Re: apache front end
This is just a follow up to the message I posted yesterday. The slow connection speed between apache orion has been fixed It was a configuration problem on the network switch cheers tim Tim Courtney wrote: second attempt at sending this. sorry if anyone gets it twice. I'm curious as to anyone else's experience with putting the apache web server as a front end to orion. We basically followed the instructions from this guide http://www.orionsupport.com/articles/apachefrontend.html Although the site does work, the pages that are served from orion seem very very slow. Apache serves its html files very quickly. And when I access the app server without apache in front, orion runs great. The network guys are a bit puzzled and so am I. Is there anything I need to do that isn't in that guide (hosts files etc) I was just wondering if slow performance is normal when apache is put in front. thanks tim
apache front end
second attempt at sending this. sorry if anyone gets it twice. I'm curious as to anyone else's experience with putting the apache web server as a front end to orion. We basically followed the instructions from this guide http://www.orionsupport.com/articles/apachefrontend.html Although the site does work, the pages that are served from orion seem very very slow. Apache serves its html files very quickly. And when I access the app server without apache in front, orion runs great. The network guys are a bit puzzled and so am I. Is there anything I need to do that isn't in that guide (hosts files etc) I was just wondering if slow performance is normal when apache is put in front. thanks tim
Re: long sessions
hi people I posted the original thread on this just to clarify, there is just one app server, no clusters. the site works fine, no problems with sessions at all I was just wondering what would happen if the server had to hold on to these session objects for a much much longer period of time cheers Jens Schumann wrote: | I don't believe Orion (or other J2EE containers) distribute | changes to the ServletContext object to other VM/Cluster | members? According to Servlet Spec the ServletContext exists per VM only - and it states that this is even true in a distributed environment. For global data you should use EJB or DB instead. So no automatic sharing there. | To address these requirements, you'd need to persist the user's | access date state on a shared resource in your cluster. | Serialized UserState objects on a shared file system, or a DB table. Well - I am still not confident which works best. Anyone else any experiences in implementing a clustered global application context which allows sharing? In my current issue DB and file system aren't an option - so we currently run an experiment with http servlets listing to JMS (and write information in the app context and synch them via JMS). Depending on the app server you run into issues because of non clusterable JMS Server ... Recommendations? Jens
long sessions
I have kind of a general app server question: I have a servlet that puts a user object into session - HttpSession session = req.getSession(true); session.setAttribute(user, user); - We use this object to check if a visitor has logged into the web site or not My boss has asked me to increase the timeout of this session to 8 hours !!! Apart from the obvious security issue, I was wondering about the load on the server. Is holding too many session at once a common cause of server failure ? I can't really give details about the number of users, but assume there will be a few hundred at any one time. The hardware specs of the app server are about mid range. thanks
Re: Understanding paths
./ means current directory ie $ORIONHOME/config/ ../ means parent directory ie $ORIONHOME/ OrionDummy wrote: Yo, Could someone explain the ./a folder and ../a folder used in the config file. thanks dummy
user manager, principals shutdown
I need some help fixing something I broke. I stepped through the user manager tutorial on orionsupport ( http://uk.orionsupport.com/articles/usermanager.html ) and managed to put BASIC authentication on a certain directory on my site. But since then, it seems I deleted the information that allows the shutdown command java -jar admin.jar ormi://localhost admin x -shutdown this command looks up the username/password in the custom UserManager and always returns Security error: Invalid username/password for default (admin) I would prefer that the server admin the users in the custom UserManager be kept separate. is my principals.xml meant to have two different groups? can the server admin user remain in the xml config as it is when first running orion? user username=admin password=x deactivated=false my application.xml: user-manager class=com.orionsupport.security.MyUserManager / should there be two different entries here??? one for the BASIC authen, and one for server admin ? my web.xml: security-role role-nameadministrators/role-name /security-role login-config auth-methodBASIC/auth-method realm-nameadmin tool/realm-name /login-config security-constraint web-resource-collection url-pattern/admin//url-pattern /web-resource-collection auth-constraint role-nameadministrators/role-name /auth-constraint /security-constraint my principals.xml: (however the user is just ignored, and the MyUserManager is always used to validate both users) principals groups group name=administrators descriptionadmin tool users/description permission name=administration / permission name=com.evermind.server.AdministrationPermission / /group /groups users user username=admin password=admin deactivated=false descriptionThe default administrator/description group-membership group=administrators / /user /users /principals I hope all that made sense thanks tim
Re: A little off topic: HTTPS and cookies in Java
if its a java applet or application then have a look at http://www.innovation.ch/java/HTTPClient/ it has a cookie handler is very easy to use Joe Fair wrote: I'm about to start a project that I will need to access a web site that will send me cookies for security. I'm trying to automate the access, and I was wondering if anyone had used some software to handle the cookies comming in and going out? Thanks, Joe __ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail http://personal.mail.yahoo.com/
Re: request for info:ssl and client authentication with orion
I made a mistake in my last post (I was thinking about a different app server) inside the xml file for the web app add: needs-client-auth=true to the ssl-config tag instead of that client-auth=true attribute I sent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paolo Ramasso Sent: Monday, July 02, 2001 1:29 AM To: Orion-Interest Subject: request for info:ssl and client authentication with orion Hi guys i need some more info about ssl and oc4j (orion 1.5.0) here is the enviroment: client authentication by SSL 3 using x501 certificates, the application server (oc4j ) must validate and inspect the certificate info and extract the user information contained in it (common name to use it as a lookup key in LDAP directory search ). here are the question: does the oc4j (orion 1.5.0) container provide a toolset or specific APIs to validate the client digital certificate against a CA? does the oc4j (orion 1.5.0) container provide a toolset or specific APIs to extract client user information from the digital certificate sent by the client? thanks a lot in advance ciao Paolo
