Re: File upload giving error: Stream ended unexpectedly
--- Manish Agrawal [EMAIL PROTECTED] wrote: Hi, I have a web applications using sturts framework. The application allow users to upload data files on server. The application is running on Apache Tomcat 5.0 server. I am using Commons File Upload 1.0 for uploading files. Struts has it's own File Upload, based on Commons. Why don't you use it? Nix. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: First time with Tomcat
Yeah i'm running Apache 2, PHP and MySQ. I tried what you said, but if I remove the 8080 connectors, I can't access to Tomcat main page anymore, even on the PC running it.. Can you explain a bit more? Ok, here some more informations: You need a connector between Apache and Tomcat, so that Apache get all user requests and passes it to Tomcat. This module is called mod_jk. Have you installed this on your Apache? If not you can get it for example from this following site: http://mirror.serversupportforum.de/apache/jakarta/tomcat-connectors/jk/binaries/linux/jk-1.2.14 Then move the connector to path to apache/lib/mod_jk.so (rename it to mod_jk.so makes things simpler). After this go to your configuration directory path to apache/conf. Make a file and call it 'workers.properties'. Insert following: worker.list=server1 worker.server1.port=8009 worker.server1.host=localhost worker.server1.type=ajp13 As you see you are now using the port 8009 to pass all requests to Tomcat (look at the server.xml, you will find a 8009 connector entry!). Insert in your httpd.conf the line: IfModule !mod_jk.c LoadModule jk_module /usr/lib/apache2/mod_jk.so /IfModule IfModule mod_jk.c JkWorkersFile /etc/apache2/workers.properties JkLogFile /var/log/apache2/mod_jk.log # Loglevel -- can be debug, error, warn or fatal JkLogLevel warn /IfModule Ok? Now, take a look at your server.xml. Search for an entry like this: Connector port=8009 protocol=AJP/1.3 tomcatAuthentication=false / This is the connector entry on the Tomcate side. Now, restart the Apache and the Tomcat and try to get a jsp web page. Is it now working? - Franck Jean-François Lebeau From: Franck Borel [EMAIL PROTECTED] Reply-To: Tomcat Users List users@tomcat.apache.org To: Tomcat Users List users@tomcat.apache.org Subject: Re: First time with Tomcat Date: Tue, 28 Mar 2006 09:05:22 +0200 Hi Jean-Francois, in fact that is the most stable version. Thanks Konstantin, 1) is now fixed. Is the 5.15 the most stable 5.x version? And my 2) Could a config issue prevent another PC from connecting or I should look for a firewall and the like issue ? As I understand you use Apache and Tomcat in tandem. Now you can add following entries in you httpd.conf: Location /jsp-examples Options None AllowOverride None Order deny,allow Allow from IP address 1,IP address 2 /Location Remove the 8080 Connector from your server.xml. That's all. -- Franck Thanks for help. Jean-François Lebeau From: Konstantin L Kouptsov [EMAIL PROTECTED] Reply-To: Tomcat Users List users@tomcat.apache.org To: Tomcat Users List users@tomcat.apache.org Subject: Re: First time with Tomcat Date: Mon, 27 Mar 2006 21:36:37 -0600 Jean-François Lebeau wrote: Hi, I need to create a simple webapp for a course project, I tried to install and configure Tomcat but I got some problems. I hope someone can help me a bit. 1) After the installation (on Windows XP), I start Tomcat and go to the default page (on http://ipadress:8080) but I can't use the Jsp/servlet examples. I got this error message (sorry, french config) : Etat HTTP 404 - /jsp-examples/ Try installing Tomcat 5.5.15 instead. Worked for me. Examples in 5.5.16 do not work - something is broken. It's a known issue. Konstantin. 2) If I try to connect to Tomcat from an other PC in the lab, it doesn't work, should I look for a firewall issue or a config issue first ? Thanks a lot. Jean-François Lebeau - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Get JDBCRealm's current user
Okay, I think I nearly get it. What do I have to do to get the DataSource from within a JSP page? Get the ServletContext? There's no method to do a lookup for a DataSource with ServletContext. -- View this message in context: http://www.nabble.com/Get-JDBCRealm%27s-current-user-t1341315.html#a3646592 Sent from the Tomcat - User forum at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Logs not getting generated in tomcat 5.5.12
Hello, Von: GUNJAN SINGH [EMAIL PROTECTED] hi I'm using j2sdk1.4.2_09 version and tamcat 5.5.12 and myeclipse as an IDE. The problem is that logs are not getting generated under apache-tomcat-5.5.12/logs directory. The server is starting properly and i have added the required campatibility jars. Can any one tell me the reason as to why tomcat logs are not getting generated and what i should do in order to get this done. the problem are the startup parameters of Tomcat. Have a look at startup.sh or startup.cmd(Windows) for the correct parameters to enable Tomcat-JULI log and the destination in you myeclipse plugin. Maybe the plugin does set a different CATALINA_HOME directory and variable, and under that CATALINA_HOME/logs you will find your files. Regards Boris - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: tomcat 5.0 vs. 5.5? tomcat 5.5 has been bad!
thanks for the link. I need that too. Regardless of logging thought,
quickly add this to any serlvetlistener
public void contextInitialized(ServletContextEvent evt) {
throw new RuntimeException(asdfsf);
}
Run it, and enjoy not being able to know what the heck went wrong with
your app like I have seen many have done on the posts already. ie.
Tomcat used to log the stack trace, but in 5.5 does not, and that should
be high enough warning level that config of logs don't matter.
Making the problem even harder.
On a second note, I have fooled around with logging and it works fine in
my app, and I could configure it and such(with 5.5) and my
logging.properties file in WEB-INF. I could never get my
servletlistener to log any statements(making the problem doubly hard).
thanks,
dean
Vamsidhar wrote:
I am assuming you have been using logger to log stack traces in case of
errors in tomcat 5.0. This was deprecated in 5.0 and completely removed in
5.5. So, If you have logger defined for engine, host, or context to record
the stack traces in a file in your application this will not work on tomcat
5.5
http://tomcat.apache.org/tomcat-5.0-doc/config/logger.html
Please note that Loggers are deprecated in Tomcat 5.0 and removed from
Tomcat 5.5. Tomcat 5.5 uses Commons-Logging instead.
hope this helps.
On 3/28/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
On number 1 5.0 logs the entire stack trace, so you can jump to the line
number. On 5.5, no such stack trace in any file. Also, I searched a few
lists and many people had questions on what was wron when they saw that
error. I think the cause is the lack of informationit should at the
very least log the stack trace and does not.
I just used the latest facelets and it did not work, but worked on 5.0.
in fact, all the stuff works on 5.0 which leads me to believe 5.5 is
unstable, but I wanted to verify.
dean
On 3/28/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Anyone have much experience with running on these. On tomcat 5.5, I
have
ran into many problems
1. exception fron ServletContextListener.contextInitialized causes the
vague error of Error listenerStart with no details. Most people on
lists I have seen don't even know it was caused by Exception out of
that
method(Took me a while to figure out too)
Yes, it's an extremely myterious log message, as a
ServletContextListener is a listener for the context.
2. logging MyFaces logs was not working
Whatever.
3. Facelets example war files don't work in 5.5.16
It uses a bad method for descovering its config, if I remember well,
which is now fixed.
--
x
Rémy Maucherat
Developer Consultant
JBoss Inc
x
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: XMLSignature
already have that but none of the jars contain XMLSignature unless you know of a jar that may contain XMLSignature Thanks Martin-, - Original Message - From: mylene [EMAIL PROTECTED] To: Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 12:25 AM Subject: Re: XMLSignature Try Apache XML Security :) http://xml.apache.org/security/Java/index.html Mylène On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: Sorry for the O/T post but does Anyone know where XMLSignature lives? Thanks, Martin -- Mylene Books just wanna be FREE! See what I mean at: http://bookcrossing.com/friend/mylene
Re: InputBuffer and Posting Data
After re-reading the original description you should probably be aware of this portion of the javadocs for request.getParameter: quote If the parameter data was sent in the request body, such as occurs with an HTTP POST request, then reading the body directly via getInputStream() or getReader() can interfere with the execution of this method. /quote The reverse is probably true, too. The getParameter call probably affects the reading of body data for POSTs. Are the parameters you need in the query string? If so you may need to parse that yourself instead. The above may not be the problem. But... Jon Vikram Goyal wrote: It's funny you should say that. maxHttpHeaderSize is the incorrect parameter to use in this case, but I noticed that by changing the size of this header parameter, I was able to send larger files, although not consistently. But what I don't understand is how this parameter is affecting the size of the received data. There is clearly a bug here, but I just can't put my finger on what exactly the bug is. Vikram -Original Message- From: Lothar Krenzien [mailto:[EMAIL PROTECTED] Sent: Wednesday, 29 March 2006 1:17 AM To: Tomcat Users List Subject: Re: InputBuffer and Posting Data Look for the value of maxHttpHeaderSize in your server.xml in the CATALINA_HOME/conf diretory. I had a similar problem. -Ursprüngliche Nachricht- Von: Tomcat Users List users@tomcat.apache.org Gesendet: 28.03.06 16:24:20 An: Tomcat Users List users@tomcat.apache.org Betreff: Re: InputBuffer and Posting Data What is buf.length? Is it the actual length of the data you want to post or is it 8k? The data you receive on the Tomcat side may be truncated by the Connector if the body data is longer than the value set for the Content-Length header. HTH, Jon Vikram Goyal wrote: Hi all, I am trying to post some data via an applet to a JSP running on Tomcat 5.5.16. In my applet code, I am setting the following: postConn.setRequestMethod(POST); postConn.setRequestProperty(Content-Length, (buf.length) + ); postConn.setRequestProperty(Content-Type, application/octet-stream); Now, on the server side, I am retrieving my actual data by using the ServletInputStream gathered from request.getInputStream() method. The connection also contains some query parameters, which I am retrieving on the server side using request.getParameter(). Now, irrespective of the size of the data that I post, the ServletInputStream is truncating the data to a size of 8K (for files greater than that size, smaller files are the received correctly). I understand, after going through the source code, that the Request class uses the InputBuffer class for reading from this stream and the default size of the buffer for this operation is 8K. However, I would have expected this buffer to grow, if the data was larger than this default, but this is not happening. Is there a setting to increase this buffer automatically that I need to set? Alternatively, is there a setting that I need to set that will set the default to a larger value? I have searched and searched and cannot find anything. Thanks, Vikram - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Verschicken Sie romantische, coole und witzige Bilder per SMS! Jetzt bei WEB.DE FreeMail: http://f.web.de/?mc=021193 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Get JDBCRealm's current user
If you have JNDI you can look it up that way for example Context initialContext = new InitialContext(); DataSource datasource = (DataSource)initialContext.lookup(fDATASOURCE_CONTEXT); Martin- - Original Message - From: Rapthor [EMAIL PROTECTED] To: users@tomcat.apache.org Sent: Wednesday, March 29, 2006 4:24 AM Subject: Re: Get JDBCRealm's current user Okay, I think I nearly get it. What do I have to do to get the DataSource from within a JSP page? Get the ServletContext? There's no method to do a lookup for a DataSource with ServletContext. -- View this message in context: http://www.nabble.com/Get-JDBCRealm%27s-current-user-t1341315.html#a3646592 Sent from the Tomcat - User forum at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: XMLSignature
com/sun/org/apache/xml/internal/security/signature/XMLSignature.class - xmlsec.jar javax/xml/crypto/dsig/XMLSignature.class org/jcp/xml/dsig/internal/dom/DOMXMLSignature.class - xmldsig.jar HTH Leon On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: already have that but none of the jars contain XMLSignature unless you know of a jar that may contain XMLSignature Thanks Martin-, - Original Message - From: mylene [EMAIL PROTECTED] To: Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 12:25 AM Subject: Re: XMLSignature Try Apache XML Security :) http://xml.apache.org/security/Java/index.html Mylène On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: Sorry for the O/T post but does Anyone know where XMLSignature lives? Thanks, Martin -- Mylene Books just wanna be FREE! See what I mean at: http://bookcrossing.com/friend/mylene - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: XMLSignature
