Re: tomcat 8 windows service logs

2017-05-25 Thread Gili B 
hi

In case anyone wonders ..

I used another logging.properties in the application to overcome that.

(placed under WEB_INF/classes)


Thanks

-gili



From: Gili B 
Sent: Wednesday, May 24, 2017 3:56 PM
To: users@tomcat.apache.org
Subject: tomcat 8 windows service logs

hi

Im using tomcat 8 as a windows service.

Most of the logs are going to .stderr

I use the same logging.config as I use in linux (and it works in linux).


The files are created under logs directory, but are empty.

When I configure tomcat LogLevel to WARNING, I still see INFO messages in 
stderr file.


Please help.


Thanks

-gili

Re: server.xml password encryption instead of plain text

2017-05-25 Thread Christopher Schultz 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

John,

On 5/25/17 10:00 AM, John Palmer wrote:
> On Thu, May 25, 2017 at 7:46 AM, Vidyadhar
>  wrote:
> 
>> On Thu, 25 May 2017 at 6:01 PM, Dhaval Jaiswal
>>  wrote:
>> 
>>> How can we avoid defining plain text password in server.xml​ or
>>> is there
>> a
>>> way i can encrypt the password in server.xml. ​
>>> 
>> There are couple of examples on https://wiki.apache.org/ 
>> tomcat/FAQ/Password

> I haven't tested it yet, but if you're on a Windows platform you
> MAY be able to tell Tomcat to use the Windows Certificate Store (an
> thus
NOT have
> a password in server.xml) by adding something like this to the
> Java
Options:
> -Djavax.net.ssl.trustStoreProvider=SunMSCAPI 
> -Djavax.net.ssl.trustStoreType=Windows-ROOT 
> -Djavax.net.ssl.trustStore=NONE 
> -Djavax.net.ssl.keyStoreProvider=SunMSCAPI 
> -Djavax.net.ssl.keyStoreType=Windows-MY 
> -Djavax.net.ssl.keyStore=NONE
> 
> .. and this may not work at all..
> 

This will in fact not work at all.

- -chris
-BEGIN PGP SIGNATURE-
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
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=OGZ9
-END PGP SIGNATURE-

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

jk connector + http2

2017-05-25 Thread George Stanchev 
Hi,

Is a HTTP/2 call to Tomcat proxied via IIS / JK Connector (Tomcat Connector) 
expected to succeed?

George

Re: how to upgrade tomcat 8.5.x?

2017-05-25 Thread Mark Eggers 
Chris,

On 5/24/2017 2:09 PM, Christopher Schultz wrote:
> Mark,
> 
> On 5/24/17 11:50 AM, Mark Eggers wrote:
>> True blue-green deployments would take some additional work, but
>> that's not beyond the realm of possibility. I might spend some
>> time doing this with Elastic Beanstalk, since $work wishes to move
>> to AWS.
> This was a presentation that I *really* wanted to get someone to do for
> TomcatCon, but we couldn't find anyone to do it.
> 
> If you were able to research, prepare, and present this information at
> an upcoming conference, I believe it would be well-attended.
> 
> I would certainly be there, taking notes.
> 
> -chris

Sorry about that. What I have right now is really not ready for prime time.

Most of the challenges that I've run into involve infrastructure and
process, not Tomcat per se. A lot of these issues can be solved with
suitable tools / infrastructure design. For example, Netflix seems to
have a nice freely available set of tools and processes.

Unfortunately I am under $constraints to keep the environment as generic
as possible.

Once I get most of the kinks worked out, I'll be happy to share that
with the community.

. . . just my (constrained) two cents
/mde/



signature.asc
Description: OpenPGP digital signature

Re: server.xml password encryption instead of plain text

2017-05-25 Thread John Palmer 
I haven't tested it yet, but if you're on a Windows platform you MAY be
able to tell Tomcat to use the Windows Certificate Store (an thus NOT have
a password in server.xml) by adding something like this to the Java Options:
-Djavax.net.ssl.trustStoreProvider=SunMSCAPI
-Djavax.net.ssl.trustStoreType=Windows-ROOT
-Djavax.net.ssl.trustStore=NONE
-Djavax.net.ssl.keyStoreProvider=SunMSCAPI
-Djavax.net.ssl.keyStoreType=Windows-MY
-Djavax.net.ssl.keyStore=NONE

.. and this may not work at all..


On Thu, May 25, 2017 at 7:46 AM, Vidyadhar  wrote:

> On Thu, 25 May 2017 at 6:01 PM, Dhaval Jaiswal 
> wrote:
>
> > How can we avoid defining plain text password in server.xml​ or is there
> a
> > way i can encrypt the password in server.xml. ​
> >
> There are couple of examples on https://wiki.apache.org/
> tomcat/FAQ/Password
> --
> Regards,
> Vidyadhar
>

Re: server.xml password encryption instead of plain text

2017-05-25 Thread Vidyadhar 
On Thu, 25 May 2017 at 6:01 PM, Dhaval Jaiswal 
wrote:

> How can we avoid defining plain text password in server.xml​ or is there a
> way i can encrypt the password in server.xml. ​
>
There are couple of examples on https://wiki.apache.org/tomcat/FAQ/Password
-- 
Regards,
Vidyadhar

server.xml password encryption instead of plain text

2017-05-25 Thread Dhaval Jaiswal 
How can we avoid defining plain text password in server.xml​ or is there a
way i can encrypt the password in server.xml. ​