Re: FW: [EXT]Re: how to define database resource in just context.xml or server.xml

Rick, On 3/29/24 14:05, Rick Noel wrote: Chris, I found I could use a ResourceLink element and put it in my context.xml file. The name in that ResourceLink is the name of resource that I have fully defined in my server.xml. Sot the context.xml points to the fully define resource which is in

Re: [EXT]Re: how to define database resource in just context.xml or server.xml

Rick, On 3/29/24 11:56, Rick Noel wrote: If have the resource defined in CATALINA_BASE/conf/context.xml And CATALINA_BASE/conf/server.xml You really shouldn't have anything custom in CATALINA_BASE/conf/context.xml. That will affect every application deployed on the server. Perhaps you only

FW: [EXT]Re: how to define database resource in just context.xml or server.xml

Chris, I found I could use a ResourceLink element and put it in my context.xml file. The name in that ResourceLink is the name of resource that I have fully defined in my server.xml. Sot the context.xml points to the fully define resource which is in my server.xml So snippet from my

RE: [EXT]Re: how to define database resource in just context.xml or server.xml

If have the resource defined in CATALINA_BASE/conf/context.xml And CATALINA_BASE/conf/server.xml Rick Noel Systems Programmer | Westwood One rn...@westwoodone.com -Original Message- From: Christopher Schultz Sent: Friday, March 29, 2024 11:47 AM To: users@tomcat.apache.org Subject:

Re: how to define database resource in just context.xml or server.xml

Rick, On 3/29/24 09:48, Rick Noel wrote: Can someone tell me why I need to have my database source defined in both my context.xml and server.xml? I thought we are suppose to define it in only one location? It's definitely not a requirement to specify it in both places. I can only log into my

how to define database resource in just context.xml or server.xml

Hello, Can someone tell me why I need to have my database source defined in both my context.xml and server.xml? I thought we are suppose to define it in only one location? I can only log into my app if I have it defined in both my context.xml and server.xml Below is my database resource

Re: [EXT]Re: [EXT]Re: performance tunning of Tomcat 10

Rick, On 3/28/24 15:38, Rick Noel wrote: my bottleneck (app slowness to respond is the at the database connection max), I am not even going to try and adjust minThreads and maxThreads. When I tried to increase maxConnection to our database from and existing connection max of 20, to a new

RE: [EXT]Re: [EXT]Re: performance tunning of Tomcat 10

Chris, my bottleneck (app slowness to respond is the at the database connection max), I am not even going to try and adjust minThreads and maxThreads. When I tried to increase maxConnection to our database from and existing connection max of 20, to a new connectionMax of 50, I got errors, see

Re: [EXT]Re: performance tunning of Tomcat 10

Rick, On 3/27/24 09:22, Rick Noel wrote: -Original Message- From: Christopher Schultz Sent: Wednesday, March 27, 2024 8:24 AM To: Tomcat Users List ; Rick Noel Cc: Voodoo nmulcahy gmail ; David Jung Subject: [EXT]Re: performance tunning of Tomcat 10 Rick, On 3/27/24 07:53, Rick

RE: [EXT]Re: performance tunning of Tomcat 10

Rick Noel Systems Programmer | Westwood One rn...@westwoodone.com -Original Message- From: Christopher Schultz Sent: Wednesday, March 27, 2024 8:24 AM To: Tomcat Users List ; Rick Noel Cc: Voodoo nmulcahy gmail ; David Jung Subject: [EXT]Re: performance tunning of Tomcat 10 Rick,

Re: performance tunning of Tomcat 10

Rick, On 3/27/24 07:53, Rick Noel wrote: I was wondering if the apache foundation has any tools we can use to fine tune Tomcat 10. Tools to deteming how to set the best heap size for Tomcat startup and the best connection attributes of minSpareThreads and MaxThreads. What is your goal? I

performance tunning of Tomcat 10

Hello, I was wondering if the apache foundation has any tools we can use to fine tune Tomcat 10. Tools to deteming how to set the best heap size for Tomcat startup and the best connection attributes of minSpareThreads and MaxThreads. I know my application at times will reach 100 concurrent

Community Over Code NA 2024 Travel Assistance Applications now open!