Good Morning Leon I found it but now I wanted to download JAXP but couldnt find it anywhere but with SUN's webservices toolkit I didnt want to download *all that other stuff * just to get jaxp.jar but I dont see any other alternative- Thanks for the response, Martin- - Original Message - From: Leon Rosenberg [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org; Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 7:34 AM Subject: Re: XMLSignature com/sun/org/apache/xml/internal/security/signature/XMLSignature.class - xmlsec.jar javax/xml/crypto/dsig/XMLSignature.class org/jcp/xml/dsig/internal/dom/DOMXMLSignature.class - xmldsig.jar HTH Leon On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: already have that but none of the jars contain XMLSignature unless you know of a jar that may contain XMLSignature Thanks Martin-, - Original Message - From: mylene [EMAIL PROTECTED] To: Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 12:25 AM Subject: Re: XMLSignature Try Apache XML Security :) http://xml.apache.org/security/Java/index.html Mylène On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: Sorry for the O/T post but does Anyone know where XMLSignature lives? Thanks, Martin -- Mylene Books just wanna be FREE! See what I mean at: http://bookcrossing.com/friend/mylene - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
TC 5.5.16, RHEL 4.2 x86_64 and APR - apr not found
Hi there! I'm trying to get tomcat to use the native library. After lots of searching on the web I finaly got it working at my workstation. But following the same procedure on the server did not go so well. I'm still getting the INFO message in catalina.out: Mar 29, 2006 11:48:46 AM org.apache.catalina.core.AprLifecycleListener lifecycleEvent INFO: The Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path: /usr/local/apr/lib The content of the directory is as follows: ls -l /usr/local/apr/lib -rw-r--r-- 1 root root7656 mar 29 11:38 apr.exp -rw-r--r-- 1 root root 1184410 mar 29 11:38 libapr-1.a -rwxr-xr-x 1 root root 847 mar 29 11:38 libapr-1.la lrwxrwxrwx 1 root root 17 mar 29 11:38 libapr-1.so - libapr-1.so.0.2.6 lrwxrwxrwx 1 root root 17 mar 29 11:38 libapr-1.so.0 - libapr-1.so.0.2.6 -rwxr-xr-x 1 root root 651502 mar 29 11:38 libapr-1.so.0.2.6 -rw-r--r-- 1 root root 1387042 mar 29 11:46 libtcnative-1.a -rwxr-xr-x 1 root root 928 mar 29 11:46 libtcnative-1.la lrwxrwxrwx 1 root root 22 mar 29 11:46 libtcnative-1.so - libtcnative-1.so.0.2.6 lrwxrwxrwx 1 root root 22 mar 29 11:46 libtcnative-1.so.0 - libtcnative-1.so.0.2.6 -rwxr-xr-x 1 root root 798841 mar 29 11:46 libtcnative-1.so.0.2.6 drwxr-xr-x 2 root root4096 mar 29 11:46 pkgconfig Since I've got this to work on my workstation, I suspect there might be some other issues using x86_64. The procedure I've been following to generate is: cd /usr/local downloading apr-1.2.6.tar.gz tar zxf apr-1.2.6.tar.gz rm apr-1.2.6.tar.gz ln -s apr-1.2.6 apr cd apr ./configure make make install cd /var/tomcat/bin downloading tomcat-native-1.1.2.tar.gz tar zxf tomcat-native-1.1.2.tar.gz cd tomcat-native-1.1.2/jni/native ./configure --with-apr=/usr/local/apr make make install I also made a file setenv.sh in the bin directory of tomcat, containing: CATALINA_OPTS=$CATALINA_OPTS -Djava.library.path=/usr/local/apr/lib So I'm a bit unsure on what to do next to get the native library up and running with tomcat on the server. Any sugestions on to do next? If needed, the server can be isolated for further testing. Best regards Dag Bjerkeli - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: XMLSignature
I don't know where we got this staff from, it from a fellow developer who is just integrating a singlesignon solution from the liberty alliance which relies on patched axis classes and is a total mess... However, he told me about XMLSingature (we are applying the signature to the xml files sent over double handshaked ssl, triple security sotosay) and I just made a jar -tf JAR | grep -e XMLSignature :-) but i don't have a jaxp.jar in project, only jaxrpc.jar and jaxen-... don't ask me, what they are for :-) The abovementioned developer isn't in the office today, but i could ask him tomorrow. regards leon On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: Good Morning Leon I found it but now I wanted to download JAXP but couldnt find it anywhere but with SUN's webservices toolkit I didnt want to download *all that other stuff * just to get jaxp.jar but I dont see any other alternative- Thanks for the response, Martin- - Original Message - From: Leon Rosenberg [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org; Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 7:34 AM Subject: Re: XMLSignature com/sun/org/apache/xml/internal/security/signature/XMLSignature.class - xmlsec.jar javax/xml/crypto/dsig/XMLSignature.class org/jcp/xml/dsig/internal/dom/DOMXMLSignature.class - xmldsig.jar HTH Leon On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: already have that but none of the jars contain XMLSignature unless you know of a jar that may contain XMLSignature Thanks Martin-, - Original Message - From: mylene [EMAIL PROTECTED] To: Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 12:25 AM Subject: Re: XMLSignature Try Apache XML Security :) http://xml.apache.org/security/Java/index.html Mylène On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: Sorry for the O/T post but does Anyone know where XMLSignature lives? Thanks, Martin -- Mylene Books just wanna be FREE! See what I mean at: http://bookcrossing.com/friend/mylene - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: tomcat examples
Hey, Sorry for the late response on this, I've been swamped. What's the consensus of the committers, are we in decent shape to do a 5.5.17 release? I have time for it this weekend. I will test the .exe in 5.5.17 prior to uploading to make sure it's alright. Yoav On 3/20/06, Caldarale, Charles R [EMAIL PROTECTED] wrote: From: erha [mailto:[EMAIL PROTECTED] Subject: Re: tomcat examples Download the apache-tomcat-5.5.16.exe, install and run the service. Got this error immediately. You are correct - the 5.5.16 .exe is broken. The .zip download (the one I normally use) is fine. Looks like someone tried an ASCII mode FTP of some of the .class files, resulting in a linefeed byte being added at the end. This was not a problem in 5.5.15. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. -- Yoav Shapira Nimalex LLC 1 Mifflin Place, Suite 310 Cambridge, MA, USA [EMAIL PROTECTED] / www.yoavshapira.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Logs not getting generated in tomcat 5.5.12
please specify which logs are not being generated is it the catalina log (logger component) ? thanks, Vamsi. On 3/29/06, Boris Unckel [EMAIL PROTECTED] wrote: Hello, Von: GUNJAN SINGH [EMAIL PROTECTED] hi I'm using j2sdk1.4.2_09 version and tamcat 5.5.12 and myeclipse as an IDE. The problem is that logs are not getting generated under apache-tomcat-5.5.12/logs directory. The server is starting properly and i have added the required campatibility jars. Can any one tell me the reason as to why tomcat logs are not getting generated and what i should do in order to get this done. the problem are the startup parameters of Tomcat. Have a look at startup.sh or startup.cmd(Windows) for the correct parameters to enable Tomcat-JULI log and the destination in you myeclipse plugin. Maybe the plugin does set a different CATALINA_HOME directory and variable, and under that CATALINA_HOME/logs you will find your files. Regards Boris - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
security-constraint
Hi all,
I wonder if anyone can help me, I've recently taken over management of our
Tomcat webapp, and have been listening to the list for a while, although
don't know enough to contribute much yet I am afraid.
I'm using the following security-constraint to make sure that any user using
our payment module is transferred to https
security-constraint
display-nameSecure Access/display-name
web-resource-collection
web-resource-nameOrderPayment/web-resource-name
url-pattern/OrderPayment/url-pattern
/web-resource-collection
user-data-constraint
transport-guaranteeCONFIDENTIAL/transport-guarantee
/user-data-constraint
/security-constraint
This works fine - if I request http://mydomain/OrderPayment I get
transferred to https.
However, after they've finished paying I really want to transfer them back
to http. I couldn't see a way of doing this using web.xml - the info I found
on the net suggested this isn't possible.
So, I thought I could write a filter to do this. I can easily write a filter
which uses sendRedirect to tranfer an https request to http, but I wanted to
know the best way to see which requests to do this to. I could hard code
into my filter the names of the pages I want to be secure, but I wondered if
there is any way of finding out programatically which requests are covered
by the security-contraint, and then any that are https and aren't covered,
do the redirect on.
Does that make sense? i.e. can I do something like :
if (request.getScheme().equals(https)
!request.hasConfidentialSecurityContraint()) {
(And does this in general sound like a sensible way of doing things?)
Thanks for any help,
Tamsin
--
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.385 / Virus Database: 268.3.3/295 - Release Date: 28/03/2006
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: XMLSignature
sounds like a valuable resource..I look forward to his response. As far as how to use Remote Prodedure Call (XML transmissions on Port 80) vs using other transports (CORBA or DCOM) Take a look at this great tutorial http://www.angelfire.com/wi3/sjohn/etrade.html Thanks Leon Martin- - Original Message - From: Leon Rosenberg [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org; Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 8:45 AM Subject: Re: XMLSignature I don't know where we got this staff from, it from a fellow developer who is just integrating a singlesignon solution from the liberty alliance which relies on patched axis classes and is a total mess... However, he told me about XMLSingature (we are applying the signature to the xml files sent over double handshaked ssl, triple security sotosay) and I just made a jar -tf JAR | grep -e XMLSignature :-) but i don't have a jaxp.jar in project, only jaxrpc.jar and jaxen-... don't ask me, what they are for :-) The abovementioned developer isn't in the office today, but i could ask him tomorrow. regards leon On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: Good Morning Leon I found it but now I wanted to download JAXP but couldnt find it anywhere but with SUN's webservices toolkit I didnt want to download *all that other stuff * just to get jaxp.jar but I dont see any other alternative- Thanks for the response, Martin- - Original Message - From: Leon Rosenberg [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org; Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 7:34 AM Subject: Re: XMLSignature com/sun/org/apache/xml/internal/security/signature/XMLSignature.class - xmlsec.jar javax/xml/crypto/dsig/XMLSignature.class org/jcp/xml/dsig/internal/dom/DOMXMLSignature.class - xmldsig.jar HTH Leon On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: already have that but none of the jars contain XMLSignature unless you know of a jar that may contain XMLSignature Thanks Martin-, - Original Message - From: mylene [EMAIL PROTECTED] To: Martin Gainty [EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 12:25 AM Subject: Re: XMLSignature Try Apache XML Security :) http://xml.apache.org/security/Java/index.html Mylène On 3/29/06, Martin Gainty [EMAIL PROTECTED] wrote: Sorry for the O/T post but does Anyone know where XMLSignature lives? Thanks, Martin -- Mylene Books just wanna be FREE! See what I mean at: http://bookcrossing.com/friend/mylene - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: tomcat 5.0 vs. 5.5? tomcat 5.5 has been bad!
here is the code, the StandardContext.java logs the error,
its just a matter of finding how to get it to spew it out.
Running a tomcat embedded will spit this sucker out, but running it
within the tomcat catalina.sh swallows it.
I will resolve this and let you know what happens to it.
Filip
ServletContextEvent event =
new ServletContextEvent(getServletContext());
for (int i = 0; i instances.length; i++) {
if (instances[i] == null)
continue;
if (!(instances[i] instanceof ServletContextListener))
continue;
ServletContextListener listener =
(ServletContextListener) instances[i];
try {
fireContainerEvent(beforeContextInitialized, listener);
listener.contextInitialized(event);
fireContainerEvent(afterContextInitialized, listener);
} catch (Throwable t) {
fireContainerEvent(afterContextInitialized, listener);
getLogger().error
(sm.getString(standardContext.listenerStart,
instances[i].getClass().getName()), t);
ok = false;
}
}
Dean Hiller wrote:
thanks for the link. I need that too. Regardless of logging thought,
quickly add this to any serlvetlistener
public void contextInitialized(ServletContextEvent evt) {
throw new RuntimeException(asdfsf);
}
Run it, and enjoy not being able to know what the heck went wrong with
your app like I have seen many have done on the posts already. ie.
