JSP 2.1 support?

[Jonathan Eric Miller]

Does anyone know when JSP 2.1 support is expected? Will that be in Tomcat 6?

Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Possible to include JSP document (.jspx) fragments that aren't well formed?

[Jonathan Eric Miller]

Does anyone know if it's possible to include a .jspx fragment in another 
.jspx file? When I say .jspx fragment, I mean a file that is in XML format, 
but, may not be well formed.

For example, I want to do something like the following. Currently, I'm 
receiving an error message like the following. I think what it's doing is 
assuming that the included files are .jsps instead of .jspxs. Previously, I 
tried naming the included files as .jspx, but, then, when I tried to compile 
it with Jasper, it wouldn't compile because it said the documents needed to 
be well formed. I need to see if I can figure out how to tell the jasper Ant 
task to only compile the page.jspx instead of all files ending with .jspx.

Does anyone know if it's possible to include .jspx fragments? i.e. ones that 
aren't well formed, or, do they have to be well formed? If the later is 
true, using JSPXs makes includes a lot less useful...

The goal here is to use XML syntax throughout and still have flexibility in 
using includes.

J:\at\reservations\build.xml:204: org.apache.jasper.JasperException: 
file:J:/at/
reservations/build/header.jspxf(9,7)  must not be used in 
standard syntax

page.jspx
http://java.sun.com/JSP/Page"; version="2.0">

Hello, world!


header.jspxf

...
...
footer.jspxf


Jon 

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Way to specify SingleSignOn session timeout?

[Jonathan Eric Miller]

After looking at the code, it looks like the SSO session doesn't go away 
until all other sessions for the user have expired. So, as far as I can 
tell, the SSO session doesn't have it's own session timeout as far as I can 
tell.

Jon
- Original Message - 
From: "Jonathan Eric Miller" <[EMAIL PROTECTED]>
To: "Tomcat Users List" 
Sent: Wednesday, April 13, 2005 11:00 AM
Subject: Re: Way to specify SingleSignOn session timeout?


Thanks, but, I know how to set it for a given application. I want to know 
how to set it or at least find out what the default value is for the 
global session. I've noticed that there are two cookies. One is JSESSIONID 
which is for the application session. The other is JSESSIONSSO is is 
presumably for the global session.

Jon
- Original Message - 
From: "Peter Rossbach" <[EMAIL PROTECTED]>
To: "Tomcat Users List" 
Sent: Tuesday, April 12, 2005 10:56 PM
Subject: Re: Way to specify SingleSignOn session timeout?


Look inside conf/web.xml
 
   
   30
   
Peter
Jonathan Eric Miller schrieb:
I'm using the SingleSignOn valve with Tomcat 5.5.9. Does anyone know 
what the default session timeout is set to? Is there a way to specify 
this timeout?

I'm finding that sometimes my session will timeout within an 
application, but, it doesn't redisplay the login page. I want to try to 
set it up so that the session timeout period is the same for all my 
applications (and the same for the global one) and that whenever the 
session times out, the login page is displayed.

Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Way to specify SingleSignOn session timeout?

[Jonathan Eric Miller]

After looking at the code, it looks like the SSO session doesn't go away 
until all other sessions for the user have expired. So, as far as I can 
tell, the SSO session doesn't have it's own session timeout as far as I can 
tell.

Jon
- Original Message - 
From: "Jonathan Eric Miller" <[EMAIL PROTECTED]>
To: "Tomcat Users List" 
Sent: Wednesday, April 13, 2005 11:00 AM
Subject: Re: Way to specify SingleSignOn session timeout?


Thanks, but, I know how to set it for a given application. I want to know 
how to set it or at least find out what the default value is for the 
global session. I've noticed that there are two cookies. One is JSESSIONID 
which is for the application session. The other is JSESSIONSSO is is 
presumably for the global session.

Jon
- Original Message - 
From: "Peter Rossbach" <[EMAIL PROTECTED]>
To: "Tomcat Users List" 
Sent: Tuesday, April 12, 2005 10:56 PM
Subject: Re: Way to specify SingleSignOn session timeout?


Look inside conf/web.xml
 
   
   30
   
Peter
Jonathan Eric Miller schrieb:
I'm using the SingleSignOn valve with Tomcat 5.5.9. Does anyone know 
what the default session timeout is set to? Is there a way to specify 
this timeout?

I'm finding that sometimes my session will timeout within an 
application, but, it doesn't redisplay the login page. I want to try to 
set it up so that the session timeout period is the same for all my 
applications (and the same for the global one) and that whenever the 
session times out, the login page is displayed.

Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: JULI and logging

[Jonathan Eric Miller]

I haven't tried it yet, but, I noticed that catalina.sh/bat, looks for a jar 
file named tomcat-juli.jar and if it's present, it adds a 
"-Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager" to 
JAVA_OPTS. I think if you rename or remove that jar file, it will disable it 
(haven't tried it, just a guess).

What I did was change my common/classes/logging.properties file to the 
following. With this setup, everything goes into catalina.out. Note, I found 
that if JULI is enabled, it appears to ignore the 
java.util.logging.config.file property if you passed it in as a system 
property.

handlers = java.util.logging.ConsoleHandler
java.util.logging.ConsoleHandler.level = ALL
Jon
- Original Message - 
From: "Tran Hung-Phu-r50825" <[EMAIL PROTECTED]>
To: "'Tomcat Users List'" 
Sent: Thursday, April 14, 2005 11:59 AM
Subject: JULI and logging


For tomcat 5.5.9.  the default setting logs to both
Catalina.out and Catalina.-mm-dd.log files
My question are:
1) how to channel all startup messages to one file?
2) how to disable JULI (on by default)?
thanks

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Upgrading from tomcat 3.2.2 to 3.3.2 on Windows

[Jonathan Eric Miller]

Reading the changelog is a good place to start...
Jon
- Original Message - 
From: "Horvath, Ruth (Ruth) ** CTR **" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, April 13, 2005 12:16 PM
Subject: Upgrading from tomcat 3.2.2 to 3.3.2 on Windows


Sorry if this has been discussed before, but I couldn't find this topic
in the archives.
I'm also new to tomcat. I'm not a developer, but a member of our system
verification team.
I've been asked to evaluate what needs to be done to upgrade our current
version of tomcat.
Currently, our application is using tomcat 3.2.2 (I know - we need to
get into the 21st century) The management team is looking to upgrade to
3.3.2 (baby steps - this is for a point release - our next major release
we hope to convince them to at least use 5.0) Anyway, if I upgrade from
3.2.2 to 3.3.2, what is this buying me (improved performance - what) ?
What is the best way to test (or should I just verify I didn't break
anything that was previously working) ?
What is the best way to upgrade (without loosing my customized
xml/properties files) Is it good enough to look at what's currently in
my 3.2.2 bin/conf/lib directories and just copy in the 3.3.2 versions of
those files currently used ?
Also, my current 3.2.2 has jk_nt_service.exe and isapi_redirect.dll in
the bin directory, but I don't see these in the 3.3.2 bin.  Where would
I find these ? These look like they've been modified (according to the
release notes), so I'm guessing I need to find them.
Thank-you for your time and patience,

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Way to specify SingleSignOn session timeout?

[Jonathan Eric Miller]

Thanks, but, I know how to set it for a given application. I want to know 
how to set it or at least find out what the default value is for the global 
session. I've noticed that there are two cookies. One is JSESSIONID which is 
for the application session. The other is JSESSIONSSO is is presumably for 
the global session.

Jon
- Original Message - 
From: "Peter Rossbach" <[EMAIL PROTECTED]>
To: "Tomcat Users List" 
Sent: Tuesday, April 12, 2005 10:56 PM
Subject: Re: Way to specify SingleSignOn session timeout?


Look inside conf/web.xml
 

   
   30
   
Peter
Jonathan Eric Miller schrieb:
I'm using the SingleSignOn valve with Tomcat 5.5.9. Does anyone know what 
the default session timeout is set to? Is there a way to specify this 
timeout?

I'm finding that sometimes my session will timeout within an application, 
but, it doesn't redisplay the login page. I want to try to set it up so 
that the session timeout period is the same for all my applications (and 
the same for the global one) and that whenever the session times out, the 
login page is displayed.

Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Way to specify SingleSignOn session timeout?

[Jonathan Eric Miller]

I'm using the SingleSignOn valve with Tomcat 5.5.9. Does anyone know what 
the default session timeout is set to? Is there a way to specify this 
timeout?

I'm finding that sometimes my session will timeout within an application, 
but, it doesn't redisplay the login page. I want to try to set it up so that 
the session timeout period is the same for all my applications (and the same 
for the global one) and that whenever the session times out, the login page 
is displayed.

Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: logging to seperate log file per war file

[Jonathan Eric Miller]

My guess (but, I'm not a Tomcat developer so what do I know! ;-)) is that 
you can't do it for System.out.println(). However, I did notice that 
System.setOut() allows you to redirect where standard out goes. However, I'm 
guessing that that would be for the entire JVM? As of Tomcat 5.5.9 they 
fixed up java.util.logging so that it can have different log files if that's 
any consolation. I guess the best solution is to simply using the logging 
APIs throughout and not use System.out for anything.

Jon
- Original Message - 
From: "quentin.compson" <[EMAIL PROTECTED]>
To: 
Sent: Monday, April 11, 2005 10:12 PM
Subject: logging to seperate log file per war file


is this possible using context.xml or some other way?  im using log4j but 
some
output still goes to stdout (e.g System.out.println()).

thx
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Specifying logging.properties file via system property doesn't work?

[Jonathan Eric Miller]

Until Tomcat 5.5.9 I was specifying my java.util.logging.config.file using a 
system property set using CATALINA_OPTS like the following.

