2012/6/28 Komáromi, Zoltán komaromi.zol...@horticosoft.hu:
Hi,
I need to use custom authenticator, because a part of application is
using container authentication, and unfortunately the usersernames in
realm conflicts with usernames in application database. :(
So I need, that if anibody is
1. Why not a Realm?
Because the authentication depends on session attribute, and I want to
bypass the form if user is logged in.
So is this correct?
Valve className=hu.kozo.security.MyFormAuthenticator /
The tomcat's doc says, that Java class name of the implementation to
use. This MUST be set
2012/6/28 Komáromi, Zoltán komaromi.zol...@horticosoft.hu:
1. Why not a Realm?
Because the authentication depends on session attribute, and I want to
bypass the form if user is logged in.
When I used Tomcat's realm to authenticate users , that was a issue
than I missed : to access to session
The problem was with jk2.shm file. In any case I installed the latest
iaspi_redirect and got it working to some extent. the login goes to the
ROOT/index.jsp rather than my webapp's index.jsp.
uriworkermap.properties is
/AtYourService/*.jsp=worker1
/AtYourService/servlet/*=worker1
Classification: For internal use only
Hi,
We have issues with logging with one of our customers in production.
We have log4J configured in our application.
But for this one customer the logs that are written to Application.log is
also
going to STDOUT.log and because of this STDOUT.log is
Good Evening Pavel Implementing a SSL Connector on Tomcat will prevent
Session Fixation attack
Martin,
This is not correct. Using SSL will not stop session fixation attacks
Chris
2012/6/28 Neena Damodaran neena.damoda...@db.com:
Classification: For internal use only
If it is for internal use, do not post it to a publicly archived mailing list.
The same for your disclaimer below.
We have issues with logging with one of our customers in production.
We have log4J
We have an application that we've been running successfully for years.
Now one of our potential customers wants to investigate possibly
switching it to use https instead of http, and I'm trying to figure out
what's involved in the conversion.
The clients are headless industrial computers that
Hi,
was trying the parallel deployment feature:
- have an app xapp under webapps, running
- created a new war of xapp, named xapp##001.war
- placed the under webapps
no xapp#001 folderlogs says:
SEVERE: The war name [xapp##001.war] is invalid. The archive will be ignored.
any idea?
Gabriele.
-Original Message-
From: David kerber [mailto:dcker...@verizon.net]
Sent: Thursday, June 28, 2012 7:25 AM
To: Tomcat Users List
Subject: Adapting a webapp to use https
We have an application that we've been running successfully for years.
Now one of our potential customers wants
On 6/28/2012 9:27 AM, Jeffrey Janner wrote:
-Original Message-
From: David kerber [mailto:dcker...@verizon.net]
Sent: Thursday, June 28, 2012 7:25 AM
To: Tomcat Users List
Subject: Adapting a webapp to use https
We have an application that we've been running successfully for years.
Now
2012/6/28 Gabriele Bulfon gbul...@sonicle.com:
Hi,
was trying the parallel deployment feature:
- have an app xapp under webapps, running
- created a new war of xapp, named xapp##001.war
- placed the under webapps
no xapp#001 folderlogs says:
SEVERE: The war name [xapp##001.war] is
- Original Message -
Hi,
was trying the parallel deployment feature:
- have an app xapp under webapps, running
- created a new war of xapp, named xapp##001.war
- placed the under webapps
no xapp#001 folderlogs says:
SEVERE: The war name [xapp##001.war] is invalid. The
I think, if I replace the FormAuthenticator with an descendant, it'll
solve the problem.
To extend FormAuthenticator is simple, but how can I make Tomcat to use it?
I tested this out at one time but it was never placed in production. My
terse notes, which might be leaving something out, on
A link to the Tomcat documentation:
http://tomcat.apache.org/tomcat-7.0-doc/appdev/deployment.html#Shared_Li
brary_Files
-Terence Bandoian
Thanks, Terence. Now I have a related question...
This is perhaps more a Java question than a Tomcat question. I have
copied a jar file into the shared
What we are doing?
We are in the process of migrating from Resin 2.0.3 to Tomcat 7.0.28.
The codebase running on Resin when subjected to a stress test (using
resin's connection pool) with maxactive of 50 perform fine. It meets out
non functionality requirements including hits/sec, throughtput,
so the client will need to encrypt the data before the client puts the data on
the wire?
in that case you'll want to take a look at configure both the client
transmitting the secured data and server ACK or responding with encrypted resp
via JSSE
-Original Message-
From: Yasser [mailto:yarafa...@gmail.com]
Sent: Thursday, June 28, 2012 9:44 AM
To: users@tomcat.apache.org
Subject: Tomcat 7.0.28 connection pool issue
...
What is the issue?
When we run a stress test on the same codebase deployed to Tomcat 7.0.28,
at about
Yes. It does show that maxactive has reached 100. I also use splunk to get
the connection status at the oracle side.
What I dont understand is that Resin needs just 50 connections to handle
the same load. I am in the process of increasing the count to 300 and see
if that makes a difference. Oracle
On Thu, Jun 28, 2012 at 12:38 PM, Yasser yarafa...@gmail.com wrote:
Yes. It does show that maxactive has reached 100. I also use splunk to get
the connection status at the oracle side.