Tomcat used to log the stack trace, but in 5.5 does not, and that
should be high enough warning level that config of logs don't matter.
Making the problem even harder.
On a second note, I have fooled around with logging and it works fine
in my app, and I could configure it and such(with 5.5) and my
logging.properties file in WEB-INF. I could never get my
servletlistener to log any statements(making the problem doubly hard).
thanks,
dean
Vamsidhar wrote:
I am assuming you have been using logger to log stack traces in case of
errors in tomcat 5.0. This was deprecated in 5.0 and completely
removed in
5.5. So, If you have logger defined for engine, host, or context to
record
the stack traces in a file in your application this will not work on
tomcat
5.5
http://tomcat.apache.org/tomcat-5.0-doc/config/logger.html
Please note that Loggers are deprecated in Tomcat 5.0 and removed from
Tomcat 5.5. Tomcat 5.5 uses Commons-Logging instead.
hope this helps.
On 3/28/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
On number 1 5.0 logs the entire stack trace, so you can jump to the
line
number. On 5.5, no such stack trace in any file. Also, I searched
a few
lists and many people had questions on what was wron when they saw that
error. I think the cause is the lack of informationit should at
the
very least log the stack trace and does not.
I just used the latest facelets and it did not work, but worked on 5.0.
in fact, all the stuff works on 5.0 which leads me to believe 5.5 is
unstable, but I wanted to verify.
dean
On 3/28/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Anyone have much experience with running on these. On tomcat 5.5, I
have
ran into many problems
1. exception fron ServletContextListener.contextInitialized causes
the
vague error of Error listenerStart with no details. Most people on
lists I have seen don't even know it was caused by Exception out of
that
method(Took me a while to figure out too)
Yes, it's an extremely myterious log message, as a
ServletContextListener is a listener for the context.
2. logging MyFaces logs was not working
Whatever.
3. Facelets example war files don't work in 5.5.16
It uses a bad method for descovering its config, if I remember well,
which is now fixed.
--
x
Rémy Maucherat
Developer Consultant
JBoss Inc
x
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: tomcat 5.0 vs. 5.5? tomcat 5.5 has been bad!
ok, that was fairly easy, the error gets logged to the
TOMCAT_HOME/logs/localhost.2006-03-29.log this is on the default
install, no loggers modified
so are you still having a problem?
Mar 29, 2006 9:12:47 AM org.apache.catalina.core.ApplicationContext log
INFO: org.apache.webapp.balancer.BalancerFilter: init(): ruleChain:
[org.apache.webapp.balancer.RuleChain:
[org.apache.webapp.balancer.rules.URLStringMatchRule: Target string:
News / Redirect URL: http://www.cnn.com],
[org.apache.webapp.balancer.rules.RequestParameterRule: Target param
name: paramName / Target param value: paramValue / Redirect URL:
http://www.yahoo.com],
[org.apache.webapp.balancer.rules.AcceptEverythingRule: Redirect URL:
http://jakarta.apache.org]]
Mar 29, 2006 9:12:47 AM org.apache.catalina.core.ApplicationContext log
INFO: ContextListener: contextInitialized()
Mar 29, 2006 9:12:47 AM org.apache.catalina.core.StandardContext
listenerStart
SEVERE: Exception sending context initialized event to listener instance
of class listeners.ContextListener
java.lang.RuntimeException: sdadasda
at
listeners.ContextListener.contextInitialized(ContextListener.java:114)
at
org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:3729)
at
org.apache.catalina.core.StandardContext.start(StandardContext.java:4187)
at
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:759)
at
org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:739)
at
org.apache.catalina.core.StandardHost.addChild(StandardHost.java:524)
at
org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.java:904)
at
org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:867)
at
org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:474)
at
org.apache.catalina.startup.HostConfig.start(HostConfig.java:1122)
at
org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:310)
at
org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119)
at
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1021)
at
org.apache.catalina.core.StandardHost.start(StandardHost.java:718)
at
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1013)
at
org.apache.catalina.core.StandardEngine.start(StandardEngine.java:442)
at
org.apache.catalina.core.StandardService.start(StandardService.java:450)
at
org.apache.catalina.core.StandardServer.start(StandardServer.java:709)
at org.apache.catalina.startup.Catalina.start(Catalina.java:551)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:275)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:413)
Mar 29, 2006 9:12:47 AM org.apache.catalina.core.ApplicationContext log
INFO: SessionListener: contextInitialized()
Mar 29, 2006 9:12:47 AM org.apache.catalina.core.ApplicationContext log
Dean Hiller wrote:
thanks for the link. I need that too. Regardless of logging thought,
quickly add this to any serlvetlistener
public void contextInitialized(ServletContextEvent evt) {
throw new RuntimeException(asdfsf);
}
Run it, and enjoy not being able to know what the heck went wrong with
your app like I have seen many have done on the posts already. ie.
Tomcat used to log the stack trace, but in 5.5 does not, and that
should be high enough warning level that config of logs don't matter.
Making the problem even harder.
On a second note, I have fooled around with logging and it works fine
in my app, and I could configure it and such(with 5.5) and my
logging.properties file in WEB-INF. I could never get my
servletlistener to log any statements(making the problem doubly hard).
thanks,
dean
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Apache Tomcat Native library
Hi Can somebody please tell me what this means on startup of Tomcat The Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path Thanks DF
Re: Apache Tomcat Native library
Paul Robinshaw wrote: Can somebody please tell me what this means on startup of Tomcat The Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path This means you're not using this: http://tomcat.apache.org/tomcat-5.5-doc/apr.html Regards mks - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Get JDBCRealm's current user
Using the #InitialContext().lookup() method to get the DataSource, it seems to get to the point that I find out the user connected to the database, which in fact is another than the user logged in via JDBCRealm?! Am I right? I wanted to get the user currently logged in, not the one using the database. Can you still help me? -- View this message in context: http://www.nabble.com/Get-JDBCRealm%27s-current-user-t1341315.html#a3654460 Sent from the Tomcat - User forum at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Get JDBCRealm's current user
A construction worker in Antartica once said No matter how many times I cut it ..it still is too short the same scenario applies here JDBC is a driver model for DB access a package designed primarily for DB access would not have knowledge of other environmental and or configuration items..right? I can better help you if you provide me some info on the ultimate goal, HTH, Martin-- - Original Message - From: Rapthor [EMAIL PROTECTED] To: users@tomcat.apache.org Sent: Wednesday, March 29, 2006 12:18 PM Subject: Re: Get JDBCRealm's current user Using the #InitialContext().lookup() method to get the DataSource, it seems to get to the point that I find out the user connected to the database, which in fact is another than the user logged in via JDBCRealm?! Am I right? I wanted to get the user currently logged in, not the one using the database. Can you still help me? -- View this message in context: http://www.nabble.com/Get-JDBCRealm%27s-current-user-t1341315.html#a3654460 Sent from the Tomcat - User forum at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
HTTP 404
Hi HTTP Status 404 - /Control_center/j_security_check type Status report message /Control_center/j_security_check description The requested resource (/Control_center/j_security_check) is not available. Apache Tomcat/5.5.16 Can anyone help me resolve this error. Thanks, With regards, Vikas Nagpal. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
gc tuning
I am trying to tune an instance of tomcat running a single application. And have a couple different questions. I have read lots of faqs and webpages on the various types of garbage collectors. I get from most of these that it takes lots of tuning particular to each machine/server/application. My main question is why the memory allocated keeps climbing.If I have a fairly consistent number of users, then as some sessions are freed up, others are made. Wouldn't the amount of allocated level off at some point? When a full GC is started, why does it never go back down to a low number?At night, lets say when there are no users, why wouldn't a GC drop the memory down to what is used by just the bare minimum? Most faqs and webpages say to allocate as much memory as possible. How can you use the aggressiveHeap tag if tomcat is also trying to specify Mmx and Mms settings? Does anyone have an example memory settings for a tomcat running on a 2-4 chip machine with around 2G of ram? I understand for a JSP application that we need to keep our permHeap size large.What do you guys normally do for that? 128M? 256M? 512M? Is it common that a tomcat needs restarting nightly to free up memory? In all my other apps I've had with tomcat, I've never needed to do that. I've been trying to use the profiler yourkit, but am uncertain what is a valid object in memory and what is being held on unnecessarily. Thanks for any help you can provide.