CATALINA_OPTS='-Djava.util.logging.config.file=/opt/jakarta-tomcat-dev/conf/logging.properties 
-Dorg.apache.commons.logging.Log=org.apache.commons.logging.impl.Jdk14Logger'After removing, the logging.properties file from common/classes (Call mecrazy, but, I like having all my apps log to a single file (that way I don'thave to check 5 files for errors)) I found that nothing would get logged(even though I specified the logging.properties file using the systemproperty).I was able to solve the problem by simply copying my logging.properties fileto common/classes. It seems like using the system property should work toothough...Jon

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Redirecting not https to https

[Jonathan Eric Miller]

Also, you'll need something like the following in your web.xml.



/*


CONFIDENTIAL


Jon
- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>; "Xeth Waxman" 
<[EMAIL PROTECTED]>
Sent: Friday, November 19, 2004 10:05 AM
Subject: RE: Redirecting not https to https


Hi,
That's the redirectPort connector attribute.  If an https request comes
into a non-secure connector, and that connector has a redirectPort, the
request will be redirected.
Yoav Shapira http://www.yoavshapira.com

-Original Message-
From: Xeth Waxman [mailto:[EMAIL PROTECTED]
Sent: Friday, November 19, 2004 10:56 AM
To: [EMAIL PROTECTED]
Subject: Redirecting not https to https
Greetings all.  I am moving one application I have from standard http
over to https.  I found this article
http://jakarta.apache.org/tomcat/tomcat-5.0-doc/ssl-howto.html
which I think will help me get it configured.  My question is, is
there a tag I need to add in the web.xml descriptor file to make sure
that http requests get redirectedf automatically into a https request?
Any assistance is greatly appreciated.
--
Xeth Waxman
[EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


This e-mail, including any attachments, is a confidential business 
communication, and may contain information that is confidential, 
proprietary and/or privileged.  This e-mail is intended only for the 
individual(s) to whom it is addressed, and may not be saved, copied, 
printed, disclosed or used by anyone else.  If you are not the(an) 
intended recipient, please immediately delete this e-mail from your 
computer system and notify the sender.  Thank you.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Disadvantages to using unpackWARs="false"?

[Jonathan Eric Miller]

OK, thanks for the info. Like you mentioned, I was thinking that 
redeployment would be easier with it set to false. I just wanted to make 
sure that I wouldn't be incurring a performance hit and the expense of not 
having to mess around with an extra directory. Thanks.

Jon
- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, November 18, 2004 11:08 AM
Subject: RE: Disadvantages to using unpackWARs="false"?


Hi,
Does anyone know if there are disadvantages to setting
unpackWARs="false"?
What I'm wondering is if it then has to uncompress the .war file
everytime
a
resource is accessed thus causing a performance hit?
We don't uncompress the file on every resource request ;)  That'd be
fairly awful design.  In fact, even with unpackWARs set to true, the WAR
may still be unpacked by Tomcat *in its work directory* for internal
use.  It just means it won't be unpacked in the webapps directory, and
therefore redeployment is easier.
Yoav Shapira http://www.yoavshapira.com

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Disadvantages to using unpackWARs="false"?

[Jonathan Eric Miller]

Does anyone know if there are disadvantages to setting unpackWARs="false"? 
What I'm wondering is if it then has to uncompress the .war file everytime a 
resource is accessed thus causing a performance hit?

Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Tomcat 5.5 nightly zip files?

[Jonathan Eric Miller]

Thanks!
Jon
- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, November 17, 2004 12:07 PM
Subject: RE: Tomcat 5.5 nightly zip files?


Hi,
Yeah.  They're built from CVS HEAD (there's very little purpose to
nightlies otherwise) so they're 5.5.
Yoav Shapira http://www.yoavshapira.com

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Tomcat 5.5 nightly zip files?

[Jonathan Eric Miller]

Thanks, I saw those, but, I thought they were for 5.0. So, they're for 5.5?
Jon
- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, November 17, 2004 10:40 AM
Subject: RE: Tomcat 5.5 nightly zip files?


Hi,
The Jakarta binaries download page even gives you the link at the bottom
;) http://cvs.apache.org/builds/jakarta-tomcat-5/nightly/.
Nightlies are always at your own risk.
Yoav Shapira http://www.yoavshapira.com

-Original Message-
From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
Sent: Wednesday, November 17, 2004 11:38 AM
To: Tomcat User List
Subject: Tomcat 5.5 nightly zip files?
Anyone know if there are nightly zip files for Tomcat 5.5?
Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


This e-mail, including any attachments, is a confidential business 
communication, and may contain information that is confidential, 
proprietary and/or privileged.  This e-mail is intended only for the 
individual(s) to whom it is addressed, and may not be saved, copied, 
printed, disclosed or used by anyone else.  If you are not the(an) 
intended recipient, please immediately delete this e-mail from your 
computer system and notify the sender.  Thank you.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Tomcat 5.5 nightly zip files?

[Jonathan Eric Miller]

Anyone know if there are nightly zip files for Tomcat 5.5?
Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Tomcat 5.5.4, Logging and the death of my friend localhost_log

[Jonathan Eric Miller]

Actually, I guess the default isn't that bad for UNIX/Linux anyway. In 
theory, if you are using J2SE 1.5 with the default log settings and you 
don't have Log4J installed, INFO level messages and above will get written 
to the console which gets redirected to catalina.out by catalina.sh. So, 
instead of having catalina.out, plus the other log, everything instead just 
goes into catalina.out. This is fine for my purposes, I just wanted to make 
sure that I wouldn't be missing important exceptions. As far as I know, if 
an unhandled exception occurs, it will get logged to catalina.out. If that's 
the case, then I'm happy.

The only thing that I need to figure out now, is what is supposed to be 
better about Log4J over standard JDK logging and whether I actually need 
whatever that is. I'm guessing maybe log rotation or something?

The other thing that I noticed is that a JDK logging.properties file seems 
to only allow you to specify a single FileHandler. I thought that it would 
let you assign different files to different loggers, but, as far as I can 
tell, this isn't possible (using the properties file anyway). Maybe this is 
one of the limitations?

Jon
- Original Message - 
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, November 11, 2004 2:02 PM
Subject: Re: Tomcat 5.5.4, Logging and the death of my friend localhost_log


On Thu, 11 Nov 2004 15:25:48 -, Allistair Crossley
<[EMAIL PROTECTED]> wrote:
Now, I know Logger has been removed from 5.5 series and that we are 
supposed to be using some kind of log4j / commons-logging stylee way but 
am fairly surprised that 5.5.4 did not come with a basic setup for this.
I tried to find a reasonable default, but there's none IMO as the
logger implementations that Sun provides with JREs 1.4 and 1.5 are
quite limited. The only solution would be to write a logger for java
logging, but I'm not a big fan of that.
--
x
Rémy Maucherat
Developer & Consultant
JBoss Group (Europe) SàRL
x
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Tomcat 5.5.4, Logging and the death of my friend localhost_log

[Jonathan Eric Miller]

My current theory is that if you don't have Log4J installed (commons-logging 
prefers Log4J over standard Java 1.4 logging) and you're using J2SE 1.5, the 
errors should go to the console and/or catalina.out by default because the 
default $JAVA_HOME/jre/lib/logging.properties file that comes with J2SE 1.5 
logs INFO messages and above to the console. As far as I know that is the 
same thing as System.out and System.out is redirected to catalina.out on 
UNIX/Linux as far as I know. On Windows, it just goes to the console. So if 
my theory is correct, it should work OK right out of the box, but, I'm just 
starting to test Tomcat 5.5 now and I don't have a lot of experience with 
configuring logging in general, so, I could be wrong.

BTW, does anyone know if there are any advantages to using Log4J over Java 
1.4 logging? Currently, I'm thinking of just using standard logging since 
it's there by default and doesn't require me to install another package, 
plus that fact that it's more standard since it's part of Java proper.

Jon
- Original Message - 
From: "Allistair Crossley" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, November 11, 2004 1:54 PM
Subject: RE: Tomcat 5.5.4, Logging and the death of my friend localhost_log


this is very true actually, i.e the old JSP stack trace errors and so on 
will not be directed into log4j-type logs .. that's not good at all i 
agree. And I know there is an exception occurring right now, but it's not 
being reported into the stdout.

where is all the runtime exception stack tracing supposed to go Yoav? that 
won't be picked up by log4j which is a good point

cheers!
-Original Message- 
From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
Sent: Thu 11/11/2004 16:50
To: Tomcat Users List
Cc:
Subject: Re: Tomcat 5.5.4, Logging and the death of my friend 
localhost_log


So, exceptions aren't logged by default? Does the new log4j method give 
you
full stack traces, or, is it just one line error messages? If I don't
configure log4j, does that mean that exceptions can be occurring and I 
won't
know about it? IMHO, a decent default logging configuration should be
provided by default. Not all of us are already experts in log4j...

