RE: Tomcat 8.5.4 and Log4j2

From: Mark Thomas Sent: Thursday, July 28, 2016 15:32 To: Tomcat Users List Subject: Re: Tomcat 8.5.4 and Log4j2 On 28/07/2016 20:09, Chen Levy wrote: > Hello all > > I’ve been using Tomcat 8.0.X with Log4j2, both for Tomcat logging and for my > applicative logs, for a long time now. > It was

tomcat maven plugin sni

is this the right place to ask about tomcat7-maven-plugin v2.2? i am trying to run mvn tomcat:deploy to /manager/text on a host which is proxy passed from behind httpd. several virtual hosts are deployed on the server. SNI works fine through the browser and using openssl s_client

Re: Tomcat 8.5.4 and Log4j2

On 28/07/2016 20:09, Chen Levy wrote: > Hello all > > I’ve been using Tomcat 8.0.X with Log4j2, both for Tomcat logging and for my > applicative logs, for a long time now. > It was done using the following jars: > extras/tomcat-juli.jar > extras/tomcat-juli-adapters.jar jars > > I’m in the

RE: Tomcat 8 RemoteIpValve Issues

Abhijit, Thank you for your prompt reply. It seems that requestAttributesEnabled="true" is required in order to make the valve work. Thanks again for your help! -Nubli -Original Message- From: abhij...@apple.com [mailto:abhij...@apple.com] On Behalf Of Abhijit Das Sent: Thursday,

Tomcat 8.5.4 and Log4j2

Hello all I’ve been using Tomcat 8.0.X with Log4j2, both for Tomcat logging and for my applicative logs, for a long time now. It was done using the following jars: extras/tomcat-juli.jar extras/tomcat-juli-adapters.jar jars I’m in the process of upgrading to Tomcat 8.5.4 and according to

Compression with APR connector and SSL

Hi, I have configured APR with the following versions for components -APR version 1.5.2 - Open SSL version openssl-1.0.2h - Apache Tomcat Native library 1.2.7 The HTTPS connector on server.xml is the shown below. All works properly ex= cept

Re: Tomcat 8 RemoteIpValve Issues

This is how it works for me in Tomcat 8.x (I have hashed out some internal values) (some of my pattern may be redundant) 1.2.3.4 will be your LB IP, the IP that is used to talk to the server. typically the MIP or the SNIP. And, this is my access log :

Tomcat 8 RemoteIpValve Issues

Hi, We have been using RemoteIpValve in Tomcat 7 but it stopped working for us in Tomcat 8. Our load balancer will set a header named "X-Cluster-Client-Ip" with the client's IP as its value. We expect the client's IP value would be overwritten as the "remoteAddr" but it is not. It is working

Re: (Cross-Posted) Does anybody have any experience with Tomcat 8 on an IBM Midrange (AS/400, iSeries, whatever they're calling it this week) box?

On 28 July 2016 16:20:33 BST, "James H. H. Lampert" wrote: >On 7/27/16, 7:01 PM, Matthew Herzog wrote: >> HAHAHAHAHAHA > >That was uncalled-for. Indeed. The Community expects all contributors to abide by the code of conduct.

Re: (Cross-Posted) Does anybody have any experience with Tomcat 8 on an IBM Midrange (AS/400, iSeries, whatever they're calling it this week) box?

On 7/27/16, 7:01 PM, Matthew Herzog wrote: HAHAHAHAHAHA That was uncalled-for. -- JHHL - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org

Re: How to disable CSRF checks?

On 28/07/2016 07:55, Robert Alsdorff wrote: > On 26.07.2016 12:22, Mark Thomas wrote: >> On 26/07/2016 11:18, Robert Alsdorff wrote: >>> Hey folks, >>> >>> during some tests I had several 403 Validation of CSRF security token >>> failed errors. Since it's only a testing system I'd like to disable

Tomcat embedded fail to start after upgrade - setDigest is missing

in the release of 8.0.x of tomcat embedded I worked with setDigest("SHA-1") , and in the 8.5 they removed this method and replaced it by CredentialHandler ,I used it like this: MessageDigestCredentialHandler handler = new MessageDigestCredentialHandler(); try {

Re: How to disable CSRF checks?

On 26.07.2016 12:22, Mark Thomas wrote: On 26/07/2016 11:18, Robert Alsdorff wrote: Hey folks, during some tests I had several 403 Validation of CSRF security token failed errors. Since it's only a testing system I'd like to disable the CSRF checks but I don't find any information on how to do