Re: HTTP 404
On Wed, 29 Mar 2006 20:07:06 +0200, VIKASS NAGPAL [EMAIL PROTECTED] wrote: Hi HTTP Status 404 - /Control_center/j_security_check type Status report message /Control_center/j_security_check description The requested resource (/Control_center/j_security_check) is not available. Apache Tomcat/5.5.16 Can anyone help me resolve this error. Well 404 means, you did want to access a page/skript/file tomcat could not map to a known ressource, resulting in a http error message #404 'file not found'. -- Jens Skripczynski [skripi-lists(at) myrealbox (dot) com] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Context starts twice
Hi, I'm sorry, can you give a couple examples with dir names? For example, I'm not sure what appbase is. Thanks! Dola --- Vivek Mohan [EMAIL PROTECTED] wrote: This can happen if you have a separate context path configured for your webapp and its present in your appbase. If thats the case, then Tomcat will try to load the webapp twice, once for the different context path and once for the presence of the war or folder in appbase. This is a known feature(or bug) in Tomcat. Try keeping your webapp outside of your appbase and re-loading should not happen. -- Vivek. On 3/28/06, Jean-Philippe Boily [EMAIL PROTECTED] wrote: Hi, What version of Tomcat are you using ? Maybe your war is under your appbaseif it so, it may starts your context once with the context.xml file and once with the WAR Good luck ! Jean-Philippe Boily On 3/27/06, Dola Woolfe [EMAIL PROTECTED] wrote: Hi, I don't know what I did wrong, but my StartUp servlet now runs twice in a row when I start Tomcat. The web.xml entry is servlet-nameStartUp/servlet-name servlet-classservlets.StartUp/servlet-class load-on-startup1/load-on-startup I don't even know where to begin looking for the error. Do you have any suggestions? Many thanks in advance! Dola __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- I told the doctor I broke my leg in two places. He told me to quit going to those places. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Single sign-on with multiple Tomcats served via one Apache httpd server
Hi, believe it or not, this problem which I though to be a very standard one, didn't get a single reply?! Even if you know this can't be done, please tell me! Thanks a lot in advance. Configuration: a. Apache httpd 2.0 server (IP0, port 80) with some content served from /cms b. Worker to a Tomcat 4.1 running on a separate box (IP1:8080) mapped to /app1 c. Anpother worker to another Tomcat 5.5 running on separate box (IP2:8080) mapped to /app2 Both Tomcats are using the same configuration for security realm (pointing to the same DataSource parameters of course): Realm className= org.apache.catalina.realm.DataSourceRealm dataSourceName=jdbc/default debug=99 userTable=corporate.dbo.t_userlogin userNameCol=c_username userCredCol=c_password userRoleTable=corporate.dbo.t_userpermission roleNameCol=c_rolename digest=md5/ and have their Single Sign-on valve turned on: Valve className=org.apache.catalina.authenticator.SingleSignOn debug=0/ However, if you're required to authenticate to access say, /app1/aSecure.jsp, you will be asked to authenticate again to access say, /app2/anotherSecure.jsp, though from the user point of view, this is the same username/password on the same URL. Is there a way to carry over the single sign-on from each Tomcat to the Apache server, so that /app2/anotherSecure.jsp can trust the authentication done while visiting /app1/aSecure.jsp, or should this be done in a completely different way? We have to keep those two separate Tomcats (distinct hardware, different versions, performance issues). Thanks for your help! Nic
RE: Context starts twice
Appbase is an attribute defined in your %tomcat_home%/conf/server.xml file. It should be a sub-attribute under your HOSTS attribute. -Original Message- From: Dola Woolfe [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 1:48 PM To: Tomcat Users List Subject: Re: Context starts twice Hi, I'm sorry, can you give a couple examples with dir names? For example, I'm not sure what appbase is. Thanks! Dola --- Vivek Mohan [EMAIL PROTECTED] wrote: This can happen if you have a separate context path configured for your webapp and its present in your appbase. If thats the case, then Tomcat will try to load the webapp twice, once for the different context path and once for the presence of the war or folder in appbase. This is a known feature(or bug) in Tomcat. Try keeping your webapp outside of your appbase and re-loading should not happen. -- Vivek. On 3/28/06, Jean-Philippe Boily [EMAIL PROTECTED] wrote: Hi, What version of Tomcat are you using ? Maybe your war is under your appbaseif it so, it may starts your context once with the context.xml file and once with the WAR Good luck ! Jean-Philippe Boily On 3/27/06, Dola Woolfe [EMAIL PROTECTED] wrote: Hi, I don't know what I did wrong, but my StartUp servlet now runs twice in a row when I start Tomcat. The web.xml entry is servlet-nameStartUp/servlet-name servlet-classservlets.StartUp/servlet-class load-on-startup1/load-on-startup I don't even know where to begin looking for the error. Do you have any suggestions? Many thanks in advance! Dola __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- I told the doctor I broke my leg in two places. He told me to quit going to those places. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: gc tuning
As I'm sure you know this is something of a large can of worms... All I can say is that from my experience of this modern JVM's are getting much better at working well with the default gc options (ie jdk 5.0 and above). We use jrockit for our systems, and just use a simple: -server -Xms256m -Xmx1024m Our server are dual processor boxes with 6Gig ram and all runs well for us. From what I understand both current jrockit and sun gc strategies are to delay gc work until as late as possible (jrockit seems to leave it later than sun tbh). This tends to mean that memory usage never really seems to drops much, our servers run with jrockit having grabbed around 1.9Gig memory all the time, but then seem to run happily with that for long periods of time (ie weeks at a time). Both jrockit and sun default to adaptive gc systems for large systems, which ought to get to the right approach in due course. Having said that experience suggests that if the application churns memory very fast (tomcat doesn't really qualify for that for us, but some of our other apps do), using a two generational concurrent gc approach is best, especially for jrockit. The other thing to note is that a call to System.gc() does very little in some jvm's, I think its increasingly taken as a hint, and most gc's almost ignore it. A real full gc is expensive and can cause heavy pauses, gc systems tend to avoid it like a plague. Hope this is of some help, although I'd be interested to hear others thoughts on this. Mark On Wednesday 29 March 2006 19:17, John Powers wrote: I am trying to tune an instance of tomcat running a single application. And have a couple different questions. I have read lots of faqs and webpages on the various types of garbage collectors. I get from most of these that it takes lots of tuning particular to each machine/server/application. My main question is why the memory allocated keeps climbing.If I have a fairly consistent number of users, then as some sessions are freed up, others are made. Wouldn't the amount of allocated level off at some point? When a full GC is started, why does it never go back down to a low number?At night, lets say when there are no users, why wouldn't a GC drop the memory down to what is used by just the bare minimum? Most faqs and webpages say to allocate as much memory as possible. How can you use the aggressiveHeap tag if tomcat is also trying to specify Mmx and Mms settings? Does anyone have an example memory settings for a tomcat running on a 2-4 chip machine with around 2G of ram? I understand for a JSP application that we need to keep our permHeap size large.What do you guys normally do for that? 128M? 256M? 512M? Is it common that a tomcat needs restarting nightly to free up memory? In all my other apps I've had with tomcat, I've never needed to do that. I've been trying to use the profiler yourkit, but am uncertain what is a valid object in memory and what is being held on unnecessarily. Thanks for any help you can provide. This email has been scanned for all known viruses by the MessageLabs SkyScan service. This email has been scanned for all known viruses by the MessageLabs SkyScan service. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Single sign-on with multiple Tomcats served via one Apache httpd server
The single sign-on valve only really shares an authenticated session accross the contexts of one tomcat server. Most likely other tomcat servers only if they are clustered. But you have two separate, non-clustered tomcat's whose only commonality is the Apache front-end and the user realm database. I don't know of any way in which one would be aware of sessions created and trusted in the other. You might want to consider your own sign-on mechanism to support this. --David Nic Daniau wrote: Hi, believe it or not, this problem which I though to be a very standard one, didn't get a single reply?! Even if you know this can't be done, please tell me! Thanks a lot in advance. Configuration: a. Apache httpd 2.0 server (IP0, port 80) with some content served from /cms b. Worker to a Tomcat 4.1 running on a separate box (IP1:8080) mapped to /app1 c. Anpother worker to another Tomcat 5.5 running on separate box (IP2:8080) mapped to /app2 Both Tomcats are using the same configuration for security realm (pointing to the same DataSource parameters of course): Realm className= org.apache.catalina.realm.DataSourceRealm dataSourceName=jdbc/default debug=99 userTable=corporate.dbo.t_userlogin userNameCol=c_username userCredCol=c_password userRoleTable=corporate.dbo.t_userpermission roleNameCol=c_rolename digest=md5/ and have their Single Sign-on valve turned on: Valve className=org.apache.catalina.authenticator.SingleSignOn debug=0/ However, if you're required to authenticate to access say, /app1/aSecure.jsp, you will be asked to authenticate again to access say, /app2/anotherSecure.jsp, though from the user point of view, this is the same username/password on the same URL. Is there a way to carry over the single sign-on from each Tomcat to the Apache server, so that /app2/anotherSecure.jsp can trust the authentication done while visiting /app1/aSecure.jsp, or should this be done in a completely different way? We have to keep those two separate Tomcats (distinct hardware, different versions, performance issues). Thanks for your help! Nic - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Context starts twice
OK, I see it - it's webapps. Thank you. OK, how do I check wheather [I] have a separate context path configured for your webapp and its present in your appbase. No idea where to look and for what! Thanks! --- Farrow, Marc [EMAIL PROTECTED] wrote: Appbase is an attribute defined in your %tomcat_home%/conf/server.xml file. It should be a sub-attribute under your HOSTS attribute. -Original Message- From: Dola Woolfe [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 1:48 PM To: Tomcat Users List Subject: Re: Context starts twice Hi, I'm sorry, can you give a couple examples with dir names? For example, I'm not sure what appbase is. Thanks! Dola --- Vivek Mohan [EMAIL PROTECTED] wrote: This can happen if you have a separate context path configured for your webapp and its present in your appbase. If thats the case, then Tomcat will try to load the webapp twice, once for the different context path and once for the presence of the war or folder in appbase. This is a known feature(or bug) in Tomcat. Try keeping your webapp outside of your appbase and re-loading should not happen. -- Vivek. On 3/28/06, Jean-Philippe Boily [EMAIL PROTECTED] wrote: Hi, What version of Tomcat are you using ? Maybe your war is under your appbaseif it so, it may starts your context once with the context.xml file and once with the WAR Good luck ! Jean-Philippe Boily On 3/27/06, Dola Woolfe [EMAIL PROTECTED] wrote: Hi, I don't know what I did wrong, but my StartUp servlet now runs twice in a row when I start Tomcat. The web.xml entry is servlet-nameStartUp/servlet-name servlet-classservlets.StartUp/servlet-class load-on-startup1/load-on-startup I don't even know where to begin looking for the error. Do you have any suggestions? Many thanks in advance! Dola __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- I told the doctor I broke my leg in two places. He told me to quit going to those places. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Single sign-on with multiple Tomcats served via one Apache httpdserver
We are using CAS, http://www.ja-sig.org/products/cas/, for something similar. I do not know if its exactly what you need. It does not, I believe, share any session information besides the login info. Thank You, Aaron Steele YRI Enterprise Solutions https://ris.yumnet.com w: 972.338.6862 c: 817.401.0831 -Original Message- From: David Smith [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 1:25 PM To: Tomcat Users List Subject: Re: Single sign-on with multiple Tomcats served via one Apache httpdserver The single sign-on valve only really shares an authenticated session accross the contexts of one tomcat server. Most likely other tomcat servers only if they are clustered. But you have two separate, non-clustered tomcat's whose only commonality is the Apache front-end and the user realm database. I don't know of any way in which one would be aware of sessions created and trusted in the other. You might want to consider your own sign-on mechanism to support this. --David Nic Daniau wrote: Hi, believe it or not, this problem which I though to be a very standard one, didn't get a single reply?! Even if you know this can't be done, please tell me! Thanks a lot in advance. Configuration: a. Apache httpd 2.0 server (IP0, port 80) with some content served from /cms b. Worker to a Tomcat 4.1 running on a separate box (IP1:8080) mapped to /app1 c. Anpother worker to another Tomcat 5.5 running on separate box (IP2:8080) mapped to /app2 Both Tomcats are using the same configuration for security realm (pointing to the same DataSource parameters of course): Realm className= org.apache.catalina.realm.DataSourceRealm dataSourceName=jdbc/default debug=99 userTable=corporate.dbo.t_userlogin userNameCol=c_username userCredCol=c_password userRoleTable=corporate.dbo.t_userpermission roleNameCol=c_rolename digest=md5/ and have their Single Sign-on valve turned on: Valve className=org.apache.catalina.authenticator.SingleSignOn debug=0/ However, if you're required to authenticate to access say, /app1/aSecure.jsp, you will be asked to authenticate again to access say, /app2/anotherSecure.jsp, though from the user point of view, this is the same username/password on the same URL. Is there a way to carry over the single sign-on from each Tomcat to the Apache server, so that /app2/anotherSecure.jsp can trust the authentication done while visiting /app1/aSecure.jsp, or should this be done in a completely different way? We have to keep those two separate Tomcats (distinct hardware, different versions, performance issues). Thanks for your help! Nic - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] This communication is confidential and may be legally privileged. If you are not the intended recipient, (i) please do not read or disclose to others, (ii) please notify the sender by reply mail, and (iii) please delete this communication from your system. Failure to follow this process may be unlawful. Thank you for your cooperation. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat+Eclipse, breakpoints not working