Jon
- Original Message -
From: "Allistair Crossley" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, November 11, 2004 9:41 AM
Subject: RE: Tomcat 5.5.4, Logging and the death of my friend 
localhost_log

> Hi again,
>
> I have tried to setup a file appender now without success. When I 
> restart
> Tomcat it is clear that it does not wish to create the file I am
> specifying. I am wondering if Tomcat really is initialising the logging
> subsystem from placing log4j.properties in common/classes. I could be
> completely wrong and have missed something?
>
> log4j.rootLogger=debug, stdout, R
> log4j.appender.stdout=org.apache.log4j.ConsoleAppender
> log4j.appender.stdout.layout=org.apache.log4j.PatternLayout
> log4j.appender.stdout.layout.ConversionPattern=%5p [%t] (%F:%L) - %m%n
> log4j.appender.R=org.apache.log4j.RollingFileAppender
> log4j.appender.R.File=d:/jakarta-tomcat-5.5.4/logs/catalina.log
> log4j.appender.R.MaxFileSize=100KB
> log4j.appender.R.MaxBackupIndex=1
> log4j.appender.R.layout=org.apache.log4j.PatternLayout
> log4j.appender.R.layout.ConversionPattern=%p %t %c - %m%n
> log4j.logger.org.apache.catalina=DEBUG, R
>
> Cheers! A.
>
>> -Original Message-
>> From: Allistair Crossley
>> Sent: 11 November 2004 15:35
>> To: Tomcat Users List
>> Subject: RE: Tomcat 5.5.4, Logging and the death of my friend
>> localhost_log
>>
>>
>> Hey Yoav,
>>
>> tomcat/common/classes/log4j.properties as follows
>>
>> log4j.rootLogger=DEBUG, A1
>> log4j.appender.A1=org.apache.log4j.ConsoleAppender
>> log4j.appender.A1.layout=org.apache.log4j.PatternLayout
>> log4j.appender.A1.layout.ConversionPattern=%d [%t] %-5p %c - %m%n
>> log4j.logger.org.apache.catalina=DEBUG
>>
>> This was pretty much just copied from the link on the Tomcat
>> Logging FAQ except I changed the log level and also
>>
>> log4j.logger.org.apache
>>
>> to
>>
>> log4j.logger.org.apache.catalina
>>
>> I will try to add a file based appender...
>>
>> Allistair.
>>
>> > -Original Message-
>> > From: Shapira, Yoav [mailto:[EMAIL PROTECTED]
>> > Sent: 11 November 2004 15:31
>> > To: Tomcat Users List
>> > Subject: RE: Tomcat 5.5.4, Logging and the death of my friend
>> > localhost_log
>> >
>> >
>> >
>> > Hi,
>> >

Re: Auto-deploy not working in Tomcat 5.5.4 when .war file has a META-INF/context.xml?

[Jonathan Eric Miller]

Thanks, I appreciate you testing that. However, it simply doesn't work for 
me. I don't see how it could work for you and it doesn't work for me. I have 
a totally stock installation of Tomcat 5.5.4 and used the same exact file 
that I sent to you. I start Tomcat, copy the file, it gets deployed, update 
the war (originally, I was just recreating the file so that it had a new 
modified time, however, I tried adding an additional file to it and that 
didn't make a difference either), copy it again, and it doesn't do anything. 
If I do the same thing with the other file that doesn't have the 
context.xml, it works fine.

Also, I just tried it on Solaris. I installed both .war files, they both 
deployed, touched the one without a context.xml, it redeployed, touched the 
one with a context.xml, nothing happened.

If anyone else is willing to test it, I have the files at the following 
URLs.

http://parakeet.uchicago.edu/test-with-context.war
http://parakeet.uchicago.edu/test-without-context.war
Thanks,
Jon
- Original Message - 
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, November 11, 2004 1:17 PM
Subject: Re: Auto-deploy not working in Tomcat 5.5.4 when .war file has a 
META-INF/context.xml?


On Thu, 11 Nov 2004 11:09:58 -0600, Jonathan Eric Miller
<[EMAIL PROTECTED]> wrote:
I don't see it at least on the inital bug report page at
http://nagoya.apache.org/bugzilla/enter_bug.cgi?product=Tomcat%205
Maybe I need to commit the page first and there's another page...
I don't want to submit a report just yet, because I'm still in the 
process
of trying to figure out how the new logging works and I want to make sure
there isn't a error occurring that I'm not seeing because of this.

I tried it with Tomcat 5.0.28 and found that it was throwing an exception 
in
the console about the context path not being set. So, I added that path 
to
my context.xml and it then worked with 5.0.28, but, still won't work with
5.5.4, but, like I said, I want to see if I can figure out how to use the
new logging. My guess is that it's something similar and I'm just not 
seeing
the error message.
Don't use path or docBase (unless the webapp is not inside the host
appBase) in your context.xml file with Tomcat 5.5.
I tested it, and it works fine for me, so please don't open a bug report.
- start Tomcat
- put test-with-context.war in webapps
- it gets autodeployed
- use a zip tool to modify the war (I added an additional resource in it)
- it gets redeployed (the expanded folder is deleted, and then
recreated by expanding the war again)
--
x
Rémy Maucherat
Developer & Consultant
JBoss Group (Europe) SàRL
x
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Auto-deploy not working in Tomcat 5.5.4 when .war file has a META-INF/context.xml?

[Jonathan Eric Miller]

I don't see it at least on the inital bug report page at 
http://nagoya.apache.org/bugzilla/enter_bug.cgi?product=Tomcat%205

Maybe I need to commit the page first and there's another page...
I don't want to submit a report just yet, because I'm still in the process 
of trying to figure out how the new logging works and I want to make sure 
there isn't a error occurring that I'm not seeing because of this.

I tried it with Tomcat 5.0.28 and found that it was throwing an exception in 
the console about the context path not being set. So, I added that path to 
my context.xml and it then worked with 5.0.28, but, still won't work with 
5.5.4, but, like I said, I want to see if I can figure out how to use the 
new logging. My guess is that it's something similar and I'm just not seeing 
the error message.

Jon
- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, November 11, 2004 10:12 AM
Subject: RE: Auto-deploy not working in Tomcat 5.5.4 when .war file has a 
META-INF/context.xml?


Hi,
I don't see a way to post file attachments to the bug
database either...
Look again ;)  You can attach files of any type to any bugzilla issue.
You do need to be logged in to Bugzilla to do so.
Yoav

This e-mail, including any attachments, is a confidential business 
communication, and may contain information that is confidential, 
proprietary and/or privileged.  This e-mail is intended only for the 
individual(s) to whom it is addressed, and may not be saved, copied, 
printed, disclosed or used by anyone else.  If you are not the(an) 
intended recipient, please immediately delete this e-mail from your 
computer system and notify the sender.  Thank you.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Tomcat 5.5.4, Logging and the death of my friend localhost_log

[Jonathan Eric Miller]

So, exceptions aren't logged by default? Does the new log4j method give you 
full stack traces, or, is it just one line error messages? If I don't 
configure log4j, does that mean that exceptions can be occurring and I won't 
know about it? IMHO, a decent default logging configuration should be 
provided by default. Not all of us are already experts in log4j...

Jon
- Original Message - 
From: "Allistair Crossley" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, November 11, 2004 9:41 AM
Subject: RE: Tomcat 5.5.4, Logging and the death of my friend localhost_log


Hi again,
I have tried to setup a file appender now without success. When I restart 
Tomcat it is clear that it does not wish to create the file I am 
specifying. I am wondering if Tomcat really is initialising the logging 
subsystem from placing log4j.properties in common/classes. I could be 
completely wrong and have missed something?

log4j.rootLogger=debug, stdout, R
log4j.appender.stdout=org.apache.log4j.ConsoleAppender
log4j.appender.stdout.layout=org.apache.log4j.PatternLayout
log4j.appender.stdout.layout.ConversionPattern=%5p [%t] (%F:%L) - %m%n
log4j.appender.R=org.apache.log4j.RollingFileAppender
log4j.appender.R.File=d:/jakarta-tomcat-5.5.4/logs/catalina.log
log4j.appender.R.MaxFileSize=100KB
log4j.appender.R.MaxBackupIndex=1
log4j.appender.R.layout=org.apache.log4j.PatternLayout
log4j.appender.R.layout.ConversionPattern=%p %t %c - %m%n
log4j.logger.org.apache.catalina=DEBUG, R
Cheers! A.
-Original Message-
From: Allistair Crossley
Sent: 11 November 2004 15:35
To: Tomcat Users List
Subject: RE: Tomcat 5.5.4, Logging and the death of my friend
localhost_log
Hey Yoav,
tomcat/common/classes/log4j.properties as follows
log4j.rootLogger=DEBUG, A1
log4j.appender.A1=org.apache.log4j.ConsoleAppender
log4j.appender.A1.layout=org.apache.log4j.PatternLayout
log4j.appender.A1.layout.ConversionPattern=%d [%t] %-5p %c - %m%n
log4j.logger.org.apache.catalina=DEBUG
This was pretty much just copied from the link on the Tomcat
Logging FAQ except I changed the log level and also
log4j.logger.org.apache
to
log4j.logger.org.apache.catalina
I will try to add a file based appender...
Allistair.
> -Original Message-
> From: Shapira, Yoav [mailto:[EMAIL PROTECTED]
> Sent: 11 November 2004 15:31
> To: Tomcat Users List
> Subject: RE: Tomcat 5.5.4, Logging and the death of my friend
> localhost_log
>
>
>
> Hi,
>
> >I have tried what I believed to be how to do this, e.g I
> placed a basic
> >console appender log4j.properties file into
tomcat/common/classes and
> >popped log4j1.2.8 into the common/lib. No logging though.
>
> Where did you attach the console appender?  To the root
> logger or on of
> your own packaged?  Try creating an appender (probably a
FileAppender)
> and associated it with the org.apache logger.  If you want
DEBUG-level
> logging, set its level DEBUG.
>
> Enjoy Halo 2 ;)
>
> Yoav
>
>
>
> This e-mail, including any attachments, is a confidential
> business communication, and may contain information that is
> confidential, proprietary and/or privileged.  This e-mail is
> intended only for the individual(s) to whom it is addressed,
> and may not be saved, copied, printed, disclosed or used by
> anyone else.  If you are not the(an) intended recipient,
> please immediately delete this e-mail from your computer
> system and notify the sender.  Thank you.
>
>
>
-
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

---
QAS Ltd.
Developers of QuickAddress Software
http://www.qas.com";>www.qas.com
Registered in England: No 2582055
Registered in Australia: No 082 851 474
---

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Auto-deploy not working in Tomcat 5.5.4 when .war file has a META-INF/context.xml?