Hello to all users, contributors and Committers! [ You are receiving this email as a subscriber to one or more ASF project dev or user mailing lists and is not being sent to you directly. It is important that we reach all of our users and contributors/committers so that they may get a chance

Re: Tomcat Internal Architect for JSP compilation?

Subodh, On 3/26/24 06:59, Subodh Joshi wrote: I am planning to do same now and may be we will use the property *server.tomcat.basedir* But this may create another issue ,it will grow the size of the folder. What makes you say that? Is this possible in the coming release tomcat/embedded

Re: Tomcat Internal Architect for JSP compilation?

Thanks Chris & others for your input, I am planning to do same now and may be we will use the property *server.tomcat.basedir* But this may create another issue ,it will grow the size of the folder . Is this possible in the coming release tomcat/embedded tomcat give a feature to delete the

Re: Speeding up tomcat

Alex, On 3/25/24 13:06, Alex Hatcher wrote: Java version: 11.0.20 Tomcat version: 9.0.59 Are you able to upgrade these? Your Tomcat is nearly 2 years old and your Java is ... I'm not sure how old. This will have nothing to do with performance. Just security and general stability. OS

[ANN] Apache Tomcat 10.1.20 Available

The Apache Tomcat team announces the immediate availability of Apache Tomcat 10.1.20. Apache Tomcat 10 is an open source software implementation of the Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language, Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations

[ANN] Apache Tomcat 8.5.100 Available

The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.5.100. *This will likely be the final release of Apache Tomcat 8.5. Please see the EOL notice linked at the end of this message.* Apache Tomcat 8 is an open source software implementation of the Java Servlet,

RE: Speeding up tomcat

Alex > -Original Message- > From: Alex Hatcher > Sent: Monday, March 25, 2024 12:06 PM > To: users@tomcat.apache.org > Subject: Speeding up tomcat > > > > Java version: 11.0.20 > > Tomcat version: 9.0.59 > > > OS Version: Windows Server 2022 Datacenter Azure Edition > > Azure VM

Speeding up tomcat

Java version: 11.0.20 Tomcat version: 9.0.59 OS Version: Windows Server 2022 Datacenter Azure Edition Azure VM Type and Specs: D8s v3 8 CPU 32 GiB Mem VM Generation V2 VM Architecture x64 Location East US Zone 1 We have a

Re: Tomcat 9.0.87 - status 400 in css / images

DAngel, On 3/22/24 16:14, DAngel wrote: Tomcat 9.0.87 (and Tomcat 9.0.76) Ubuntu 22.04 (and Red hat 8) java 8 : openjdk version "1.8.0_382" protocol: HTTP I have migrated an application from tomcat 7 (7.0.76) to tomcat 9.0.76 (and also to tomcat 9.0.87) After upgrading to Tomcat 9.0.76, the

Re: PKCS#8 encryption algorithm unrecognized

Sorry for the delay. Our certificate creation process was automated several years ago and I had to go through the code to figure out the commands being used for the certificates First, we use the createcert.exe from the Sybase 17 installation to generate a DB cert for ODBC connectivity. Please

Tomcat 9.0.87 - status 400 in css / images

Hi guys. Tomcat 9.0.87 (and Tomcat 9.0.76) Ubuntu 22.04 (and Red hat 8) java 8 : openjdk version "1.8.0_382" protocol: HTTP I have migrated an application from tomcat 7 (7.0.76) to tomcat 9.0.76 (and also to tomcat 9.0.87) After upgrading to Tomcat 9.0.76, the web page is not displaying

RE: [EXT]Re: Tomcat session replication issue - java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute :

Thank you very much Chris The classes my app uses should be serialize anyway so I just go that route. But thanks for that code snippet too Rick Noel Systems Programmer | Westwood One rn...@westwoodone.com -Original Message- From: Christopher Schultz Sent: Friday, March 22, 2024 2:36

Re: HttpSession tracking

Robert. On 3/22/24 14:11, Robert Turner wrote: Thanks for figuring it out -- I will keep that in mind when I go to split our "mega session object" up as that will impact some of the decisions for sure. Yeah, I guess you end up with a "dummy object" on the session as a result -- I guess we got

Re: [EXT]Re: Tomcat session replication issue - java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute :

Rick, On 3/22/24 13:33, Rick Noel wrote: I do not want to replicate customer because that class does not implement serializable I was looking for someway that the Manager would NOT try to replicate it This is an allow-list which is much more secure than a deny-list. It's a regular