I'm using Eclipse to try and debug a servlet in tomcat. I've got eclipse set up so that it starts and stops tomcat in debug mode (I can tell because the list of tomcat threads is visible and updated when I'm using the debug perspective). I added a few breakpoints to my code and triggered the servlet, but the breakpoints didn't pause the execution. I know the functions were hit because I've got stack traces being logged with exceptions (they're the reason I'm trying to debug in the first place). I'm not using Eclipse to build or deploy my webapp, but I do want to be able to use it to debug. I have maven building the war and I deploy the webapp by hand (ie cp target mywebapp.war TOMCAT_HOME/ webapps/). I used the eclipse plugin for maven to generate the .project and .classpath files that eclipse is using when I browse my source code. What can I do so that I can also debug it? Thanks! Mark - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Physical path outside of webapps directory
Hi all I have searched the archives and has seen many posting on this but still need more information. Right now, I use Eclipse as my IDE. When a project is ready for testing I export to a WAR and use Tomcat's GUI Manager WAR file to deploy option to deploy my application to my server. So far, I have been setting up a context.xml file under META-INF in which I don't specify a path or docBase. This works and as expected the application deploys under the webapps folder (the default). What do I have to do to have the application reside in a physical directory outside of webapps, for example, /data0/tomcat/home. Make changes to the existing context.xml? Do I have to remove this xml and create it under CATALINA_HOME/conf/Catalina/localhost with the name of the app? My understanding is that if I add the docBase attribute specifying a physical directory that should be all that is required but in both cases above this do not work. Maybe it is because I can't simply deploy using the Tomcat Manager the way I use to do it. Sample of testApp.xml below Context debug=0 antiResourceLocking=false antiJARLocking=false reloadable=true docBase=/data0/tomcat/home Resource name=jdbc/hrm auth=Container type=javax.sql.DataSource ... / /Context Any help is greatly appreciated. JDK 1.5 Tomcat 5.5.7 Sun Solaris 9 Ritchie Programmer Analyst - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Context starts twice
Do you have any context entries in your server.xml? Or context.xml files present in other folders in the tomcat installation? If yes, then check if their path attribute is set to something different from their folder names? -- Vivek. On 3/30/06, Dola Woolfe [EMAIL PROTECTED] wrote: OK, I see it - it's webapps. Thank you. OK, how do I check wheather [I] have a separate context path configured for your webapp and its present in your appbase. No idea where to look and for what! Thanks! --- Farrow, Marc [EMAIL PROTECTED] wrote: Appbase is an attribute defined in your %tomcat_home%/conf/server.xml file. It should be a sub-attribute under your HOSTS attribute. -Original Message- From: Dola Woolfe [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 1:48 PM To: Tomcat Users List Subject: Re: Context starts twice Hi, I'm sorry, can you give a couple examples with dir names? For example, I'm not sure what appbase is. Thanks! Dola --- Vivek Mohan [EMAIL PROTECTED] wrote: This can happen if you have a separate context path configured for your webapp and its present in your appbase. If thats the case, then Tomcat will try to load the webapp twice, once for the different context path and once for the presence of the war or folder in appbase. This is a known feature(or bug) in Tomcat. Try keeping your webapp outside of your appbase and re-loading should not happen. -- Vivek. On 3/28/06, Jean-Philippe Boily [EMAIL PROTECTED] wrote: Hi, What version of Tomcat are you using ? Maybe your war is under your appbaseif it so, it may starts your context once with the context.xml file and once with the WAR Good luck ! Jean-Philippe Boily On 3/27/06, Dola Woolfe [EMAIL PROTECTED] wrote: Hi, I don't know what I did wrong, but my StartUp servlet now runs twice in a row when I start Tomcat. The web.xml entry is servlet-nameStartUp/servlet-name servlet-classservlets.StartUp/servlet-class load-on-startup1/load-on-startup I don't even know where to begin looking for the error. Do you have any suggestions? Many thanks in advance! Dola __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- I told the doctor I broke my leg in two places. He told me to quit going to those places. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- I told the doctor I broke my leg in two places. He told me to quit going to those places. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Context starts twice
Yes I do!!! Thank you. My guess is that Eclipse sneaked that line in there when I experimented with creating Tomcat projects. Good grief! Thanks again. --- Vivek Mohan [EMAIL PROTECTED] wrote: Do you have any context entries in your server.xml? Or context.xml files present in other folders in the tomcat installation? If yes, then check if their path attribute is set to something different from their folder names? -- Vivek. On 3/30/06, Dola Woolfe [EMAIL PROTECTED] wrote: OK, I see it - it's webapps. Thank you. OK, how do I check wheather [I] have a separate context path configured for your webapp and its present in your appbase. No idea where to look and for what! Thanks! --- Farrow, Marc [EMAIL PROTECTED] wrote: Appbase is an attribute defined in your %tomcat_home%/conf/server.xml file. It should be a sub-attribute under your HOSTS attribute. -Original Message- From: Dola Woolfe [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 1:48 PM To: Tomcat Users List Subject: Re: Context starts twice Hi, I'm sorry, can you give a couple examples with dir names? For example, I'm not sure what appbase is. Thanks! Dola --- Vivek Mohan [EMAIL PROTECTED] wrote: This can happen if you have a separate context path configured for your webapp and its present in your appbase. If thats the case, then Tomcat will try to load the webapp twice, once for the different context path and once for the presence of the war or folder in appbase. This is a known feature(or bug) in Tomcat. Try keeping your webapp outside of your appbase and re-loading should not happen. -- Vivek. On 3/28/06, Jean-Philippe Boily [EMAIL PROTECTED] wrote: Hi, What version of Tomcat are you using ? Maybe your war is under your appbaseif it so, it may starts your context once with the context.xml file and once with the WAR Good luck ! Jean-Philippe Boily On 3/27/06, Dola Woolfe [EMAIL PROTECTED] wrote: Hi, I don't know what I did wrong, but my StartUp servlet now runs twice in a row when I start Tomcat. The web.xml entry is servlet-nameStartUp/servlet-name servlet-classservlets.StartUp/servlet-class load-on-startup1/load-on-startup I don't even know where to begin looking for the error. Do you have any suggestions? Many thanks in advance! Dola __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- I told the doctor I broke my leg in two places. He told me to quit going to those places. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com === message truncated === __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Context starts twice
you're welcome!! -- Vivek. On 3/30/06, Dola Woolfe [EMAIL PROTECTED] wrote: Yes I do!!! Thank you. My guess is that Eclipse sneaked that line in there when I experimented with creating Tomcat projects. Good grief! Thanks again. --- Vivek Mohan [EMAIL PROTECTED] wrote: Do you have any context entries in your server.xml? Or context.xml files present in other folders in the tomcat installation? If yes, then check if their path attribute is set to something different from their folder names? -- Vivek. On 3/30/06, Dola Woolfe [EMAIL PROTECTED] wrote: OK, I see it - it's webapps. Thank you. OK, how do I check wheather [I] have a separate context path configured for your webapp and its present in your appbase. No idea where to look and for what! Thanks! --- Farrow, Marc [EMAIL PROTECTED] wrote: Appbase is an attribute defined in your %tomcat_home%/conf/server.xml file. It should be a sub-attribute under your HOSTS attribute. -Original Message- From: Dola Woolfe [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 1:48 PM To: Tomcat Users List Subject: Re: Context starts twice Hi, I'm sorry, can you give a couple examples with dir names? For example, I'm not sure what appbase is. Thanks! Dola --- Vivek Mohan [EMAIL PROTECTED] wrote: This can happen if you have a separate context path configured for your webapp and its present in your appbase. If thats the case, then Tomcat will try to load the webapp twice, once for the different context path and once for the presence of the war or folder in appbase. This is a known feature(or bug) in Tomcat. Try keeping your webapp outside of your appbase and re-loading should not happen. -- Vivek. On 3/28/06, Jean-Philippe Boily [EMAIL PROTECTED] wrote: Hi, What version of Tomcat are you using ? Maybe your war is under your appbaseif it so, it may starts your context once with the context.xml file and once with the WAR Good luck ! Jean-Philippe Boily On 3/27/06, Dola Woolfe [EMAIL PROTECTED] wrote: Hi, I don't know what I did wrong, but my StartUp servlet now runs twice in a row when I start Tomcat. The web.xml entry is servlet-nameStartUp/servlet-name servlet-classservlets.StartUp/servlet-class load-on-startup1/load-on-startup I don't even know where to begin looking for the error. Do you have any suggestions? Many thanks in advance! Dola __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- I told the doctor I broke my leg in two places. He told me to quit going to those places. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com === message truncated === __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- I told the doctor I broke my leg in two places.
Re: Get JDBCRealm's current user
Sorry, here's what I do: I have a web application and used Tomcat's Authentication mechanism called JDBCRealm. I had to edit server.xml to do so (this is not really the details I entered, it's just an example): Realm className=org.apache.catalina.realm.JDBCRealm driverName=com.microsoft.jdbc.sqlserver.SQLServerDriver connectionURL=jdbc:microsoft:sqlserver://kebab.ucsd.edu:1433 connectionName=CSE135_XX connectionPassword= userTable=users userNameCol=user_name userCredCol=user_pass userRoleTable=user_roles roleNameCol=role_name / Then I created the according tables: create table users ( user_name varchar(15) not null primary key, user_pass varchar(15) not null ); create table user_roles ( user_name varchar(15) not null, role_name varchar(15) not null, primary key( user_name, role_name ) ); There is a user admin in the table users with admin_role (in the table user_roles). There are other users with other names and other roles. The web.xml got these additional entries: security-constraint web-resource-collection web-resource-nameSecurePages/web-resource-name descriptionSecurity constraint /secure/description url-pattern/secure/*/url-pattern /web-resource-collection auth-constraint role-nameadmin/role-name /auth-constraint /security-constraint login-config auth-methodFORM/auth-method form-login-config form-login-page/login.jsp/form-login-page form-error-page/loginerror.jsp/form-error-page /form-login-config /login-config security-role role-nameadmin/role-name /security-role This is everything (or at least the most important things) I had to do to configure everything. Now what I want to know is, which user is logged in at a certain moment ... I want to know it when I create JSPs for example to show the user's name (equal to the name in the users table). Do you know what I meant to achieve? I don't want to get the database's user, which would be CSE135_XX in the above JDBCRealm example ... -- View this message in context: http://www.nabble.com/Get-JDBCRealm%27s-current-user-t1341315.html#a3657607 Sent from the Tomcat - User forum at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
mod_jk error -60
Can anyone tell me what a -60 error is? [Wed Mar 29 13:56:11 2006] [error] jk_ajp_common.c (961): Can't receive the response message from tomcat, network problems or tomcat is down (10.1.1.80:8009), err=-60 Earnie! - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
j_security_check
Hi How to configure j_security_check in TOMCAT. I am getting error 404 which states that the resource /control_center/j_security_check not available. Basically it is to do with enforcing security in TOMCAT. Thanks, Vikas Nagpal. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
1.42 compat package
I know I only asked this a dozen or so times but I need to get ahold of the 1.42 compat package for Tomcat 5.x Is there ANY WAY we can ask the kind folks at google to put this into their keyword search?? Thanks, Martin-
Re: Get JDBCRealm's current user
Why can't you just use request.getRemoteUser()? It provides the username the user logged in with whether it be from BASIC auth or form based auth. --David Rapthor wrote: Sorry, here's what I do: I have a web application and used Tomcat's Authentication mechanism called JDBCRealm. I had to edit server.xml to do so (this is not really the details I entered, it's just an example): Realm className=org.apache.catalina.realm.JDBCRealm driverName=com.microsoft.jdbc.sqlserver.SQLServerDriver connectionURL=jdbc:microsoft:sqlserver://kebab.ucsd.edu:1433 connectionName=CSE135_XX connectionPassword= userTable=users userNameCol=user_name userCredCol=user_pass userRoleTable=user_roles roleNameCol=role_name / Then I created the according tables: create table users ( user_name varchar(15) not null primary key, user_pass varchar(15) not null ); create table user_roles ( user_name varchar(15) not null, role_name varchar(15) not null, primary key( user_name, role_name ) ); There is a user admin in the table users with admin_role (in the table user_roles). There are other users with other names and other roles. The web.xml got these additional entries: security-constraint web-resource-collection web-resource-nameSecurePages/web-resource-name descriptionSecurity constraint /secure/description url-pattern/secure/*/url-pattern /web-resource-collection auth-constraint role-nameadmin/role-name /auth-constraint /security-constraint login-config auth-methodFORM/auth-method form-login-config form-login-page/login.jsp/form-login-page form-error-page/loginerror.jsp/form-error-page /form-login-config /login-config security-role role-nameadmin/role-name /security-role This is everything (or at least the most important things) I had to do to configure everything. Now what I want to know is, which user is logged in at a certain moment ... I want to know it when I create JSPs for example to show the user's name (equal to the name in the users table). Do you know what I meant to achieve? I don't want to get the database's user, which would be CSE135_XX in the above JDBCRealm example ... -- View this message in context: http://www.nabble.com/Get-JDBCRealm%27s-current-user-t1341315.html#a3657607 Sent from the Tomcat - User forum at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: 1.42 compat package