[Jonathan Eric Miller]

Here's the message without the file attachments since the original message 
was blocked as spam. I don't see a way to post file attachments to the bug 
database either...

Jon
- Original Message - 
From: "Jonathan Eric Miller" <[EMAIL PROTECTED]>
To: "Remy Maucherat" <[EMAIL PROTECTED]>; "Tomcat Users List" 
<[EMAIL PROTECTED]>
Sent: Thursday, November 11, 2004 9:54 AM
Subject: Re: Auto-deploy not working in Tomcat 5.5.4 when .war file has a 
META-INF/context.xml?


I created a simplified test case and tested it with a default install of
Tomcat 5.5.4 and verified that it doesn't work at least in the case when 
you
have a context.xml with nothing more than a  in it. Please see 
the
attached .war files. Note, I rebuilt the .war files each time before I
copied them to the webapps directory so that the timestamp was different. 
It
worked fine everytime with the test-without-context.war and only installed
the app the first time with the other one.

Should I submit a bug report?
Jon
- Original Message - 
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, November 10, 2004 5:01 PM
Subject: Re: Auto-deploy not working in Tomcat 5.5.4 when .war file has a
META-INF/context.xml?


On Wed, 10 Nov 2004 16:17:17 -0600, Jonathan Eric Miller
<[EMAIL PROTECTED]> wrote:


And what does "reloadable" do according to the documentation ? Is is
useful for what you want to do ?
No. Instead, it is exclusively used for monitoring classes.
I am almost certain the case where a war is updated works ok. If you
really think it doesn't work, please submit a test war.
--
x
Rémy Maucherat
Developer & Consultant
JBoss Group (Europe) SàRL
x
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Auto-deploy not working in Tomcat 5.5.4 when .war file has a META-INF/context.xml?

[Jonathan Eric Miller]

I have an application which has a META-INF/context.xml file. I'm attempting 
to have the file auto-redeploy itself everytime I copy an updated the 
updated .war file to the webapps directory. This worked fine in Tomcat 
5.0.25.

In Tomcat 5.5.4, it will deploy itself the first time through, but, when I 
update the file, it doesn't auto-redeploy itself. However, I found that if I 
remove the context.xml file from the META-INF directory. i.e. deploy the 
.war file without a context.xml file, it reloads itself correctly.

Has anyone else ran into this problem?
I'm using the following in my context.xml file. Note, this application 
doesn't technically need the file, but, I have other applications that do, 
so, I need to get it working.



Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: TC 5.5 - 4 issues (jasper, ROOT, jndi, logging)

[Jonathan Eric Miller]

I ran into the same issue with DBCP and JNDI.
Jon
- Original Message - 
From: "Allistair Crossley" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, September 02, 2004 8:32 AM
Subject: TC 5.5 - 4 issues (jasper, ROOT, jndi, logging)


Hi Guys
Decided to give TC 5.5 / JDK 5 B2 a whirl today with our web application 
on my local machine and am having some teething troubles;

1/ Jasper has an issue with JSP page imports where the imported packages 
are not used. This is throwing an exception.

2/ Had the error mentioned earlier about ROOT child '' cannot be deployed 
because it was shared by another context. I just removed the ROOT folder 
from webapps to get rid of that problem.

3/ None of my JNDI resources configured in 
tomcat.home/conf/Catalina/localhost/mywebapp.xml are being recognised. 
This was copied direct from my TC 5.0.25 installation ... should this 
still work? Database JAR is in common/lib. Getting lots of

Cannot create JDBC driver of class '' for connect URL 'null' errors and 
also in STDOUT

WARNING: Error during context /mywebapp restart
java.lang.NullPointerException
at 
org.apache.catalina.startup.HostConfig.checkResources(HostConfig.java:1031)
at org.apache.catalina.startup.HostConfig.check(HostConfig.java:1123)
at 
org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:292)
at 
org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119)
at 
org.apache.catalina.core.StandardHost.backgroundProcess(StandardHost.java:729)
at 
org.apache.catalina.core.ContainerBase$ContainerBackgroundProcessor.processChildren(ContainerBase.java:1511)
at 
org.apache.catalina.core.ContainerBase$ContainerBackgroundProcessor.processChildren(ContainerBase.java:1520)
at 
org.apache.catalina.core.ContainerBase$ContainerBackgroundProcessor.run(ContainerBase.java:1500)
at java.lang.Thread.run(Thread.java:595)

4/ The logging suggestion at 
http://jakarta.apache.org/tomcat/tomcat-5.5-doc/config/logger.html did not 
work for me. I have log4j.properties in my webapp classes ... does this 
override any other log4j config like in this example?

Cheers for any insight into the JNDI problem :)
ADC.

---
QAS Ltd.
Developers of QuickAddress Software
http://www.qas.com";>www.qas.com
Registered in England: No 2582055
Registered in Australia: No 082 851 474
---

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re:

[Jonathan Eric Miller]

I tried it without the debug attribute and the result is the same. Actually, 
the server.xml file that comes with Tomcat 5.5 has a lot of debug attributes 
in it.

One thing that I've been wondering about is if you guys have considered 
creating XML schema files for each of the configuration files? I'm currently 
using the XML validation for the Web application files which (while slow) is 
nice if you're making a lot of changes to those files. It would be nice if 
the same thing existed for the Tomcat specific configuration files as well.

Jon
- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, September 01, 2004 2:16 PM
Subject: RE: 


Hi,
Try removing the "debug" attribute, as that's not in the standard
Context in 5.5.0 (Loggers are gone).
In general, if you copy and paste configuration files across release
versions, be careful.
Yoav Shapira
Millennium Research Informatics

-Original Message-
From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 01, 2004 2:37 PM
To: Tomcat Users List
Subject: Re: 
Nope. The same server.xml works fine in Tomcat 5.0.25.
Jon
- Original Message -
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, September 01, 2004 1:29 PM
Subject: RE: 

Hi,
Is there another context configured for the "" path?
Yoav Shapira
Millennium Research Informatics

-Original Message-
From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 01, 2004 2:20 PM
To: Tomcat User List
Subject: 
In Tomcat 4.0 and 5.0, I had the following in my server.xml file.

However, if I try to use this in Tomcat 5.5, I receive the following
error
in catalina.out. Does anyone know if I need to change something to
get
it
to
work with Tomcat 5.5, or, is this a bug?
Also, is ROOT a special case? I don't see where the ROOT directory is
being
assigned the the root path in any of the configuration files.
Sep 1, 2004 11:31:36 AM org.apache.catalina.startup.HostConfig
deployDirectory
SEVERE: Error deploying web application directory ROOT
java.lang.IllegalArgumentException: addChild:  Child name '' is not
unique
   at
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase
.j
ava:
749)
   at
org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:73
9)
   at
org.apache.catalina.core.StandardHost.addChild(StandardHost.java:525)
   at
org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.jav
a:
880)
   at
org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.j
av
a:84
3)
   at
org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:474
)
   at
org.apache.catalina.startup.HostConfig.start(HostConfig.java:1063)
   at
org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java
:3
10)
   at
org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(Lifecycl
eS
uppo
rt.java:119)
   at
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1011)
   at
org.apache.catalina.core.StandardHost.start(StandardHost.java:718)
   at
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1003)
   at
org.apache.catalina.core.StandardEngine.start(StandardEngine.java:420
)
   at
org.apache.catalina.core.StandardService.start(StandardService.java:4
50
)
   at
org.apache.catalina.core.StandardServer.start(StandardServer.java:196
7)
   at
org.apache.catalina.startup.Catalina.start(Catalina.java:545)
   at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
Method)
   at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.
ja
va:3
9)
   at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
so
rImp
l.java:25)
   at java.lang.reflect.Method.invoke(Method.java:582)
   at
org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:271)
   at
org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:409)
Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


This e-mail, including any attachments, is a confidential business
communication, and may contain information that is confidential,
proprietary and/or privileged.  This e-mail is intended only for the
individual(s) to whom it is addressed, and may not be saved, copied,
printed, disclosed or used by anyone else.  If you are not the(an)
intended recipient, please immediately delete this e-mail from your
computer system and notify the sender.  Thank you.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: How do I make my servlet the welcome page

[Jonathan Eric Miller]

The problem that I found with doing it this way is that I had a 
security-constraint on my application and it wasn't being enforced when I 
tried to do that. So, I created an index page that redirects to the 
application.

Jon
- Original Message - 
From: "QM" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, September 01, 2004 2:26 PM
Subject: Re: How do I make my servlet the welcome page


On Wed, Sep 01, 2004 at 02:16:49PM -0500, Brad Taylor wrote:
: I am running tomcat 5.0.9.  I currently enter a url like
: http://localhost:8080/myapp.  This causes a "redirect" page to be
: briefly displayed followed by my servlet getting invoked and serving the
: "real" page.  I would like to bypass this redirect, but can not seem to
: get it to work.  I have tried changing my welcome-file-list to mypage.do
: and I have tried creating a servlet-mapping specifying index.html.
Change your web.xml to specify the new 2.4 schema , aka:

   xmlns="http://java.sun.com/xml/ns/j2ee";
   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
   xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee 
http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd";
   version="2.4"

Then add your servlet's mapping to .
[for the archives: using servlets as welcome files is supported as of
servlet spec 2.4, which Tomcat 5.x implements]
-QM
--
software  -- http://www.brandxdev.net
tech news -- http://www.RoarNetworX.com
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: symbolic links in webapps

[Jonathan Eric Miller]

If I remember correctly, symlinks are disabled by default. I think you can 
turn them on using an attribute value for an element in server.xml.

