my guess is that the keystore file doesn't contain your private key,
Hi,
that's right. Actually the file sent to the CA was created using OpenSSL
(as far as I remember). So the keystore isn't the one used to create the
CSR. Among the files I have at the moment,
if you didnt resolve it yet,You can check this:
http://jira.icefaces.org/browse/ICE-1104
btw, i had same problem, actually i have not.
Subject:TomCat 6 EL lib
Group: Tomcat-users
From: �rico Teixeira
Date: 18 Jul 2007
Hi
I'm trying to run a context
Concerning mod_jk there is no hard upper limit. If the number of workers
(counting all lb workers and all members of lb workers comes close to
64, you will need to increase the JkShmSize.) No dependency on the
tomcat or AJP version. I didn't think about old JK versions though.
1.2.23 doesn't
Views would definitely allow me to keep the two tables separate, but then I'd
have to authenticate against the two source tables separately (i.e. each
application would point to the source table rather than to the view). If
pointing both applications to the common view, then doesn't the original
Christoph, I hate these problems, they're always tough to work through,
and keytool doesn't make it any easier.
Did you use keytool to create your key and certificate request? If you
created the key and request outside of keytool, then keytool won't have
the private key and can't import the
Hi,
M4N - Arjan Tijms wrote:
The problem I'm encountering is that for a percentage of the POST
requests, Tomcat seems to loose all parameters. Our application uses a
filter that logs the (first few characters of) post parameters.
To follow up on this issue, I think that I have probably
Hi
I'm going to be a real pain, but it make no sense now...
The email has been a team effort in our offices. We have included some
diagrams to help illustrate our understanding or lack off.
Using a simple example:
1/ Assume I have one httpd server (prefork) that can spawn a maximum of
200
Hi all,
I am using Tomcat 5.5 as both Web Server and Web Container.
I have 4 tomcat instances A,B,C,D - 2 each on 2 Web Server boxes.
There's a
hardware load balancer sitting before these that routes to each of the
4
IP/ports.
I haven't used method described in the TOmcat 5.5 docs on the
Morris Jones wrote:
Christoph, I hate these problems, they're always tough to work through,
and keytool doesn't make it any easier.
Did you use keytool to create your key and certificate request? If you
created the key and request outside of keytool, then keytool won't have
the private key
[EMAIL PROTECTED] wrote:
Hi
I'm going to be a real pain, but it make no sense now...
Let's see :)
The email has been a team effort in our offices. We have included some
diagrams to help illustrate our understanding or lack off.
Using a simple example:
1/ Assume I have one httpd server
Christoph Lechner wrote:
Filip Hanik - Dev Lists wrote:
my guess is that the keystore file doesn't contain your private key,
Hi,
that's right. Actually the file sent to the CA was created using OpenSSL
(as far as I remember). So the keystore isn't the one used to create the
CSR. Among
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lb,
lightbulb432 wrote:
Views would definitely allow me to keep the two tables separate, but then I'd
have to authenticate against the two source tables separately (i.e. each
application would point to the source table rather than to the view). If
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ice,
Ice72 wrote:
I'm using tomcat 5.5.20 on a linux-FC7 (krn 2.6.20). Every about 20
days tomcat freeze and I must restart it.
Your thread dump looks clean. Are you sure Tomcat is doing anything? If
you run 'top' does it consume any CPU time?
Great piece of code! Now everything is fine with me as well. Thanks to
everyone who helped me on this one!
I suppose it would be worth adding this piece of code or at least a link to
the Tomcat site!!!
Bye,
Werner.
- Original Message -
From: Christoph Lechner [EMAIL PROTECTED]
To:
there is not a spec for this release yet, there is JSR-315 which will
most likely be finalized sometimes next year, and aligned with JEE 6,
so don't hold your breath. You can still run Tomcat 6 with JDK 1.6
Filip
Sridhar Kanneganti wrote:
Hi,
When will the next release of Tomcat be
Wow, those are good suggestions. I was thinking about the String
concatenation, but didn't think it was worth considering further until you
just mentioned it. So let me see if I have this straight:
Anytime I want to use more than two credentials, I have to provide my own
Realm implementation.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lb,
lightbulb432 wrote:
Anytime I want to use more than two credentials, I have to provide my
own Realm implementation. But the only time I need to do the String
concatentation is when at least one of the additional credentials
(i.e. beyond
Werner Schalk wrote:
Great piece of code! Now everything is fine with me as well. Thanks to
everyone who helped me on this one!
I suppose it would be worth adding this piece of code or at least a link
to the Tomcat site!!!
Damn right. Maybe one should add the case where the CSR wasn't created
I am pretty confident you can use other tools other than keytool. My belief
is that if you use things like openssl, then you may need to play with the
sslProtocol attribute in the server.xml file (maybe PKCS12). There may be
something on a forum on using sslProtocol, or within the Tomcat doco
1. Aim: To display online the status of each incoming HttpSession
2. Design used: In webapps/myapplication/WEB-INF/web.xml, along with the
servlet application deployed in servlet /servlet section, another
Class is deployed in the listener/listener section that implements
HttpSessionListener (and
I just started to help maintain an application that I didn't
originally develop. It is using context-param elements and
getInitParameter() to access application configuration items in
web.xml.
I have always used env-entry elements and JNDI to store and read
these items, respectively.
Brian McArdle wrote:
snip/
whether there was an obstacle
to creating an announce-list that I do not know of, otherwise I think it
would be a great addition to the operation of Tomcat, and a boon to those
who use it.
No technical obstacle. As Brian pointed out, there is an Apache wide
one and
65 matches
Mail list logo