Any search engine that has indexed the archives of this list will have the answer many, many, many times over. Take a look at where you downloaded tomcat. You will find it there. --David Martin Gainty wrote: I know I only asked this a dozen or so times but I need to get ahold of the 1.42 compat package for Tomcat 5.x Is there ANY WAY we can ask the kind folks at google to put this into their keyword search?? Thanks, Martin- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: j_security_check
Assuming tomcat 5.5, have you read http://tomcat.apache.org/tomcat-5.5-doc/realm-howto.html ? --David VIKASS NAGPAL wrote: Hi How to configure j_security_check in TOMCAT. I am getting error 404 which states that the resource /control_center/j_security_check not available. Basically it is to do with enforcing security in TOMCAT. Thanks, Vikas Nagpal. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
get SSL port in tomcat 4.1
Hi, Is it possible to get hold of the SSL port for the tomcat installation programmatically? Thanks, Vivek. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: mod_jk error -60
In case of an error this line will print errno as a negative number. More precisely: #if defined(WIN32) || (defined(NETWARE) defined(__NOVELL_LIBC__)) ... errno = WSAGetLastError() - WSABASEERR; ... #endif ... do some read from network ... return (errno 0) ? -errno : errno; On Solaris errno 60 is ENOSTR. You need to check, what errno 60 is on your platform. Rainer Earnie Dyke wrote: Can anyone tell me what a -60 error is? [Wed Mar 29 13:56:11 2006] [error] jk_ajp_common.c (961): Can't receive the response message from tomcat, network problems or tomcat is down (10.1.1.80:8009), err=-60 Earnie! - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat+Eclipse, breakpoints not working
Add the following parameters to the tomcat JAVA_OPTIONS -Xdebug -Xrunjdwp:transport=dt_socket,address=8000,server=y,suspend=n In Eclipse, create a new Java Remote Application. By default, port used will be 8000 as configured previously. Launch Tomcat, run this JRA, place breakpoints, use your web application. Eclipse will go in debug mode if breakpoints are meet. See http://tomcat.apache.org/faq/development.html for more explanations. Pascal On 3/29/06, Mark Slater [EMAIL PROTECTED] wrote: I'm using Eclipse to try and debug a servlet in tomcat. I've got eclipse set up so that it starts and stops tomcat in debug mode (I can tell because the list of tomcat threads is visible and updated when I'm using the debug perspective). I added a few breakpoints to my code and triggered the servlet, but the breakpoints didn't pause the execution. I know the functions were hit because I've got stack traces being logged with exceptions (they're the reason I'm trying to debug in the first place). I'm not using Eclipse to build or deploy my webapp, but I do want to be able to use it to debug. I have maven building the war and I deploy the webapp by hand (ie cp target mywebapp.war TOMCAT_HOME/ webapps/). I used the eclipse plugin for maven to generate the .project and .classpath files that eclipse is using when I browse my source code. What can I do so that I can also debug it? Thanks! Mark - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Pascal Alberty - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
org.apache.jk.common.ChannelSocket processConnection WARNING: processCallbacks status 2
I hope someone can help me with this. I have been searching the archives for similar problems and have found a few but with no solutions. Running Fedora core 4, apache2.2 and tomcat5.5 jdk1.5 and am getting the following error in catalina.out on a regular basis. 29-Mar-2006 21:43:40 org.apache.jk.common.HandlerRequest invoke SEVERE: Error decoding request java.io.IOException at org.apache.jk.common.JkInputStream.receive(JkInputStream.java:252) at org.apache.jk.common.HandlerRequest.decodeRequest(HandlerRequest.java:500) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:352) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:743) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:675) at org.apache.jk.common.SocketConnection.runIt(ChannelSocket.java:866) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683) at java.lang.Thread.run(Thread.java:595) ## HEX DUMP ## 29-Mar-2006 21:43:40 org.apache.jk.common.ChannelSocket processConnection WARNING: processCallbacks status 2 can anyone else who has seen this error point me in the right direction to fix it. Thanks. -- Sean O'Reilly Systems Administrator SECPay Ltd http://www.secpay.com [EMAIL PROTECTED] Mobile 07917 463906 DDI 01732 300212 This email contains information which is confidential. It is for the exclusive use of the addressee(s). If you are not the addressee, please note that any distribution, dissemination, copying or use of this communication or the information in it is prohibited. If you have received this email in error, please telephone me immediately. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Apache2 - mod_jk2 - Tomcat4.1 : 404 Error if host not defined in server.xml
Hello, I have a Apache running with a lot virtual hosts. Now I installed Tomcat 4.1 and use mod_jk2 to send .jsp to the Tomcat Server (ajp13). But Tomcat needs the real path to the .jsp-file (defined in server.xml) or it cause a 404 Error ?!?! Is this normal? Do I have really define all the virtual hosts in the server.xml to use .jsps in on all hosts? And what happen, if the Tomcat is not the same server like the Apache? I thought the Apache only sends the jps to the Tomcat and reply the output. Thx for Help Gerard - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: mod_jk error -60
I don't know, how correct it is, but the following table looks helpful: http://www.ioplex.com/~miallen/errcmp.html It says, that 60 is a time out (ETIMEDOUT) on FreeBSD 5.2.1, OSX 10.3.8 and OSF1. Rainer Jung wrote: In case of an error this line will print errno as a negative number. More precisely: #if defined(WIN32) || (defined(NETWARE) defined(__NOVELL_LIBC__)) ... errno = WSAGetLastError() - WSABASEERR; ... #endif ... do some read from network ... return (errno 0) ? -errno : errno; On Solaris errno 60 is ENOSTR. You need to check, what errno 60 is on your platform. Rainer Earnie Dyke wrote: Can anyone tell me what a -60 error is? [Wed Mar 29 13:56:11 2006] [error] jk_ajp_common.c (961): Can't receive the response message from tomcat, network problems or tomcat is down (10.1.1.80:8009), err=-60 Earnie! - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Help : Client Certificate Authentication - Bad_Certificate Error
Hi, I'm trying to implement Client Certificate authentication in addition to the regular HTTPS. Do you know any resource references ? I have imported the client certificates in my client machine and when I try to connect to the server, I'm getting javax.net.ssl.SSLHandshakeException: Received fatal alert: bad_certificate at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(DashoA12275) at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.b(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.b(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA12275) at sun.net.www.protocol.https.HttpsClient.afterConnect(DashoA12275) at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(DashoA12275) at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:626) at sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(DashoA12275) at org.apache.xerces.impl.XMLEntityManager.setupCurrentEntity(Unknown Source) at org.apache.xerces.impl.XMLVersionDetector.determineDocVersion(Unknown Source) at org.apache.xerces.parsers.XML11Configuration.parse(Unknown Source) at org.apache.xerces.parsers.XML11Configuration.parse(Unknown Source) at org.apache.xerces.parsers.XMLParser.parse(Unknown Source) at org.apache.xerces.parsers.DOMParser.parse(Unknown Source) at org.apache.xerces.jaxp.DocumentBuilderImpl.parse(Unknown Source) at org.apache.axis.utils.XMLUtils.newDocument(XMLUtils.java:369) at org.apache.axis.utils.XMLUtils.newDocument(XMLUtils.java:420) at org.apache.axis.wsdl.symbolTable.SymbolTable.populate(SymbolTable.java:482) at org.apache.axis.wsdl.gen.Parser$WSDLRunnable.run(Parser.java:361) at java.lang.Thread.run(Thread.java:534) Error. Please let me know any work-around for this. I can access the web service using the IE. But when I try to connect using my java program, it fails due to this error. Thanks Kanishka __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Problem with URL Format ;jessionid with mod_jk
Hi all. I have somewhat of a perplexing problem. My site uses Apache 2.0 with mod_jk1.2 to connect to a Tomcat application. The Tomcat app uses a session ID on the URL line. Apache is configured to log in combined log format. In the URL in the POST , I see /myapplication/page.jsp;jsessionid=KJHDFSALKJHBFBFLKBF My log analysis product, Deepmetrix Livestats cannot handle the ; in this entry and is recording each session as a unique file extension. Anyone know how I might get around this? David Morrow Technical Systems Lead Autodata Solutions Company [EMAIL PROTECTED] http://www.autodatasolutions.com http://www.autodatasolutions.com/ Tel: (519) 963-3020 Fax: (519) 451-6615 Lead, follow or get out of the way! This message has originated from Autodata Solutions. The attached material is the Confidential and Proprietary Information of Autodata Solutions. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please delete this message and notify the Autodata system administrator at [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
Re: Apache2 - mod_jk2 - Tomcat4.1 : 404 Error if host not defined in server.xml
I think you have this turned around. jsp files are not sent to tomcat for processing. Think of the relationship between Apache and Tomcat more as a proxy environment. Tomcat has a set of contexts. Each context has a set of jsps, servlets, and resources that function to gether as an application. What really happens is apache passes requests from the client back to tomcat, tomcat produces a response from it's servlets and jsps and passes that response back to the client through apache. --David Gerard Pelka wrote: Hello, I have a Apache running with a lot virtual hosts. Now I installed Tomcat 4.1 and use mod_jk2 to send .jsp to the Tomcat Server (ajp13). But Tomcat needs the real path to the .jsp-file (defined in server.xml) or it cause a 404 Error ?!?! Is this normal? Do I have really define all the virtual hosts in the server.xml to use .jsps in on all hosts? And what happen, if the Tomcat is not the same server like the Apache? I thought the Apache only sends the jps to the Tomcat and reply the output. Thx for Help Gerard - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat+Eclipse, breakpoints not working
Mark Slater wrote: I'm using Eclipse to try and debug a servlet in tomcat. I've got eclipse set up so that it starts and stops tomcat in debug mode (I can tell because the list of tomcat threads is visible and updated when I'm using the debug perspective). I added a few breakpoints to my code and triggered the servlet, but the breakpoints didn't pause the execution. I know the functions were hit because I've got stack traces being logged with exceptions (they're the reason I'm trying to debug in the first place). The project that contains your servlets needs to be part of the project that is associated with the debug session for Tomcat. Mark - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Daily log rotation?
Is there any way of getting Tomcat to start its standard logs (stdout_mmdd, jakarta_service_mmdd, etc) new each day, rather than continuing to append to the log which was started days ago when I last restarted the Tomcat service? Thanks! Dave - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat+Eclipse, breakpoints not working
On Mar 29, 2006, at 12:47 PM, Pascal Alberty wrote: Add the following parameters to the tomcat JAVA_OPTIONS -Xdebug -Xrunjdwp:transport=dt_socket,address=8000,server=y,suspend=n In Eclipse, create a new Java Remote Application. By default, port used will be 8000 as configured previously. Launch Tomcat, run this JRA, place breakpoints, use your web application. Eclipse will go in debug mode if breakpoints are meet. See http://tomcat.apache.org/faq/development.html for more explanations. Pascal That's the page I followed in getting it set up. I started tomcat with those environment options and, with my project open, attached to the running tomcat instance. I set my breakpoints, and triggered the web app, but it didn't stop at the breakpoints. In the log output for tomcat, the first line is Listening for transport dt_socket at address: 8000. On Mar 29, 2006, at 1:17 PM, Mark Thomas wrote: The project that contains your servlets needs to be part of the project that is associated with the debug session for Tomcat. Mark I used maven's eclipse plugin to generate an Eclipse .project file. I've opened that in Eclipse and then created the Remote Java Application for debugging, and selected the project in the Connect tab. Do I need to compile the WAR from within Eclipse? I checked the compile settings for Maven, and it is building with Debug on in the generated class files. Mark On 3/29/06, Mark Slater [EMAIL PROTECTED] wrote: I'm using Eclipse to try and debug a servlet in tomcat. I've got eclipse set up so that it starts and stops tomcat in debug mode (I can tell because the list of tomcat threads is visible and updated when I'm using the debug perspective). I added a few breakpoints to my code and triggered the servlet, but the breakpoints didn't pause the execution. I know the functions were hit because I've got stack traces being logged with exceptions (they're the reason I'm trying to debug in the first place). I'm not using Eclipse to build or deploy my webapp, but I do want to be able to use it to debug. I have maven building the war and I deploy the webapp by hand (ie cp target mywebapp.war TOMCAT_HOME/ webapps/). I used the eclipse plugin for maven to generate the .project and .classpath files that eclipse is using when I browse my source code. What can I do so that I can also debug it? Thanks! Mark - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Pascal Alberty - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
LDAP question
I am using Tomcat 5.5.12 and OpenLDAP 2.3.20. I have the following in
my server.xml:
Realm className=org.apache.catalina.realm.JNDIRealm
debug=99
connectionURL=ldap://localhost.localdomain:389;
userBase=dc=nico,dc=com
userSubtree=true
userSearch=uid={0}
userRoleName=givenName
/
I am using basic authentication with LDAP. I want to know if I'm
sending my password over in the clear. I configured my OpenLDAP server
to require LDAPv3. I can't find a definitive answer about whether
LDAPv3 by default uses SASL, or what Tomcat uses by default (from
source, it appears not to set Context.SECURITY_AUTHENTICATION at all.