Jon
- Original Message - 
From: "Philippe Mathieu" <[EMAIL PROTECTED]>
To: "Tomcat User List" <[EMAIL PROTECTED]>
Sent: Wednesday, September 01, 2004 1:57 PM
Subject: symbolic links in webapps


Hi,
Because i want to share several JSP pages between two webapps, i am using 
symbolic links in one of them, pointing to the other.

Unfortunately it seems that it doesn't work :-(
I use Tomcat 5 under linux Debian
Does anyone have a solution and/or an explanation ?
Thanks
--
Phil
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re:

[Jonathan Eric Miller]

Nope. The same server.xml works fine in Tomcat 5.0.25.
Jon
- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, September 01, 2004 1:29 PM
Subject: RE: 


Hi,
Is there another context configured for the "" path?
Yoav Shapira
Millennium Research Informatics

-Original Message-
From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 01, 2004 2:20 PM
To: Tomcat User List
Subject: 
In Tomcat 4.0 and 5.0, I had the following in my server.xml file.

However, if I try to use this in Tomcat 5.5, I receive the following
error
in catalina.out. Does anyone know if I need to change something to get
it
to
work with Tomcat 5.5, or, is this a bug?
Also, is ROOT a special case? I don't see where the ROOT directory is
being
assigned the the root path in any of the configuration files.
Sep 1, 2004 11:31:36 AM org.apache.catalina.startup.HostConfig
deployDirectory
SEVERE: Error deploying web application directory ROOT
java.lang.IllegalArgumentException: addChild:  Child name '' is not
unique
   at
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.j
ava:
749)
   at
org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:739)
   at
org.apache.catalina.core.StandardHost.addChild(StandardHost.java:525)
   at
org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.java:
880)
   at
org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.jav
a:84
3)
   at
org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:474)
   at
org.apache.catalina.startup.HostConfig.start(HostConfig.java:1063)
   at
org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:3
10)
   at
org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleS
uppo
rt.java:119)
   at
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1011)
   at
org.apache.catalina.core.StandardHost.start(StandardHost.java:718)
   at
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1003)
   at
org.apache.catalina.core.StandardEngine.start(StandardEngine.java:420)
   at
org.apache.catalina.core.StandardService.start(StandardService.java:450
)
   at
org.apache.catalina.core.StandardServer.start(StandardServer.java:1967)
   at
org.apache.catalina.startup.Catalina.start(Catalina.java:545)
   at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
   at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.ja
va:3
9)
   at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccesso
rImp
l.java:25)
   at java.lang.reflect.Method.invoke(Method.java:582)
   at
org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:271)
   at
org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:409)
Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


This e-mail, including any attachments, is a confidential business 
communication, and may contain information that is confidential, 
proprietary and/or privileged.  This e-mail is intended only for the 
individual(s) to whom it is addressed, and may not be saved, copied, 
printed, disclosed or used by anyone else.  If you are not the(an) 
intended recipient, please immediately delete this e-mail from your 
computer system and notify the sender.  Thank you.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: How to configure logs in Tomcat 5.5?

[Jonathan Eric Miller]

Thanks for the info. Does this mean that if I don't configure the logging 
and an exception occurs in Tomcat, or, in an application that it will not be 
logged at all? Or, does it go to catalina.out by default? If it goes to 
catalina.out, that's fine, I just want to make sure that while I'm 
developing applications and/or configuring the server, if an exception 
occurs (either in Tomcat itself or in an application that I write), it gets 
logged to a file so that I can diagnose the problem. I'm surprised that even 
the access logs are turned off by default.

Jon
- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, September 01, 2004 11:50 AM
Subject: RE: How to configure logs in Tomcat 5.5?


Hi,
Loggers are gone: your server.xml  element is invalid and should
be removed.
For configuring commons-logging with Tomcat, see
http://jakarta.apache.org/tomcat/faq/misc.html#commonsLoggingLog4j.  If
you're unfamiliar with commons-logging or want to learn more about it,
check out the user guide at
http://jakarta.apache.org/commons/logging/guide.html.
Note that for people who don't care much about logging,
System.out/System.err still behave as before, and the ServletContext#log
method works without any special configuration.
Yoav Shapira
Millennium Research Informatics

-Original Message-
From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 01, 2004 12:46 PM
To: Tomcat User List
Subject: How to configure logs in Tomcat 5.5?
I noticed in the change log that some changes have been made to the way
things are logged in Tomcat 5.5. I was using something like the
following
in
my server.xml previously. However, this no longer works.

I'm wondering how to configure the new "commons-logging?" The default
server.xml doesn't seem to have anything in it for this. Is configuring
this
no longer neccessary? Does it just log to catalina.out now or
something?
Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


This e-mail, including any attachments, is a confidential business 
communication, and may contain information that is confidential, 
proprietary and/or privileged.  This e-mail is intended only for the 
individual(s) to whom it is addressed, and may not be saved, copied, 
printed, disclosed or used by anyone else.  If you are not the(an) 
intended recipient, please immediately delete this e-mail from your 
computer system and notify the sender.  Thank you.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

tomcat-user@jakarta.apache.org

[Jonathan Eric Miller]

In Tomcat 4.0 and 5.0, I had the following in my server.xml file.

However, if I try to use this in Tomcat 5.5, I receive the following error 
in catalina.out. Does anyone know if I need to change something to get it to 
work with Tomcat 5.5, or, is this a bug?

Also, is ROOT a special case? I don't see where the ROOT directory is being 
assigned the the root path in any of the configuration files.

Sep 1, 2004 11:31:36 AM org.apache.catalina.startup.HostConfig 
deployDirectory
SEVERE: Error deploying web application directory ROOT
java.lang.IllegalArgumentException: addChild:  Child name '' is not unique
   at 
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:749)
   at 
org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:739)
   at 
org.apache.catalina.core.StandardHost.addChild(StandardHost.java:525)
   at 
org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.java:880)
   at 
org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:843)
   at 
org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:474)
   at 
org.apache.catalina.startup.HostConfig.start(HostConfig.java:1063)
   at 
org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:310)
   at 
org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119)
   at 
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1011)
   at 
org.apache.catalina.core.StandardHost.start(StandardHost.java:718)
   at 
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1003)
   at 
org.apache.catalina.core.StandardEngine.start(StandardEngine.java:420)
   at 
org.apache.catalina.core.StandardService.start(StandardService.java:450)
   at 
org.apache.catalina.core.StandardServer.start(StandardServer.java:1967)
   at org.apache.catalina.startup.Catalina.start(Catalina.java:545)
   at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
   at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
   at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
   at java.lang.reflect.Method.invoke(Method.java:582)
   at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:271)
   at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:409)

Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

How to configure logs in Tomcat 5.5?

[Jonathan Eric Miller]

I noticed in the change log that some changes have been made to the way 
things are logged in Tomcat 5.5. I was using something like the following in 
my server.xml previously. However, this no longer works.


I'm wondering how to configure the new "commons-logging?" The default 
server.xml doesn't seem to have anything in it for this. Is configuring this 
no longer neccessary? Does it just log to catalina.out now or something?

Jon
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Why don't updated unpacked WAR files get reloaded automatically?

[Jonathan Eric Miller]

Thanks, but, since, I have "unpackWARs" set to false, I have no unpacked
directory, so, I don't see why that would make a difference.

Jon

- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, May 27, 2004 12:58 PM
Subject: RE: Why don't updated unpacked WAR files get reloaded
automatically?


>
> Hi,
> Because you may have changed the contents of the unpacked directory, and
> a redeployment of the WAR (which includes unpacking it) would overwrite
> your changes.  We'd rather be extra careful and require the user to
> explicitly redeploy the app via the manager (or whatever mechanism
> he/she wants to use).
>
> Yoav Shapira
> Millennium Research Informatics
>
>
> >-Original Message-
> >From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
> >Sent: Thursday, May 27, 2004 1:20 PM
> >To: Tomcat User List
> >Subject: Why don't updated unpacked WAR files get reloaded
> automatically?
> >
> >I noticed that if you have "unpackWARs" set to false and you update a
> WAR
> >file, it doesn't reload it.
> >
> >According to the Tomcat documentation at the following link, it only
> does
> >it
> >for unpacked WAR files. Why?
> >
> >http://jakarta.apache.org/tomcat/tomcat-5.0-
> >doc/config/host.html#Automatic%20Application%20Deployment
> >
> >Jon
> >
> >
> >-
> >To unsubscribe, e-mail: [EMAIL PROTECTED]
> >For additional commands, e-mail: [EMAIL PROTECTED]
>
>
>
>
> This e-mail, including any attachments, is a confidential business
communication, and may contain information that is confidential, proprietary
and/or privileged.  This e-mail is intended only for the individual(s) to
whom it is addressed, and may not be saved, copied, printed, disclosed or
used by anyone else.  If you are not the(an) intended recipient, please
immediately delete this e-mail from your computer system and notify the
sender.  Thank you.
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Why don't updated unpacked WAR files get reloaded automatically?

[Jonathan Eric Miller]

I noticed that if you have "unpackWARs" set to false and you update a WAR
file, it doesn't reload it.

According to the Tomcat documentation at the following link, it only does it
for unpacked WAR files. Why?

http://jakarta.apache.org/tomcat/tomcat-5.0-doc/config/host.html#Automatic%20Application%20Deployment

Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

question/problem

[Jonathan Eric Miller]

I am trying to configure my application so that everything has to be
encrypted. I was able to do that by using the security constraint at the
bottom of this message. I've had this working for awhile without a problem.
However, now, I want to add an additional restriction. I want to make it so
that users can't access .jsp files directly. So, I added an additional
security-constraint. However, it doesn't work. The only way I can get the
.jsp constraint to work is if I comment out the other one. I've tried
changing the order of the constraints and that doesn't make a difference.