Re: HttpSession tracking

Thanks for figuring it out -- I will keep that in mind when I go to split our "mega session object" up as that will impact some of the decisions for sure. Yeah, I guess you end up with a "dummy object" on the session as a result -- I guess we got lucky with ours -- our handlers on the session

Re: HttpSession tracking

All, On 3/22/24 09:59, Christopher Schultz wrote: All, On 3/22/24 09:33, Robert Turner wrote: On Fri, Mar 22, 2024 at 9:28 AM Christopher Schultz < ch...@christopherschultz.net> wrote: Robert, On 3/21/24 15:31, Robert Turner wrote: We receive the sessionWillPassivate and

RE: [EXT]Re: Tomcat session replication issue - java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute :

I do not want to replicate customer because that class does not implement serializable I was looking for someway that the Manager would NOT try to replicate it Rick Noel Systems Programmer | Westwood One rn...@westwoodone.com -Original Message- From: Mark Thomas Sent: Friday, March

Re: [EXT]Re: Tomcat session replication issue - java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute :

On 22/03/2024 15:43, Rick Noel wrote: Mark, So if my customer object is failing to get set in the session replication, I could add this to the config snippet? sessionAttributeNameFilter="customer" You set that to the attributes you DO want to replicate, not the ones you don't. Mark so

RE: [EXT]Re: Tomcat session replication issue - java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute :

So setting... sessionAttributeNameFilter="customer" does not work, still getting the error java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute : customer Do I need to set this also? sessionAttributeValueClassNameFilter=

Re: Memory leak in EncodingDetector?

Very cool Chris, thanks for the quick reaction! Simon out On Fri, Mar 22, 2024 at 1:41 PM Christopher Schultz < ch...@christopherschultz.net> wrote: > Simon, > > On 3/21/24 12:39, Simon Niederberger wrote: > > Hi Chris > > > > Personally I'd go with > > > > XML_INPUT_FACTORY = > >

RE: [EXT]Re: Tomcat session replication issue - java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute :

Mark, So if my customer object is failing to get set in the session replication, I could add this to the config snippet? sessionAttributeNameFilter="customer" so like this?...

Re: Tomcat session replication issue - java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute :

On 22/03/2024 15:15, Rick Noel wrote: Is there a way to configure DeltaManager or the Cluster element so it does not cause my application to throw this error. 22-Mar-2024 10:56:34.382 SEVERE [http-nio-8586-exec-5] org.apache.catalina.core.StandardWrapperValve.invoke Servlet.service() for

Tomcat session replication issue - java.lang.IllegalArgumentException: setAttribute: Non-serializable attribute :

Is there a way to configure DeltaManager or the Cluster element so it does not cause my application to throw this error. 22-Mar-2024 10:56:34.382 SEVERE [http-nio-8586-exec-5] org.apache.catalina.core.StandardWrapperValve.invoke Servlet.service() for servlet [jsp] in context with path

Re: HttpSession tracking

All, On 3/22/24 09:33, Robert Turner wrote: On Fri, Mar 22, 2024 at 9:28 AM Christopher Schultz < ch...@christopherschultz.net> wrote: Robert, On 3/21/24 15:31, Robert Turner wrote: We receive the sessionWillPassivate and sessionDidActivate callbacks on startup. Odd that you are not. That's

Re: Memory leak in EncodingDetector?

Simon, On 3/21/24 12:39, Simon Niederberger wrote: Hi Chris Personally I'd go with XML_INPUT_FACTORY = XMLInputFactory.newFactory(XMLInputFactory.class.getName(), EncodingDetector.class.getClassLoader()); allowing me to place my own JAR in common/lib if I really want to (the only scenario I

Re: HttpSession tracking

On Fri, Mar 22, 2024 at 9:28 AM Christopher Schultz < ch...@christopherschultz.net> wrote: > Robert, > > On 3/21/24 15:31, Robert Turner wrote: > > We receive the sessionWillPassivate and sessionDidActivate callbacks > > on startup. Odd that you are not. That's how we achieve the same. > On

Re: Tomcat Internal Architect for JSP compilation?