I tried to set it to DIGEST-MD5 and adding connectionUser and
connectionPassword, but when Tomcat calls open() before bindAsUser(), I get:
Mar 29, 2006 11:11:51 AM org.apache.catalina.realm.JNDIRealm open
WARNING: Exception performing authentication
javax.naming.AuthenticationException: [LDAP: error code 49 - SASL(-13):
user not found: no secret in database]
I used tcpdump and which revealed strings for the uid of the user I'm
logging as, and for the root DN, but I didn't see a password (which
doesn't mean it's not there).
Am I sending the password in the clear? If so, how can I tell tomcat to
use SASL and get it to work? Or should I just configure OpenLDAP over
SSL and use ldaps? There are so many secure configurations around;
I'm having trouble figuring out how many and which ones I need.
-Kim.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: Daily log rotation?
You could add the logs into logrotate. See the logrotate project for more information. NOTE: This is for Linux/UNIX only. If on Windows, I do not know. Jerald Sheets Systems Administrator The Weather Channel Interactive
Re: 1.42 compat package
Hello David- I could'nt find the compat package anywhere in that page look at http://www.devlib.org/apache/tomcat/tomcat-5/v5.5.15/bin/ Bookmark it Martin- - Original Message - From: David Smith [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org Sent: Wednesday, March 29, 2006 3:27 PM Subject: Re: 1.42 compat package Any search engine that has indexed the archives of this list will have the answer many, many, many times over. Take a look at where you downloaded tomcat. You will find it there. --David Martin Gainty wrote: I know I only asked this a dozen or so times but I need to get ahold of the 1.42 compat package for Tomcat 5.x Is there ANY WAY we can ask the kind folks at google to put this into their keyword search?? Thanks, Martin- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Daily log rotation?
Use Log4J, or another logger implementation of your choosing, with a RollingDailyFileAppender (Log4J) or equivalent (your choosing) as the target. -Original Message- From: Sheets, Jerald [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 5:04 PM To: Tomcat Users List Subject: Re: Daily log rotation? You could add the logs into logrotate. See the logrotate project for more information. NOTE: This is for Linux/UNIX only. If on Windows, I do not know. Jerald Sheets Systems Administrator The Weather Channel Interactive - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Get JDBCRealm's current user
you can do this one of 2 ways 1)create a bunch of tables which have entities defined like users and roles and such this way you can look up the user which has a specific 'role' or user is defined within a group which has certain 'role' this solution is probably the closest to your current effort.. 2)Look at a security management package such as jetspeed which will define your roles define groups define users then..define which role (capabilities) do the groups and or users support Take a look at http://portals.apache.org/jetspeed-2/getting-started.html Pay close attention to how to configure Jetspeed as a servlet engine HTH, Martin-- - Original Message - From: Rapthor [EMAIL PROTECTED] To: users@tomcat.apache.org Sent: Wednesday, March 29, 2006 3:06 PM Subject: Re: Get JDBCRealm's current user Sorry, here's what I do: I have a web application and used Tomcat's Authentication mechanism called JDBCRealm. I had to edit server.xml to do so (this is not really the details I entered, it's just an example): Realm className=org.apache.catalina.realm.JDBCRealm driverName=com.microsoft.jdbc.sqlserver.SQLServerDriver connectionURL=jdbc:microsoft:sqlserver://kebab.ucsd.edu:1433 connectionName=CSE135_XX connectionPassword= userTable=users userNameCol=user_name userCredCol=user_pass userRoleTable=user_roles roleNameCol=role_name / Then I created the according tables: create table users ( user_name varchar(15) not null primary key, user_pass varchar(15) not null ); create table user_roles ( user_name varchar(15) not null, role_name varchar(15) not null, primary key( user_name, role_name ) ); There is a user admin in the table users with admin_role (in the table user_roles). There are other users with other names and other roles. The web.xml got these additional entries: security-constraint web-resource-collection web-resource-nameSecurePages/web-resource-name descriptionSecurity constraint /secure/description url-pattern/secure/*/url-pattern /web-resource-collection auth-constraint role-nameadmin/role-name /auth-constraint /security-constraint login-config auth-methodFORM/auth-method form-login-config form-login-page/login.jsp/form-login-page form-error-page/loginerror.jsp/form-error-page /form-login-config /login-config security-role role-nameadmin/role-name /security-role This is everything (or at least the most important things) I had to do to configure everything. Now what I want to know is, which user is logged in at a certain moment ... I want to know it when I create JSPs for example to show the user's name (equal to the name in the users table). Do you know what I meant to achieve? I don't want to get the database's user, which would be CSE135_XX in the above JDBCRealm example ... -- View this message in context: http://www.nabble.com/Get-JDBCRealm%27s-current-user-t1341315.html#a3657607 Sent from the Tomcat - User forum at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Logs not getting generated in tomcat 5.5.12
I have not used MyEclipse, but when I run Tomcat under Eclipse, the catalina.out output goes to an Eclipse console window, not to a file. Check your settings, I believe this can be changed. - Richard -Original Message- From: GUNJAN SINGH [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 12:14 AM To: users@tomcat.apache.org Subject: Logs not getting generated in tomcat 5.5.12 hi I'm using j2sdk1.4.2_09 version and tamcat 5.5.12 and myeclipse as an IDE. The problem is that logs are not getting generated under apache-tomcat-5.5.12/logs directory. The server is starting properly and i have added the required campatibility jars. Can any one tell me the reason as to why tomcat logs are not getting generated and what i should do in order to get this done. thanks and regards. ved - Blab-away for as little as 1¢/min. Make PC-to-Phone Calls using Yahoo! Messenger with Voice. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: security-constraint
If you are using struts for your webapp, there is an extension sslext
for this purpose. What it does are: 1) gernerate complete url with
property scheme using it's tag; 2) redirect (as you said in your email)
if the incoming has unmatched scheme for the target resource.
Hansen
-Original Message-
From: tamsin [mailto:[EMAIL PROTECTED]
Sent: Wednesday, March 29, 2006 7:25 AM
To: Tomcat-Users
Subject: security-constraint
Hi all,
I wonder if anyone can help me, I've recently taken over management of
our Tomcat webapp, and have been listening to the list for a while,
although don't know enough to contribute much yet I am afraid.
I'm using the following security-constraint to make sure that any user
using our payment module is transferred to https
security-constraint
display-nameSecure Access/display-name
web-resource-collection
web-resource-nameOrderPayment/web-resource-name
url-pattern/OrderPayment/url-pattern
/web-resource-collection
user-data-constraint
transport-guaranteeCONFIDENTIAL/transport-guarantee
/user-data-constraint
/security-constraint
This works fine - if I request http://mydomain/OrderPayment I get
transferred to https.
However, after they've finished paying I really want to transfer them
back to http. I couldn't see a way of doing this using web.xml - the
info I found on the net suggested this isn't possible.
So, I thought I could write a filter to do this. I can easily write a
filter which uses sendRedirect to tranfer an https request to http, but
I wanted to know the best way to see which requests to do this to. I
could hard code into my filter the names of the pages I want to be
secure, but I wondered if there is any way of finding out
programatically which requests are covered by the security-contraint,
and then any that are https and aren't covered, do the redirect on.
Does that make sense? i.e. can I do something like :
if (request.getScheme().equals(https)
!request.hasConfidentialSecurityContraint()) {
(And does this in general sound like a sensible way of doing things?)
Thanks for any help,
Tamsin
--
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.385 / Virus Database: 268.3.3/295 - Release Date:
28/03/2006
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: Problems with Tomcat and mod_proxy_ajp
At 08:03 PM 3/24/2006, Bill Barker wrote: Are you using the APR or the Java AJP/1.3 Connector? Whichever one it is, is it possible for you to test using the other one? Another test would be to see if it works with Apache 2.0.54+mod_jk(2). I'm using the AJP/1.3 Connector. More testing to do. But I had previously tried Apache 2.0.54 with JK2 and Tomcat 5.5.15 -- and had a different set of problems with form login (and single sign on). When the login form appeared and I entered the user name and password, the login form stayed on the screen. If I reloaded the page in the browser, sometimes it would let me in and sometimes it would give the message j_security_check not available (then let me in after I reloaded the page again). And single sign-on did not work across different webapps. At this point, I assumed I had reached the end with JK2, and rather than switch to mod_jk, I decided to go ahead and try mod_proxy_ajp (and used Tomcat 5.5.16 since it was the latest version at that point). Other specifics: Solaris 9, Java 1.4.2_03 with the JDK 1.4 compatibility package. Debra Bartling Earthquake Engineering Research Center University of California, Berkeley - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Daily log rotation?
Boy, log rotation sure seems like it would be a reasonable function to have built into tomcat's native logging... Tim Lucia wrote: Use Log4J, or another logger implementation of your choosing, with a RollingDailyFileAppender (Log4J) or equivalent (your choosing) as the target. -Original Message- From: Sheets, Jerald [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 5:04 PM To: Tomcat Users List Subject: Re: Daily log rotation? You could add the logs into logrotate. See the logrotate project for more information. NOTE: This is for Linux/UNIX only. If on Windows, I do not know. Jerald Sheets Systems Administrator The Weather Channel Interactive - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Daily log rotation?