What am I doing wrong? Why doesn't it merge the two constraints together? It
appears to just pick the most general case and go with that one.



x
*.jsp






y
/*


CONFIDENTIAL



Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Session Timeout and "Direct Reference to login page"

[Jonathan Eric Miller]

I found out about a few other functions that make it bit easier. I think I
have it working using the following,

public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException, ServletException {
if(((HttpServletRequest)request).getRequestedSessionId() != null &&
((HttpServletRequest)request).isRequestedSessionIdValid() == false) {
RequestDispatcher rd =
request.getRequestDispatcher("/WEB-INF/sessionexpired.jsp");
rd.forward(request, response);
}
else {
chain.doFilter(request, response);
}
}

The strange thing is that this page seems to only intermittently be
displayed. i.e. it is catching the case where the session expires, but, in
some cases since I'm using container based security, it is going back to the
login page. Sometimes it goes to this page first, and then brings up the
login page. Other times, it just goes straight to the login page. I need to
look into it further. I have SingleSignOn enabled, so, I'm not sure if that
might have something to do with it. I need to do more testing. In theory, I
think it should go to the login page each time. So, I'm thinking of putting
a check in my login page similar to the above that just shows optional text
stating that the session has expired.

Another thing that I'm wondering is if it is possible to use a servlet as
the login page for Tomcat rather than a .jsp file.

Jon

- Original Message - 
From: "Veniamin Fichin" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Friday, May 21, 2004 7:15 AM
Subject: Re: Session Timeout and "Direct Reference to login page"


> Jonathan Eric Miller wrote:
>
> > Yeah, that seems like it would work. I'm wondering if I could maybe use
a
> > filter by itself though and not use the listener and do something like
the
> > following.
> >
> > 1. Intercept all requests with a filter.
> > 2. Get the HttpSession out of the request. Get the session ID by calling
> > HttpSession.getId();
> > 3. Get the cookie array and see if there is a cookie named "jsessionid."
If
> > there is, compare the two session IDs. If they are different forward to
> > sessionexpired.jsp to display error page. Otherwise, continue as normal.
>
> I've just tried this way, it works. Look at example .java file in
> attach for example, it's Filter implementation. Thanks for the
> suggestion, it's very useful.
>
>



> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

SingleSignOn session timeout question

[Jonathan Eric Miller]

I'm using "org.apache.catalina.authenticator.SingleSignOn" for single sign
on with container-based security.

I have a question about session time outs. When the session for a given
application times out, if a user attempts to access the application after
the session has timed out, the user should have to login again, correct?

According to the documentation, this is the case. However, I'm finding that
it intermittently lets you continue before going to the login page. i.e. the
user can still access the pages, but, the session is cleared.

Has anyone else notices this? I'm wondering if this is a bug.

Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Session Timeout and "Direct Reference to login page"

[Jonathan Eric Miller]

Thanks for the suggestion. The reason that I can't do it that way (as far as
I know) is because I'm using container-based security. I'm not handling the
submission of the login form directly.

Before I switched to using container-based security, I was doing it exactly
as you described.

Jon

- Original Message - 
From: "Ben Souther" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, May 20, 2004 12:26 PM
Subject: Re: Session Timeout and "Direct Reference to login page"


> What was wrong with the first suggestion?
>
> 1.) When your user logs in, throw an object in their session.
> 2.) In each servlet/jsp (or, better, in a filter), test for the existence
of
> that object and forward back to the login if it is null.
>
> Seems pretty straight forward to me.
>
>
>
>
>
> On Thursday 20 May 2004 12:51 pm, Jonathan Eric Miller wrote:
> > Yeah, that seems like it would work. I'm wondering if I could maybe use
a
> > filter by itself though and not use the listener and do something like
the
> > following.
> >
> > 1. Intercept all requests with a filter.
> > 2. Get the HttpSession out of the request. Get the session ID by calling
> > HttpSession.getId();
> > 3. Get the cookie array and see if there is a cookie named "jsessionid."
If
> > there is, compare the two session IDs. If they are different forward to
> > sessionexpired.jsp to display error page. Otherwise, continue as normal.
> >
> > This assumes that the session ID changes everytime it expires. As far as
I
> > know, that is the case.
> >
> > I would also have to figure out how to get the jsessionid if it is in
the
> > URL rather than in a cookie.
> >
> > I would prefer to do it that way if I can for the sake of simplicity. I
> > want to avoid having a Hashtable that grows indefinitely if possible.
> >
> > Does it seem like this work, or, am I missing something?
> >
> > I'm wondering if this wouldn't work if I didn't have single sign-on
> > enabled. i.e. the login page would get displayed at session expiration.
I'm
> > not sure if the login page does only forwards, or if it does a redirect.
> > I'm thinking the redirect might make the above logic not work since the
> > session ID in the cookie would get updated first by the login page.
Note,
> > the filter runs after the login page.
> >
> > It seems like there should be a generic way to handle this kind of thing
> > that is well understood and known to work.
> >
> > Jon
> >
> > - Original Message -
> > From: "Veniamin Fichin" <[EMAIL PROTECTED]>
> > To: "Tomcat Users List" <[EMAIL PROTECTED]>
> > Sent: Thursday, May 20, 2004 2:59 AM
> > Subject: Re: Session Timeout and "Direct Reference to login page"
> >
> > > Jonathan Eric Miller wrote:
> > > > Thanks. I think option #1 is what I'm looking for. What I don't
> >
> > understand
> >
> > > > is what I need to do with the session listener though?
> > > >
> > > > I don't understand how to determine whether the new session is truly
> >
> > new, or
> >
> > > > if it's a new session because a previous session timed out. Could I
use
> >
> > a
> >
> > > > filter and check the incoming session ID and if the session ID isn't
in
> >
> > the
> >
> > > > list of session IDs that the server knows about, assume that it's an
> >
> > expired
> >
> > > > session?
> > >
> > > Yes, this may be the right solution. Store a hash in a singleton
> > > class and fill it with session ids that has expired (add a new hash
pair
> > > in every invocation of sessionDestroyed()). And at every request check
> >
> > that:
> > > 0) HttpSession.isNew()==true .
> > > 1) HttpServletRequest.getCookies() array contains an entry that
matches
> > > one of your hash pairs.
> > > That way you may determine if that session is truly new or an
> > > expired one. It's just a guess.
> > >
> > >
> > > -
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
>
> -- 
> Ben Souther
> F.W. Davison & Company, Inc.
>
>
> This e-mail message, and any accompanying documents, is for the sole use
of
> the intended recipient(s) and may contain confidential and privileged
> information.  Any unauthorized review, use, disclosure, distribution or
> copying is prohibited.  If you are not the intended recipient, please
> contact our office by email or by telephone at (508) 747-7261 and
> immediately destroy all copies of the original message.
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Session Timeout and "Direct Reference to login page"

[Jonathan Eric Miller]

Yeah, that seems like it would work. I'm wondering if I could maybe use a
filter by itself though and not use the listener and do something like the
following.

1. Intercept all requests with a filter.
2. Get the HttpSession out of the request. Get the session ID by calling
HttpSession.getId();
3. Get the cookie array and see if there is a cookie named "jsessionid." If
there is, compare the two session IDs. If they are different forward to
sessionexpired.jsp to display error page. Otherwise, continue as normal.

This assumes that the session ID changes everytime it expires. As far as I
know, that is the case.

I would also have to figure out how to get the jsessionid if it is in the
URL rather than in a cookie.

I would prefer to do it that way if I can for the sake of simplicity. I want
to avoid having a Hashtable that grows indefinitely if possible.

Does it seem like this work, or, am I missing something?

I'm wondering if this wouldn't work if I didn't have single sign-on enabled.
i.e. the login page would get displayed at session expiration. I'm not sure
if the login page does only forwards, or if it does a redirect. I'm thinking
the redirect might make the above logic not work since the session ID in the
cookie would get updated first by the login page. Note, the filter runs
after the login page.

It seems like there should be a generic way to handle this kind of thing
that is well understood and known to work.

Jon

- Original Message - 
From: "Veniamin Fichin" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, May 20, 2004 2:59 AM
Subject: Re: Session Timeout and "Direct Reference to login page"


> Jonathan Eric Miller wrote:
>
> > Thanks. I think option #1 is what I'm looking for. What I don't
understand
> > is what I need to do with the session listener though?
> >
> > I don't understand how to determine whether the new session is truly
new, or
> > if it's a new session because a previous session timed out. Could I use
a
> > filter and check the incoming session ID and if the session ID isn't in
the
> > list of session IDs that the server knows about, assume that it's an
expired
> > session?
>
> Yes, this may be the right solution. Store a hash in a singleton
> class and fill it with session ids that has expired (add a new hash pair
> in every invocation of sessionDestroyed()). And at every request check
that:
> 0) HttpSession.isNew()==true .
> 1) HttpServletRequest.getCookies() array contains an entry that matches
> one of your hash pairs.
> That way you may determine if that session is truly new or an
> expired one. It's just a guess.
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Session Timeout and "Direct Reference to login page"

[Jonathan Eric Miller]

Renato,

Did you ever receive a response to this? I'm having the same problem.

My current problem is slightly more complicated though. I have my
application protected using container based security, but, I also have
single-sign on enabled. So, the user doesn't get redirected back to the
login page when the session times out.

Previously, I used to make it so that if the session had expired (detected
by my main JavaBean not being present (I was never able to figure out how to
determine whether it was a new session or one that had expired and hence
couldn't display an error message in the later case)), I'd just redirect the
user back to the first page of my application. However, now, I'm using
JavaServer Faces. As a result, I'm not the one implementing the controller
part of my application, JSF is.