Subodh, On 3/22/24 01:36, Subodh Joshi wrote: Hi Chris Thanks for your response. So i added below properties in application.properties file spring.mvc.cache-control.cache-allowed=false and then Deleted the /tmp/tomcat directory . So now when i restart the server A.jsp only fail with 500

Re: HttpSession tracking

Robert, On 3/21/24 15:31, Robert Turner wrote: We receive the sessionWillPassivate and sessionDidActivate callbacks on startup. Odd that you are not. That's how we achieve the same. On 3/21/24 16:21, Robert Turner wrote: Just to add a bit more information, our handler class, for better or for

RE: [EXT]Re: [EXT]Re: Tomcat 10 waning that expireSessionsOnShutdown is not set

Thanks Chuck great link to lots of good stuff Rick Noel Systems Programmer | Westwood One rn...@westwoodone.com -Original Message- From: Chuck Caldarale Sent: Thursday, March 21, 2024 4:00 PM To: Tomcat Users List Subject: [EXT]Re: [EXT]Re: Tomcat 10 waning that

RE: Tomcat Internal Architect for JSP compilation?

Linux has "auditd" tool to log file system changes: https://www.redhat.com/sysadmin/configure-linux-auditing-auditd -Harri -Original Message- From: Subodh Joshi Sent: perjantai 22. maaliskuuta 2024 7.36 To: Tomcat Users List Subject: Re: Tomcat Internal Architect for JSP compilation?

Re: Tomcat Internal Architect for JSP compilation?

One possible workaround is to precompile the JSP's at build time. https://tomcat.apache.org/tomcat-9.0-doc/jasper-howto.html#Web_Application_Compilation -Tim On Fri, Mar 22, 2024 at 1:37 AM Subodh Joshi wrote: > > Why i am doing this exercise? > In our some of the deployed linux environment

Re: Tomcat Internal Architect for JSP compilation?

Hi Chris Thanks for your response. So i added below properties in application.properties file > spring.mvc.cache-control.cache-allowed=false > > and then Deleted the /tmp/tomcat directory . So now when i restart the server A.jsp only fail with 500 error (ClassNotFoundException) as this is first

Re: HttpSession tracking

Just to add a bit more information, our handler class, for better or for worse, implements the following interfaces all in one class: implements HttpSessionBindingListener, HttpSessionActivationListener, HttpSessionIdListener, HttpSessionListener, ServletContextListener We also use that same

Re: [EXT]Re: Tomcat 10 waning that expireSessionsOnShutdown is not set

> On Mar 21, 2024, at 14:50, Rick Noel wrote: > > Do you have a feel if DeltaManager is better than BackupManager? Depends on what your needs are. There are some presentations on the subject that you might want to look at: https://tomcat.apache.org/presentations.html ApacheCon 2018 NA:

RE: [EXT]Re: Tomcat 10 waning that expireSessionsOnShutdown is not set

Thank you Chuck Do you have a feel if DeltaManager is better than BackupManager? Rick Noel Systems Programmer | Westwood One rn...@westwoodone.com -Original Message- From: Chuck Caldarale Sent: Thursday, March 21, 2024 3:37 PM To: Tomcat Users List Subject: [EXT]Re: Tomcat 10

Re: Tomcat 10 waning that expireSessionsOnShutdown is not set

> On Mar 21, 2024, at 14:23, Rick Noel wrote: > > Could someone tell me why I would get the below waning about > expireSessionsOnShutdown not being set > > WARNING [main] org.apache.tomcat.util.digester.SetPropertiesRule.begin Match > [Server/Service/Engine/Host/Cluster/Manager] failed to

Re: HttpSession tracking

We receive the sessionWillPassivate and sessionDidActivate callbacks on startup. Odd that you are not. That's how we achieve the same. On Thu, Mar 21, 2024 at 3:25 PM Christopher Schultz < ch...@christopherschultz.net> wrote: > All, > > After having written a solution using JMX to do something

HttpSession tracking

All, After having written a solution using JMX to do something like this, I'd like to make it cleaner and I'm not sure it's entirely possible using just Servlet APIs. I'd like to be able to track every HttpSession for the application. for admin purposes, I'd like to be able to analyze: 1.

Tomcat 10 waning that expireSessionsOnShutdown is not set

Hello, Could someone tell me why I would get the below waning about expireSessionsOnShutdown not being set WARNING [main] org.apache.tomcat.util.digester.SetPropertiesRule.begin Match [Server/Service/Engine/Host/Cluster/Manager] failed to set property [expireSessionsOnShutdown] to [false] I

Re: Memory leak in EncodingDetector?