Write a patch and submit it. - Original Message - From: David Kerber [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org Sent: Wednesday, March 29, 2006 9:21 PM Subject: Re: Daily log rotation? Boy, log rotation sure seems like it would be a reasonable function to have built into tomcat's native logging... Tim Lucia wrote: Use Log4J, or another logger implementation of your choosing, with a RollingDailyFileAppender (Log4J) or equivalent (your choosing) as the target. -Original Message- From: Sheets, Jerald [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 5:04 PM To: Tomcat Users List Subject: Re: Daily log rotation? You could add the logs into logrotate. See the logrotate project for more information. NOTE: This is for Linux/UNIX only. If on Windows, I do not know. Jerald Sheets Systems Administrator The Weather Channel Interactive - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: 1.42 compat package
* apache-tomcat-5.5.15-compat.tar.gz http://www.devlib.org/apache/tomcat/tomcat-5/v5.5.15/bin/apache-tomcat-5.5.15-compat.tar.gz * apache-tomcat-5.5.15-compat.tar.gz.MD5 http://www.devlib.org/apache/tomcat/tomcat-5/v5.5.15/bin/apache-tomcat-5.5.15-compat.tar.gz.MD5 * apache-tomcat-5.5.15-compat.tar.gz.asc http://www.devlib.org/apache/tomcat/tomcat-5/v5.5.15/bin/apache-tomcat-5.5.15-compat.tar.gz.asc * apache-tomcat-5.5.15-compat.zip http://www.devlib.org/apache/tomcat/tomcat-5/v5.5.15/bin/apache-tomcat-5.5.15-compat.zip * apache-tomcat-5.5.15-compat.zip.MD5 http://www.devlib.org/apache/tomcat/tomcat-5/v5.5.15/bin/apache-tomcat-5.5.15-compat.zip.MD5 * apache-tomcat-5.5.15-compat.zip.asc http://www.devlib.org/apache/tomcat/tomcat-5/v5.5.15/bin/apache-tomcat-5.5.15-compat.zip.asc Me thinks you should look a bit closer. There is a .tar.gz compat package and a .zip compat package in the list above. I'll let you find it. --David Martin Gainty wrote: Hello David- I could'nt find the compat package anywhere in that page look at http://www.devlib.org/apache/tomcat/tomcat-5/v5.5.15/bin/ Bookmark it Martin- - Original Message - From: David Smith [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org Sent: Wednesday, March 29, 2006 3:27 PM Subject: Re: 1.42 compat package Any search engine that has indexed the archives of this list will have the answer many, many, many times over. Take a look at where you downloaded tomcat. You will find it there. --David Martin Gainty wrote: I know I only asked this a dozen or so times but I need to get ahold of the 1.42 compat package for Tomcat 5.x Is there ANY WAY we can ask the kind folks at google to put this into their keyword search?? Thanks, Martin- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- === David Smith Network Operations Supervisor Department of Entomology College of Agriculture Life Sciences Cornell University 2132 Comstock Hall Ithaca, NY 14853 Phone: 607.255.9571 Fax: 607.255.0939 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
connection pool
I know Tomcat5 supply some connection pool for oracle,sql and so on.Now I want to use Microsoft Access2000 Database,I don't know how to do it through tomcat connection pool. Any body can give me a example code for Microsoft Access2000 Database configure under Tomcat5 connection pool? Thanks in advance! Best regards, Edward
RE: connection pool
same as everything else. You will need a JDBC driver for Microsoft Access2000 and point your connection pooling in the server.xml to that driver. How you obtain the driver is another bear. -Original Message- From: red phoenix [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 10:43 PM To: users@tomcat.apache.org Subject: connection pool I know Tomcat5 supply some connection pool for oracle,sql and so on.Now I want to use Microsoft Access2000 Database,I don't know how to do it through tomcat connection pool. Any body can give me a example code for Microsoft Access2000 Database configure under Tomcat5 connection pool? Thanks in advance! Best regards, Edward - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection pool
Where can I get JDBC driver for Microsoft Access2000? Thanks On 3/30/06, Farrow, Marc [EMAIL PROTECTED] wrote: same as everything else. You will need a JDBC driver for Microsoft Access2000 and point your connection pooling in the server.xml to that driver. How you obtain the driver is another bear. -Original Message- From: red phoenix [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 10:43 PM To: users@tomcat.apache.org Subject: connection pool I know Tomcat5 supply some connection pool for oracle,sql and so on.Now I want to use Microsoft Access2000 Database,I don't know how to do it through tomcat connection pool. Any body can give me a example code for Microsoft Access2000 Database configure under Tomcat5 connection pool? Thanks in advance! Best regards, Edward - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection pool
I don't believe such a driver exists... I'd be interested myself if I'm wrong. I believe you'll have to use the jdbc:odbc bridge driver. Frank red phoenix wrote: Where can I get JDBC driver for Microsoft Access2000? Thanks On 3/30/06, Farrow, Marc [EMAIL PROTECTED] wrote: same as everything else. You will need a JDBC driver for Microsoft Access2000 and point your connection pooling in the server.xml to that driver. How you obtain the driver is another bear. -Original Message- From: red phoenix [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 29, 2006 10:43 PM To: users@tomcat.apache.org Subject: connection pool I know Tomcat5 supply some connection pool for oracle,sql and so on.Now I want to use Microsoft Access2000 Database,I don't know how to do it through tomcat connection pool. Any body can give me a example code for Microsoft Access2000 Database configure under Tomcat5 connection pool? Thanks in advance! Best regards, Edward - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Frank W. Zammetti Founder and Chief Software Architect Omnytex Technologies http://www.omnytex.com AIM: fzammetti Yahoo: fzammetti MSN: [EMAIL PROTECTED] Java Web Parts - http://javawebparts.sourceforge.net Supplying the wheel, so you don't have to reinvent it! - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: connection pool
I write a Thread connection pool by jdbc:odbc to connect to Microsoft Access2000,most of time my code runs well,but occasionally it raise error,and make Tomcat shutdown automatically,like follows: ERROR MESSAGES/STACK TRACES THAT OCCUR : # # An unexpected error has been detected by HotSpot Virtual Machine: # # EXCEPTION_ACCESS_VIOLATION (0xc005) at pc=0x7c95f350, pid=788, tid=636 # # Java VM: Java HotSpot(TM) Client VM (1.5.0_06-b05 mixed mode, sharing) # Problematic frame: # C [ntdll.dll+0x2f350] # --- T H R E A D --- Current thread (0x0089c750): JavaThread Thread-2 [_thread_in_native, id=636] siginfo: ExceptionCode=0xc005, writing address 0x0008 Registers: EAX=0x, EBX=0x, ECX=0x0008, EDX=0x0004 ESP=0x0871f974, EBP=0x0871f980, ESI=0x0008, EDI=0x037525a8 EIP=0x7c95f350, EFLAGS=0x00010246 Top of Stack: (sp=0x0871f974) 0x0871f974: 037525a8 0008 0871f99c 0x0871f984: 4b784c16 0004 037525cc 4b7527af 0x0871f994: 037525cc 037525a8 0871f9ac 4b75320d 0x0871f9a4: 037525cc 0089c810 0871f9e8 4b755766 0x0871f9b4: 037525a8 4b78 0089c810 270659c8 0x0871f9c4: 0001 0089c750 0001 0871f9b8 0x0871f9d4: 0871f5a0 0871fc68 4b785705 4b7564f8 0x0871f9e4: 0871fa04 4b7564cd 037525a8 Instructions: (pc=0x7c95f350) 0x7c95f340: 56 8d 72 04 57 89 75 fc b8 00 00 00 00 8b 4d fc 0x7c95f350: f0 0f b3 01 0f 92 c0 84 c0 0f 84 95 0f 00 00 64 Stack: [0x086e,0x0872), sp=0x0871f974, free space=254k Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code) C [ntdll.dll+0x2f350] C [ODBC32.dll+0x34c16] C [ODBC32.dll+0x320d] C [ODBC32.dll+0x5766] C [ODBC32.dll+0x64cd] C [JdbcOdbc.dll+0x11da] j sun.jdbc.odbc.JdbcOdbc.allocStmt(J[B)J+0 j sun.jdbc.odbc.JdbcOdbc.SQLAllocStmt(J)J+47 j sun.jdbc.odbc.JdbcOdbcConnection.createStatement (II)Ljava/sql/Statement;+27 j sun.jdbc.odbc.JdbcOdbcConnection.createStatement()Ljava/sql/Statement;+7 j ConnectionPool.run()V+549 j java.lang.Thread.run()V+11 v ~StubRoutines::call_stub V [jvm.dll+0x845a9] V [jvm.dll+0xd9317] V [jvm.dll+0x8447a] V [jvm.dll+0x841d7] V [jvm.dll+0x9ed69] V [jvm.dll+0x109fe3] V [jvm.dll+0x109fb1] C [msvcrt.dll+0x2b530] C [kernel32.dll+0x26063] Java frames: (J=compiled Java code, j=interpreted, Vv=VM code) j sun.jdbc.odbc.JdbcOdbc.allocStmt(J[B)J+0 j sun.jdbc.odbc.JdbcOdbc.SQLAllocStmt(J)J+47 j sun.jdbc.odbc.JdbcOdbcConnection.createStatement (II)Ljava/sql/Statement;+27 j sun.jdbc.odbc.JdbcOdbcConnection.createStatement()Ljava/sql/Statement;+7 j .ConnectionPool.run()V+549 j java.lang.Thread.run()V+11 v ~StubRoutines::call_stub --- P R O C E S S --- Java Threads: ( = current thread ) 0x008d3dd0 JavaThread TP-Monitor daemon [_thread_blocked, id=2172] 0x008d2a70 JavaThread TP-Processor4 daemon [_thread_in_native, id=3556] 0x008d0330 JavaThread TP-Processor3 daemon [_thread_blocked, id=2228] 0x008d0ad0 JavaThread TP-Processor2 daemon [_thread_blocked, id=236] 0x008d1e70 JavaThread TP-Processor1 daemon [_thread_blocked, id=3280] 0x008c7930 JavaThread http-5168-Monitor [_thread_blocked, id=2260] 0x008c6670 JavaThread http-5168-Processor25 daemon [_thread_in_native, id=3260] 0x008c53b0 JavaThread http-5168-Processor24 daemon [_thread_in_native, id=2664] 0x008c4180 JavaThread http-5168-Processor23 daemon [_thread_in_native, id=2648] 0x008c4e70 JavaThread http-5168-Processor22 daemon [_thread_blocked, id=620] 0x008c3bb0 JavaThread http-5168-Processor21 daemon [_thread_blocked, id=2108] 0x008c28d0 JavaThread http-5168-Processor20 daemon [_thread_blocked, id=3528] 0x008c15d0 JavaThread http-5168-Processor19 daemon [_thread_blocked, id=2216] 0x008c0310 JavaThread http-5168-Processor18 daemon [_thread_blocked, id=3640] 0x008460a0 JavaThread http-5168-Processor17 daemon [_thread_blocked, id=2968] 0x008bf9d0 JavaThread http-5168-Processor16 daemon [_thread_blocked, id=280] 0x008be670 JavaThread http-5168-Processor15 daemon [_thread_blocked, id=3812] 0x008bd460 JavaThread http-5168-Processor14 daemon [_thread_blocked, id=3656] 0x008bc180 JavaThread http-5168-Processor13 daemon [_thread_blocked, id=1460] 0x008bce70 JavaThread http-5168-Processor12 daemon [_thread_blocked, id=2088] 0x0080 JavaThread http-5168-Processor11 daemon [_thread_blocked, id=2424] 0x008ba8d0 JavaThread http-5168-Processor10 daemon [_thread_blocked, id=4076] 0x008b95d0 JavaThread http-5168-Processor9 daemon [_thread_blocked, id=3568] 0x008b8310 JavaThread http-5168-Processor8 daemon [_thread_blocked, id=672] 0x008b70c0 JavaThread http-5168-Processor7 daemon [_thread_blocked, id=2184] 0x008b7dd0 JavaThread http-5168-Processor6 daemon [_thread_blocked, id=3612] 0x008b6a70 JavaThread http-5168-Processor5 daemon [_thread_blocked, id=3412] 0x008b5810 JavaThread http-5168-Processor4 daemon [_thread_blocked, id=840] 0x008b4490 JavaThread http-5168-Processor3 daemon [_thread_blocked, id=2344] 0x008b3470 JavaThread http-5168-Processor2 daemon [_thread_blocked, id=1940] 0x008b3020
Re: HTTP 404
Hello Vikas, look at your login.jsp. There is an entry like this: .. form method=post action=j_security_check name=loginform ... Be sure that you there is only j_security_check in the action field. This is calling the Tomcat authentication valve and you don't need any directory information. -- Franck Hi HTTP Status 404 - /Control_center/j_security_check type Status report message /Control_center/j_security_check description The requested resource (/Control_center/j_security_check) is not available. Apache Tomcat/5.5.16 Can anyone help me resolve this error. Thanks, With regards, Vikas Nagpal. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
servlet-mapping and DefaultServlet unexpected behaviour
Hi - I've set up servlet-mappings of: servlet-mapping servlet-namedefault/servlet-name url-pattern/data/*/url-pattern /servlet-mapping servlet-mapping servlet-namedefault/servlet-name url-pattern*.gif/url-pattern /servlet-mapping ... others... servlet-mapping servlet-namemydispatcher/servlet-name url-pattern//url-pattern /servlet-mapping the intention was: * when I request anything ending .gif, the default servlet deals with it. * when I request anything beginning /data/ the default servlet deals with it. * otherwise mydispatcher deals with it. however the weird thing is, that any requests to CONTEXT/data/whatever is handled by the default servlet as if it was a request for CONTEXT/whatever (ie. it strips out the /data/) so to get something in a folder called /data I need to request CONTEXT/data/data/whatever) So... * Is this expected behaviour for the DefaultServlet (having skimmed the functional specs for it[1], it does appear that the DefaultServlet expects to be served as url-pattern /)? In this case I need to make my own version of the defaultServlet * Acutally a config error (can't work out how) - like maybe I need to specify some extra piece of Context (at the moment these are just Context free wars dropped into the webapps folder). * some kind of corner case bug. Any help useful thanks Tim [1]http://tomcat.apache.org/tomcat-5.5-doc/catalina/funcspecs/fs-default.html - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