Someone mentioned something about using HttpSessionListener. I don't see how
that can work because you don't have a handle to the request and response.

Is there a standard way of handling session timeouts?

All I want to do is detect when a session has timed out for a user and
display a page stating such when the user makes a request after the session
has timed out. It seems like this should be a straight forward thing to do.
Am I missing something?

Jon

- Original Message - 
From: "Renato Romano" <[EMAIL PROTECTED]>
To: "'Tomcat Users List'" <[EMAIL PROTECTED]>
Sent: Tuesday, March 02, 2004 3:31 AM
Subject: Session Timeout and "Direct Reference to login page"


> I have two problems i'm facing with every web application using
> declarative security model, that is:
>
> 1) Detect that the user session has expired, and forward him to an
> appropriate login page; Usually we build webapp in which the home page
> shows a login form; to handle this, I use to make a "index.jsp" page
> which redirects the user to a protected page; this is handled by the
> container which then shows my login page (as specified in web.xml) that
> is my HOME page. With this approach however, I can't detect session
> expirying, so if the session times out, the user is presented with the
> HOME page (the login
> page) without further notice or advice!! I tried to solve this with a
> filter, but it seems the container (Tomcat 4.1.127 inside Jboss)
> forwards to the login page without calling the filter.
>
> 2) If the user waits too long reading the home/login page, the sessions
> times out, Tomcat looses the reference to the previously requested
> protected page, and on login shows an "Invalid Direct refernce to form
> login page" error. Again a filter seem not to be useful in this case,
> since Tomcat commits the error without calling the filter!!
>
> Any help or hint on this topic is very, very appreciated
>
> Renato
>
>
> 
> Renato Romano
> Sistemi e Telematica S.p.A.
> Calata Grazie - Vial Al Molo Giano
> 16127 - GENOVA
>
> e-mail: [EMAIL PROTECTED]
> Tel.:   010 2712603
> _
>
>
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Session Timeout and "Direct Reference to login page"

[Jonathan Eric Miller]

It's too bad there isn't a  element that you can put
in web.xml kind of like the  element...

Jon

- Original Message - 
From: "Jonathan Eric Miller" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Wednesday, May 19, 2004 2:58 PM
Subject: Re: Session Timeout and "Direct Reference to login page"


> Renato,
>
> Did you ever receive a response to this? I'm having the same problem.
>
> My current problem is slightly more complicated though. I have my
> application protected using container based security, but, I also have
> single-sign on enabled. So, the user doesn't get redirected back to the
> login page when the session times out.
>
> Previously, I used to make it so that if the session had expired (detected
> by my main JavaBean not being present (I was never able to figure out how
to
> determine whether it was a new session or one that had expired and hence
> couldn't display an error message in the later case)), I'd just redirect
the
> user back to the first page of my application. However, now, I'm using
> JavaServer Faces. As a result, I'm not the one implementing the controller
> part of my application, JSF is.
>
> Someone mentioned something about using HttpSessionListener. I don't see
how
> that can work because you don't have a handle to the request and response.
>
> Is there a standard way of handling session timeouts?
>
> All I want to do is detect when a session has timed out for a user and
> display a page stating such when the user makes a request after the
session
> has timed out. It seems like this should be a straight forward thing to
do.
> Am I missing something?
>
> Jon
>
> - Original Message - 
> From: "Renato Romano" <[EMAIL PROTECTED]>
> To: "'Tomcat Users List'" <[EMAIL PROTECTED]>
> Sent: Tuesday, March 02, 2004 3:31 AM
> Subject: Session Timeout and "Direct Reference to login page"
>
>
> > I have two problems i'm facing with every web application using
> > declarative security model, that is:
> >
> > 1) Detect that the user session has expired, and forward him to an
> > appropriate login page; Usually we build webapp in which the home page
> > shows a login form; to handle this, I use to make a "index.jsp" page
> > which redirects the user to a protected page; this is handled by the
> > container which then shows my login page (as specified in web.xml) that
> > is my HOME page. With this approach however, I can't detect session
> > expirying, so if the session times out, the user is presented with the
> > HOME page (the login
> > page) without further notice or advice!! I tried to solve this with a
> > filter, but it seems the container (Tomcat 4.1.127 inside Jboss)
> > forwards to the login page without calling the filter.
> >
> > 2) If the user waits too long reading the home/login page, the sessions
> > times out, Tomcat looses the reference to the previously requested
> > protected page, and on login shows an "Invalid Direct refernce to form
> > login page" error. Again a filter seem not to be useful in this case,
> > since Tomcat commits the error without calling the filter!!
> >
> > Any help or hint on this topic is very, very appreciated
> >
> > Renato
> >
> >
> > 
> > Renato Romano
> > Sistemi e Telematica S.p.A.
> > Calata Grazie - Vial Al Molo Giano
> > 16127 - GENOVA
> >
> > e-mail: [EMAIL PROTECTED]
> > Tel.:   010 2712603
> > _
> >
> >
> >
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Session Timeout and "Direct Reference to login page"

[Jonathan Eric Miller]

Thanks. I think option #1 is what I'm looking for. What I don't understand
is what I need to do with the session listener though?

I don't understand how to determine whether the new session is truly new, or
if it's a new session because a previous session timed out. Could I use a
filter and check the incoming session ID and if the session ID isn't in the
list of session IDs that the server knows about, assume that it's an expired
session?

Does anyone have example source code on how to do this?

Jon

- Original Message - 
From: "QM" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, May 19, 2004 3:16 PM
Subject: Re: Session Timeout and "Direct Reference to login page"


> On Wed, May 19, 2004 at 02:58:05PM -0500, Jonathan Eric Miller wrote:
> : All I want to do is detect when a session has timed out for a user and
> : display a page stating such when the user makes a request after the
session
> : has timed out. It seems like this should be a straight forward thing to
do.
> : Am I missing something?
>
> You could use a session listener and check its existence with a
> filter... In other words:
>
> // filter pseudocode
> if( null != session.getAttribute( "UserMarker" ) ){
> // pass the req and resp down the filter chain
> }else{
> // forward() to a "your session timed out" page
> }
>
> Is this what you're after?
>
> Option #2: have each page meta-refresh to the "your session timed out"
> page (set the refresh value 1 or 2 seconds beyond the session timeout).
> This is more intrusive, though: people don't typically like it when
> their browser starts moving around when they didn't explicitly ask.
>
> -QM
>
> -- 
>
> software  -- http://www.brandxdev.net
> tech news -- http://www.RoarNetworX.com
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Configure Apache for running Perl(cgi)

[Jonathan Eric Miller]

The reason I'm using it is because I have an application that is a CGI that
generates Web server statistics. This is the only application that I'm using
CGI for. To run Apache HTTP server would make things unnecessarily complex.
Enabling CGI in Tomcat is trivial. i.e. Uncommenting a few lines in a Tomcat
config file is a lot easier that building a completely separate Web server
and then probably having to compile and configure mod_jk.

Jon

- Original Message - 
From: "Daniel Savard" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, March 18, 2004 3:24 PM
Subject: Re: Configure Apache for running Perl(cgi)


> I wonder why someone would like to run perl scripts from the Tomcat
> servlet container rather than using the Apache http server for this
> purpose?
>
> Because it is possible? Well, it is perfectly possible for me to jump
> the bridge, should I? (Please, do not answer this one.)
>
> It seems to me, much more easier to setup an Apache http server for this
> purpose. And I am under the impression there will be a performance
> penality running such scripts under a Tomcat server. There is so much
> people and production sites running CGIs from Apache http server, it is
> almost bug free and well documented to do so.
>
>
> -- 
>
> ===
> Daniel Savard
>
> ===
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Configure Apache for running Perl(cgi)

[Jonathan Eric Miller]

He said Apache Tomcat in his message. Tomcat supports running CGIs natively
in standalone mode without having to use Apache HTTP server.

One thing to watch out for is that Tomcat 5.0.16 had a bug in the
CGIServlet. This is fixed in 5.0.18, so, be sure to use the latest version
of Tomcat 5 if you are using Tomcat 5.

Jon

- Original Message - 
From: "Daniel Savard" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, March 18, 2004 12:56 PM
Subject: Re: Configure Apache for running Perl(cgi)


> Le jeu 18/03/2004 à 13:01, Vivek Sivagiri a écrit :
> > How would this be incorrect for this message board?
> > It is a question about configuring Apache for CGI scripts.
> >
>
> Well, there is Apache (the http server) and there is Apache Tomcat (the
> servlet container). Obviously, you are looking for advise on the http
> server. So, you are on the wrong mailinglist. You should rather look at
> the following URL:
>
> http://httpd.apache.org/lists.html#http-users
>
> -- 
>
> ===
> Daniel Savard
>
> ===
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Possible to implement Pubcookie authentication using Tomcat Realm?

[Jonathan Eric Miller]

I recently found out about a way to create a single sign-on setup for
authentication for Web applications called Pubcookie. The following link has
a diagram that shows how it works. If a user hasn't yet authenticated, they
are redirected to a separate server that displays a login page. Then, once
the user has authenticated correctly, they are redirected back to the
original Web application.

http://www.pubcookie.org/docs/how-pubcookie-works.html

I'm wondering if anyone knows if it would be possible to implement this in
Tomcat as a Realm? Or, would it be more complicated than that since it does
a redirect?

Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Problem getting JavaBean value

[Jonathan Eric Miller]

I'm using jakarta-taglibs-standard-1.1.0-B1 with JSP 2.0 and Tomcat 5.0.16.

I have a bean that has the following accessor method.

public String getCNetId() {
return cNetId;
}

I'm attempting to get the value in a JSP using the following,



but, I'm getting the following error,

javax.servlet.ServletException: Unable to find a value for "cNetId" in
object of class "edu.uchicago.at.coursesiterequest.CourseSiteRequest" using
operator "."