Hi Chris Personally I'd go with XML_INPUT_FACTORY = XMLInputFactory.newFactory(XMLInputFactory.class.getName(), EncodingDetector.class.getClassLoader()); allowing me to place my own JAR in common/lib if I really want to (the only scenario I can think of is an edge-case where there's a bug in

Re: Regression in mutual authentication in 9.0.86+?

On 21/03/2024 16:12, Amit Pande wrote: Thank you Mark for your inputs. Upon further debugging, it looks like the issue we ran into is also with the reloading of SSL context. Test execution sequence: 1. Add a trusted CA in Tomcat's trust store. 2. The SSL context is reloaded if any of the

RE: Regression in mutual authentication in 9.0.86+?

Thank you Mark for your inputs. Upon further debugging, it looks like the issue we ran into is also with the reloading of SSL context. Test execution sequence: 1. Add a trusted CA in Tomcat's trust store. 2. The SSL context is reloaded if any of the trust/key store has changes. 3. Perform a

Re: Use JAVA/CATALINA_OPTS arguments in server.xml

чт, 21 мар. 2024 г. в 17:04, Manak Bisht : > > I have not defined its value. It works fine if I do, however, I am > expecting it to use the default instead. How old is your version of Tomcat? This feature dates back to spring of year 2020

Re: Use JAVA/CATALINA_OPTS arguments in server.xml

Manak, On 3/21/24 09:57, Manak Bisht wrote: On Thu, 21 Mar 2024, 19:18 Christopher Schultz, < ch...@christopherschultz.net> wrote: Manak, On 3/21/24 05:38, Manak Bisht wrote: Thanks, Chuck! This works for defining the port but does not work for the host. Using either of the above throws

Re: Use JAVA/CATALINA_OPTS arguments in server.xml

I have not defined its value. It works fine if I do, however, I am expecting it to use the default instead. Sincerely, Manak Bisht On Thu, 21 Mar 2024, 19:18 Christopher Schultz, < ch...@christopherschultz.net> wrote: > Manak, > > On 3/21/24 05:38, Manak Bisht wrote: > > Thanks, Chuck! > > This

Re: Tomcat Internal Architect for JSP compilation?

Subudh, On 3/21/24 07:32, Subodh Joshi wrote: Expert, Recently i came across a issue and i was getting no clue what was going on wrong with the Application. So here is the issue , we were getting following issue in our web application(Springboot+Embedded Tomcat) which is deployed into Linux

Re: Use JAVA/CATALINA_OPTS arguments in server.xml

Manak, On 3/21/24 05:38, Manak Bisht wrote: Thanks, Chuck! This works for defining the port but does not work for the host. port="4000" host="${tomcat.member:-localhost}"/> port="4000" host="${tomcat.member:-127.0.0.1}"/> Using either of the above throws the following error, 21-Mar-2024

Re: Memory leak in EncodingDetector?

Simon, On 3/20/24 15:36, Simon Niederberger wrote: What if you create an empty jaxp.properties file and make it available to the common ClassLoader (e.g. in lib/empty-jaxp.jar:/jaxp.properties) -- does that prevent the problem? > I think that boils down to what I'm already doing with the

Tomcat Internal Architect for JSP compilation?

Expert, Recently i came across a issue and i was getting no clue what was going on wrong with the Application. So here is the issue , we were getting following issue in our web application(Springboot+Embedded Tomcat) which is deployed into Linux machine java.lang.ClassNotFoundException: >

Re: Use JAVA/CATALINA_OPTS arguments in server.xml

Thanks, Chuck! This works for defining the port but does not work for the host. Using either of the above throws the following error, 21-Mar-2024 15:04:58.185 SEVERE [GroupChannel-Heartbeat-1] org.apache.catalina.tribes.group.interceptors.TcpFailureDetector.memberAlive Unable to perform

Re: Memory leak in EncodingDetector?

Hi Chris Spring's ObservationFilterChainDecorator is ridiculous, isn't it? > What if you create an empty jaxp.properties file and make it available to the > common ClassLoader (e.g. in lib/empty-jaxp.jar:/jaxp.properties) -- does that > prevent the problem? I think that boils down to what I'm

Re: Memory leak in EncodingDetector?