What I dont understand is that Resin needs just 50 connections to handle
the same load. I am in the process
Could you have run into
https://issues.apache.org/bugzilla/show_bug.cgi?id=53367
?
You could try out
http://people.apache.org/~fhanik/jdbc-pool/bz53367-jdbc-pool.jar
-Original Message-
From: Yasser [mailto:yarafa...@gmail.com]
Sent: Thursday, June 28, 2012 9:39 AM
To: Tomcat Users
That was the issue with Tomcat 7.0.26 and they fixed it in 7.0.28
On Thu, Jun 28, 2012 at 11:54 AM, Filip Hanik (mailing lists)
devli...@hanik.com wrote:
Could you have run into
https://issues.apache.org/bugzilla/show_bug.cgi?id=53367
?
You could try out
Then the issue you may be running into is that your Tomcat configuration
supports a higher concurrency level than what your Resin configuration is
setup to do.
With higher concurrency, there will be a need for more data base
connections. If you still want to run with a lower number of connections,
We use Oracle 11.2.0 and it can handle more than 1000 connections.
Here is the stacktrace of the connection pool empty error that I receive in
tomcat logs
Caused by: org.apache.tomcat.jdbc.pool.PoolExhaustedException:
[http-apr-30690-exec-743] Timeout: Pool empty. Unable to fetch a connection
in
By default fairQueue is set to true and the value of maxWait is 30 seconds.
I will try increasing the maxwait to 60 seconds and see if that buys tomcat
enough time to return connections to the pool and have it available for the
next connection request. Will let you know.
On Thu, Jun 28, 2012 at
As I read the context docs (
http://tomcat.apache.org/tomcat-7.0-doc/config/context.html ), the only way to
define a default web application is via a context element in the server.xml
file. Is this true? So, this means that it is IMPOSSIBLE to drop a default
web app WAR into the webapps
On 6/28/2012 3:20 PM, chad.da...@emc.com wrote:
As I read the context docs (
http://tomcat.apache.org/tomcat-7.0-doc/config/context.html ), the only way to
define a default web application is via a context element in the server.xml
file. Is this true? So, this means that it is IMPOSSIBLE to
Hi Filip
Is there an algorithm we can use to determine if the op should configure
concurrent db connections (fairQueue=false) vs config non-concurrent db
connections (fairQueue=true)
e.g. if 50%+ of database cursors are 'read-only' then concurrent connections
*should be used* and TC
David kerber wrote:
If I'm not mistaken (which is definitely possible), if you name it
ROOT.war, it will also become the default context.
Quite true. Even a neophyte like me is aware of that. ;-p
(And there's a lot more about Tomcat that I *don't* know, than there is
that I *do* -- it was
-Original Message-
From: cjder...@gmail.com [mailto:cjder...@gmail.com] On Behalf Of chris
derham
Sent: Thursday, June 28, 2012 10:47 AM
To: Tomcat Users List
Subject: Re: Tomcat 7.0.28 connection pool issue
On Thu, Jun 28, 2012 at 12:38 PM, Yasser yarafa...@gmail.com wrote:
Martin, generally I would run with fairQueue=false - this is the default.
The only time I would change to fairQueue=true is if we see threads being
starved, and not getting connections. However, this scenario is very
unlikely unless there is extreme concurrency going on.
Filip
-Original
On 6/27/2012 8:35 PM, Christopher Schultz wrote:
100 active db connections sounds like a lot. Do you really need to
support 100 simultaneous connections to your database? Can your
database support that many connections with active queries from each?
Do you have a cluster? Remember that each
On 1:59 PM, Cotton, Joseph B wrote:
A link to the Tomcat documentation:
http://tomcat.apache.org/tomcat-7.0-doc/appdev/deployment.html#Shared_Li
brary_Files
-Terence Bandoian
Thanks, Terence. Now I have a related question...
This is perhaps more a Java question than a Tomcat question. I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mansukhdeep,
On 6/27/12 11:00 PM, THIND Mansukhdeep wrote:
You were correct Chris. I found the jar file which was causing the
issue. It is a kernel specific jar that contains wrapper classes
for context initialization with the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Zoltán,
On 6/28/12 4:08 AM, Komáromi, Zoltán wrote:
1. Why not a Realm? Because the authentication depends on session
attribute, and I want to bypass the form if user is logged in.
So is this correct?
Valve
Hello. I am having problems trying to authenticate my tomcat 7 manager app. I
keep getting a 401 Unauthorized page. My config is as follows:
tomcat-users.xml (Located in /etc/tomcat5)
[code]
?xml version='1.0' encoding='utf-8'?
tomcat-users
role rolename=manager-gui/
user username=manager
OK Chris. Next time on I will post to the whole community. I did not understand
the second part of your reply. You have said that We have seen lack of
entropy in /dev/random
(or equivalent) just blocking: basically, the CPU is just waiting for
data to become available for, say, crypto
From: THIND Mansukhdeep [mailto:mansukhdeep_th...@3dplmsoftware.com]
Subject: RE: FW: Tomcat server start up taking excessive time
What is lack of entropy in dev/random? Please clarify.
GIYF.
http://en.wikipedia.org/wiki//dev/random
http://en.wikipedia.org/wiki/Entropy_%28computing%29
If
38 matches
Mail list logo