Simon, On 3/20/24 09:59, Simon Niederberger wrote: The whole thing is caused by Maven dependencies which pull in com.fasterxml.woodstox:woodstox-core. The WstxInputFactory has a @ServiceProvider(XMLInputFactory.class) annotation, where ServiceProvider is

Re: Memory leak in EncodingDetector?

Hi Chris The whole thing is caused by Maven dependencies which pull in com.fasterxml.woodstox:woodstox-core. The WstxInputFactory has a @ServiceProvider(XMLInputFactory.class) annotation, where ServiceProvider is org.ehcache.spi.service.ServiceProvider. I didn't manage to trace the key code

Re: What future plans are for Tomcat authentication

On 20/03/2024 06:22, Mircea Butmalai wrote: Questions are: 1. Is Jakarta Authentication specification going to replace the authentication part of Jakarta Servlet specification? Unlikely. 2. Are current authenticatiors from Tomcat (FORM, SPNEGO, SSL, HTTP DIGEST, HTTP BASIC,

What future plans are for Tomcat authentication

Hello, I am asking this questions on Tomcat Users mail list in order to find answers about how users and developers of Tomcat see the topic I am discribing. In jakarta EE there is work for Jakarta Authentication (that reached 3.1 in development) formely JASPIC which Tomcat has implementation

Re: PKCS#8 encryption algorithm unrecognized

On 19/03/2024 18:18, Timothy Resh wrote: where the . is the fqdn This works fine *until* Tomcat 9.0.83 and now we get the following listed below. I have read some of the https://bz-he-de.apache.org/bugzilla/show_bug.cgi?id=67675 bugs and ask for help. The certificates are being created

Re: PKCS#8 encryption algorithm unrecognized

Timothy, On 3/19/24 14:18, Timothy Resh wrote: where the . is the fqdn This works fine *until* Tomcat 9.0.83 and now we get the following listed below. Is it possible for you to re-test with Tomcat 9.0.85 or later? -chris I have read some of the

Re: [EXT]Re: 404 for j_security_check

Rick, On 3/19/24 12:58, Rick Noel wrote: Thanks for the help, I agree with all your statements. I now see the JSESSIONID cookies. I found a bug in my code. My issue was nothing to do with Tomcat behavior. Sorry for you, but glad it wasn't us :) -chris -Original Message- From:

PKCS#8 encryption algorithm unrecognized

where the . is the fqdn This works fine *until* Tomcat 9.0.83 and now we get the following listed below. I have read some of the https://bz-he-de.apache.org/bugzilla/show_bug.cgi?id=67675 bugs and ask for help. The certificates are being created using openssl 3.013. Please note the

RE: [EXT]Re: 404 for j_security_check

Chris, Thanks for the help, I agree with all your statements. I now see the JSESSIONID cookies. I found a bug in my code. My issue was nothing to do with Tomcat behavior. Rick Noel Systems Programmer | Westwood One rn...@westwoodone.com -Original Message- From: Christopher Schultz

Re: problems with partitioned cookies

Holger, On 3/19/24 04:46, info@klawitter.de wrote: dang! I missed that while checking the changelog. Thanks for pointing out. I'm curious about CHIPS. It's still considered experimental and, honestly, every web browser on the planet is poised to use the equivalent of "partitioned

Re: Memory leak in EncodingDetector?

Simon, On 3/18/24 15:17, Simon Niederberger wrote: I'm analyzing a memory leak reported by Tomcat, and have narrowed it down to org.apache.jasper.compiler.EncodingDetector: private static final XMLInputFactory XML_INPUT_FACTORY; static { XML_INPUT_FACTORY = XMLInputFactory.newInstance();

Re: TLSCertificateReloadListener Detects Expiration But Never Reads New Cert & Key Files

On 19/03/2024 07:54, Ivano Luberti wrote: Could there be a regression also in 9.0.86 Yes. It will be fixed in 9.0.88. Mark Because I had a similar issue (reload tls didn't work) but It was the first time I was doing that on that tomcat instance and I  had assumed there was some

Re: problems with partitioned cookies

Hi Mark, dang! I missed that while checking the changelog. Thanks for pointing out. Regards, Holger Mark Thomas wrote (at 2024-03-18 17:03 +): > On 18/03/2024 15:16, info@klawitter.de wrote: > > > What am I doing wrong here? (Tomcat 9.0.82) > >

Re: TLSCertificateReloadListener Detects Expiration But Never Reads New Cert & Key Files

Could there be a regression also in 9.0.86 Because I had a similar issue (reload tls didn't work) but It was the first time I was doing that on that tomcat instance and I  had assumed there was some misconfiguration, even though certificates where server correctly but the wrong expiration

Re: TLSCertificateReloadListener Detects Expiration But Never Reads New Cert & Key Files

Hi Mark --   Ha!  I just ran a test (while you were responding) and made the same confirmation:  TLSCertificateReloadListener in 10.1.18 works, TLSCertificateReloadListener in 10.1.19 doesn't.   Thank you!  Happy to confirm 10.1.20 for you; just ask.  And, by the way, I've seen 'markt'

Re: TLSCertificateReloadListener Detects Expiration But Never Reads New Cert & Key Files

On 18/03/2024 08:21, Mark Thomas wrote: On 17/03/2024 15:26, Justin Y wrote: Hi Everyone --    I've spent a few hours scratching my head and then diving into the source code of 10.1.19 to figure out what's going on. Could you test with 10.1.18? I'm wondering if the user provided SSLContext

Memory leak in EncodingDetector?

Hi I'm analyzing a memory leak reported by Tomcat, and have narrowed it down to org.apache.jasper.compiler.EncodingDetector: private static final XMLInputFactory XML_INPUT_FACTORY; static { XML_INPUT_FACTORY = XMLInputFactory.newInstance(); } This class is called by webapp code on a GET

Re: problems with partitioned cookies

On 18/03/2024 15:16, info@klawitter.de wrote: What am I doing wrong here? (Tomcat 9.0.82) https://tomcat.apache.org/tomcat-9.0-doc/changelog.html Search for "partitioned" The problem is you are using Tomcat 9.0.82. Support for a default partitioned attribute wasn't added until 9.0.85.

problems with partitioned cookies

Hi there, I have to make my webapp complying to CHIPS. For this I am trying to configure the CookieProcessor to allow partitioned cookies. For this I added a CookieProcessor directive to the context.xml like this: However tomcat complains about this with [Catalina-utility-1]

Re: Regression in mutual authentication in 9.0.86+?

I've just tested 9.0.x and mutual TLS authentication appears to be working as expected. I suggest starting with testing a simple JSP that echoes that attribute and if you still see the issue, provide us with your configuration. Note that the issue may be related to the certs you are using so

Re: TLSCertificateReloadListener Detects Expiration But Never Reads New Cert & Key Files

On 17/03/2024 15:26, Justin Y wrote: Hi Everyone --   I've spent a few hours scratching my head and then diving into the source code of 10.1.19 to figure out what's going on. Could you test with 10.1.18? I'm wondering if the user provided SSLContext changes in 10.1.19 have triggered a

TLSCertificateReloadListener Detects Expiration But Never Reads New Cert & Key Files

Hi Everyone --   I've spent a few hours scratching my head and then diving into the source code of 10.1.19 to figure out what's going on.   I'm using the /TLSCertificateReloadListener/ to reload files that

Re: [EXT]Re: 404 for j_security_check

Rick, On 3/15/24 13:49, Rick Noel wrote: I really only want auth once All hits to jsp pages after a successful login do not trigger the Auth process again. But hits to java action class servlets do trigger the Auth process Its like session data is being lost for some pages but not for

RE: [EXT]Re: 404 for j_security_check

I really only want auth once All hits to jsp pages after a successful login do not trigger the Auth process again. But hits to java action class servlets do trigger the Auth process Its like session data is being lost for some pages but not for others I was thinking maybe this is

Re: 404 for j_security_check

Rick, On 3/14/24 15:37, Rick Noel wrote: After moving from tomcat 9 to tomcat 10 after a user successfully logs in and then hits a restricted page, the login page is hit again but on this second login hit I get 404 page not found This is actually expected, since j_security_check is only

Regression in mutual authentication in 9.0.86+?

Hello all, I have upgraded the Tomcat version from 9.0.85 to 9.0.86 (and tried with 9.0.87 too). Some of our tests which involve on mutual authentication ("certificateVerification = optional") have started to fail. In tests where the client does pass the certificate, I didn't see any SSL

[ANN] Apache Tomcat 9.0.87 available

The Apache Tomcat team announces the immediate availability of Apache Tomcat 9.0.87. Apache Tomcat 9 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and JASPIC technologies. Apache Tomcat 9.0.87 is a bugfix and

[ANN] Apache Tomcat 11.0.0-M18 (alpha) available

The Apache Tomcat team announces the immediate availability of Apache Tomcat 11.0.0-M18 (alpha). Apache Tomcat 11 is an open source software implementation of the Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language, Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations

404 for j_security_check

After moving from tomcat 9 to tomcat 10after a user successfully logs in and then hits a restricted page, the login page is hit again but on this second login hit I get 404 page not found How do I set the correct path in my login jsp so that j_security_check is found? BTW I actually

Re: reloading context with manager-script

Mark, On 3/14/24 07:57, Mark Thomas wrote: On 12/03/2024 13:47, Christopher Schultz wrote: Greg and Mark, On 3/12/24 05:00, Greg Huber wrote: On 11/03/2024 18:17, Christopher Schultz wrote: Mark, On 3/10/24 08:49, Mark Thomas wrote: On 10/03/2024 10:50, Greg Huber wrote: Hello, Using

Re: Tomcat 9 returning 404 for audio files

Sam, On 3/13/24 22:34, Sam wrote: Thank you so much! Finally issue is resolved. Regards! On Tue, Mar 12, 2024, 11:43 p.m. Anson Cheung wrote: ok,it's a problem caused by tomcat cache. You need to disable it. Please refer to

Re: What does the number preceding the catalina.org.apache.juli.AsyncFileHandler in Tomcat's conf/logging.properties mean?

:) On Thu, Mar 14, 2024 at 7:53 PM Mark Thomas wrote: > > On 14/03/2024 11:51, Vincent Daniel wrote: > > Thank you so much. > > I am ashamed that I did not read the documentation carefully. > > No problem. It is only a single line in the docs and it helps a lot if > you know what you are looking

Re: reloading context with manager-script

On 12/03/2024 13:47, Christopher Schultz wrote: Greg and Mark, On 3/12/24 05:00, Greg Huber wrote: On 11/03/2024 18:17, Christopher Schultz wrote: Mark, On 3/10/24 08:49, Mark Thomas wrote: On 10/03/2024 10:50, Greg Huber wrote: Hello, Using http://tomcat/manager-app/text/reload?path=/

Re: What does the number preceding the catalina.org.apache.juli.AsyncFileHandler in Tomcat's conf/logging.properties mean?

On 14/03/2024 11:51, Vincent Daniel wrote: Thank you so much. I am ashamed that I did not read the documentation carefully. No problem. It is only a single line in the docs and it helps a lot if you know what you are looking for. Mark On Thu, Mar 14, 2024 at 7:46 PM Mark Thomas wrote:

Re: What does the number preceding the catalina.org.apache.juli.AsyncFileHandler in Tomcat's conf/logging.properties mean?

Thank you so much. I am ashamed that I did not read the documentation carefully. On Thu, Mar 14, 2024 at 7:46 PM Mark Thomas wrote: > > On 14/03/2024 11:36, Vincent Daniel wrote: > > Hi, community > > > > When I configured Tomcat logs, I found the following configuration in > >

Re: What does the number preceding the catalina.org.apache.juli.AsyncFileHandler in Tomcat's conf/logging.properties mean?

On 14/03/2024 11:36, Vincent Daniel wrote: Hi, community When I configured Tomcat logs, I found the following configuration in logging.properties 1catalina.org.apache.juli.AsyncFileHandler 2localhost.org.apache.juli.AsyncFileHandler 3manager.org.apache.juli.AsyncFileHandler

What does the number preceding the catalina.org.apache.juli.AsyncFileHandler in Tomcat's conf/logging.properties mean?

Hi, community When I configured Tomcat logs, I found the following configuration in logging.properties 1catalina.org.apache.juli.AsyncFileHandler 2localhost.org.apache.juli.AsyncFileHandler 3manager.org.apache.juli.AsyncFileHandler 4host-manager.org.apache.juli.AsyncFileHandler I am not sure

<    1   2   3   4   5   6   7   8   9   10   >