If I change the case to the following, it works.

public String getCnetId() {
return cNetId;
}



Is this a bug?

Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: URL path naming question, recommended naming conventions?

[Jonathan Eric Miller]

I'm using Tomcat in standalone mode and hence setting the permissions using
Tomcat in the web.xml file.

Jon

- Original Message - 
From: "Howard Watson" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, December 31, 2003 3:36 PM
Subject: Re: URL path naming question, recommended naming conventions?


> Did you give Apache  rights to the directory structure for your
application and the folders where your css and images are stored?
>
> >>> [EMAIL PROTECTED] 12/31/03 02:20PM >>>
> OK, thanks. I got it to work using the servlet as the welcome file, but,
now
> I have the problem that I don't know how to protect the servlet when it's
> accessed as the welcome file. I tried using a /
> for a security constraint, but, that causes images and a CSS file that I'm
> using on my login page to be inaccessible.
>
>
> Jon
>
> - Original Message - 
> From: "Shapira, Yoav" <[EMAIL PROTECTED]>
> To: "Tomcat Users List" <[EMAIL PROTECTED]>
> Sent: Wednesday, December 31, 2003 1:05 PM
> Subject: RE: URL path naming question, recommended naming conventions?
>
>
> >
> > Howdy,
> > With tomcat 5 you can use a servlet as an index page, i.e. a
> > welcome-file in web.xml.  Don't use /servlet as part of the URL unless
> > you have to, as that just gives hackers a clue.
> >
> > Yoav Shapira
> > Millennium ChemInformatics
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: URL path naming question, recommended naming conventions?

[Jonathan Eric Miller]

OK, thanks. I got it to work using the servlet as the welcome file, but, now
I have the problem that I don't know how to protect the servlet when it's
accessed as the welcome file. I tried using a /
for a security constraint, but, that causes images and a CSS file that I'm
using on my login page to be inaccessible.


Jon

- Original Message - 
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, December 31, 2003 1:05 PM
Subject: RE: URL path naming question, recommended naming conventions?


>
> Howdy,
> With tomcat 5 you can use a servlet as an index page, i.e. a
> welcome-file in web.xml.  Don't use /servlet as part of the URL unless
> you have to, as that just gives hackers a clue.
>
> Yoav Shapira
> Millennium ChemInformatics


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

URL path naming question, recommended naming conventions?

[Jonathan Eric Miller]

I'm developing an application that uses servlets and JSP. Currently, it is
using a Model View Controller type setup where everything is going through a
single servlet (I'm not using Struts) which forwards to JSPs that are
located in WEB-INF.

The path to my application is,

https://myserver/myapp/servlet/controller

But, I have an index.jsp which uses the JSTL  tag to redirect so
that you can access the application using,

https://myserver/myapp


1. Is using an index.jsp with a redirect is something that is commonly done
to simplify the URL? Or, is there a better way?
2. If you do use a redirect, what's the easiest way to do this so that if a
query string is provided, it is preserved?
2. Is it still recommended to use "/servlet/" as part of the path for
servlets? Or, do most people not do this anymore?

BTW, I'm using a  and not a  because the application
is password protected and I wasn't sure how to protect it if I did a
forward.

Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: CGI not working on Tomcat 5.0.16?

[Jonathan Eric Miller]

The only CGI that I tested with is a log analysis package called AWStats
(http://awstats.sourceforge.net/) which primarily consists of a single .pl
file. It also seems to use some .pm library files. It has always worked
great with Tomcat 4.1. I can't get it to work with Tomcat 5 though. I'm
hoping that someone will chime in and let me know if CGI works for them on
Tomcat 5.

Jon

- Original Message - 
From: "Januski, Ken" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Tuesday, December 16, 2003 12:51 PM
Subject: RE: CGI not working on Tomcat 5.0.16?


Jon,

Just slightly off topic, have you gotten cgi to do more or less what you
wanted with Tomcat? I can't get it working very well in Tomcat 4.1 and am
wondering if it's just me.

I can get one page to work but when it calls anohter cgi page I run into
problems.

Ken

-Original Message-
From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
Sent: Tuesday, December 16, 2003 1:04 PM
To: Tomcat Users List
Subject: Re: CGI not working on Tomcat 5.0.16?


Tomcat supports CGI natively. I'm using Tomcat in standalone mode.

Jon

- Original Message - 
From: "Edson Alves Pereira" <[EMAIL PROTECTED]>
To: "'Tomcat Users List'" <[EMAIL PROTECTED]>
Sent: Tuesday, December 16, 2003 6:59 AM
Subject: RE: CGI not working on Tomcat 5.0.16?


Just a question, CGI isn´t a Apache server matter?

> --
> De: Jonathan Eric Miller[SMTP:[EMAIL PROTECTED]
> Responder: Tomcat Users List
> Enviada: segunda-feira, 15 de dezembro de 2003 20:52
> Para: Tomcat Users List
> Assunto: Re: CGI not working on Tomcat 5.0.16?
>
> Do you have the same error that I do in your log? As far as I can tell
> this
> is a bug in Tomcat.
>
> Jon
>
> - Original Message - 
> From: "Lawrence, Gabriel" <[EMAIL PROTECTED]>
> To: "Tomcat Users List" <[EMAIL PROTECTED]>
> Sent: Monday, December 15, 2003 4:58 PM
> Subject: RE: CGI not working on Tomcat 5.0.16?
>
>
> > I've noticed that on tomcat 5 the working directory that it execs the
> > cgi script in is different then it was on tomcat 4. I haven't solved my
> > problem yet, but I have isolated that to be my problem.
> >
> > -gabe
> >
> > -Original Message-
> > From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
> > Sent: Monday, December 15, 2003 2:42 PM
> > To: Tomcat User List
> > Subject: CGI not working on Tomcat 5.0.16?
> >
> >
> > I've been having problems getting CGI to work with Tomcat 5.0.16. I have
> > it working with Tomcat 4.1. Has anyone else been able to get it to work?
> >
> > I'm receiving the following error in my localhost_log*.txt log even
> > though the file listed is there. Has anyone else had this problem?
> >
> > 2003-12-12 16:46:14 StandardContext[]cgi: runCGI (stderr):Can't open
> > perl script
> > ""/opt/jakarta-tomcat-5.0.16/webapps/ROOT/WEB-INF/cgi/awstats.pl"":
> > No such file or directory
> > 2003-12-12 16:46:14 StandardContext[]cgi: runCGI: 1 lines received on
> > stderr
> >
> > Jon
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: CGI not working on Tomcat 5.0.16?

[Jonathan Eric Miller]

Tomcat supports CGI natively. I'm using Tomcat in standalone mode.

Jon

- Original Message - 
From: "Edson Alves Pereira" <[EMAIL PROTECTED]>
To: "'Tomcat Users List'" <[EMAIL PROTECTED]>
Sent: Tuesday, December 16, 2003 6:59 AM
Subject: RE: CGI not working on Tomcat 5.0.16?


Just a question, CGI isn´t a Apache server matter?

> --
> De: Jonathan Eric Miller[SMTP:[EMAIL PROTECTED]
> Responder: Tomcat Users List
> Enviada: segunda-feira, 15 de dezembro de 2003 20:52
> Para: Tomcat Users List
> Assunto: Re: CGI not working on Tomcat 5.0.16?
>
> Do you have the same error that I do in your log? As far as I can tell
> this
> is a bug in Tomcat.
>
> Jon
>
> - Original Message - 
> From: "Lawrence, Gabriel" <[EMAIL PROTECTED]>
> To: "Tomcat Users List" <[EMAIL PROTECTED]>
> Sent: Monday, December 15, 2003 4:58 PM
> Subject: RE: CGI not working on Tomcat 5.0.16?
>
>
> > I've noticed that on tomcat 5 the working directory that it execs the
> > cgi script in is different then it was on tomcat 4. I haven't solved my
> > problem yet, but I have isolated that to be my problem.
> >
> > -gabe
> >
> > -Original Message-
> > From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
> > Sent: Monday, December 15, 2003 2:42 PM
> > To: Tomcat User List
> > Subject: CGI not working on Tomcat 5.0.16?
> >
> >
> > I've been having problems getting CGI to work with Tomcat 5.0.16. I have
> > it working with Tomcat 4.1. Has anyone else been able to get it to work?
> >
> > I'm receiving the following error in my localhost_log*.txt log even
> > though the file listed is there. Has anyone else had this problem?
> >
> > 2003-12-12 16:46:14 StandardContext[]cgi: runCGI (stderr):Can't open
> > perl script
> > ""/opt/jakarta-tomcat-5.0.16/webapps/ROOT/WEB-INF/cgi/awstats.pl"":
> > No such file or directory
> > 2003-12-12 16:46:14 StandardContext[]cgi: runCGI: 1 lines received on
> > stderr
> >
> > Jon
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: CGI not working on Tomcat 5.0.16?

[Jonathan Eric Miller]

Do you have the same error that I do in your log? As far as I can tell this
is a bug in Tomcat.

Jon

- Original Message - 
From: "Lawrence, Gabriel" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Monday, December 15, 2003 4:58 PM
Subject: RE: CGI not working on Tomcat 5.0.16?


> I've noticed that on tomcat 5 the working directory that it execs the
> cgi script in is different then it was on tomcat 4. I haven't solved my
> problem yet, but I have isolated that to be my problem.
>
> -gabe
>
> -Original Message-
> From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
> Sent: Monday, December 15, 2003 2:42 PM
> To: Tomcat User List
> Subject: CGI not working on Tomcat 5.0.16?
>
>
> I've been having problems getting CGI to work with Tomcat 5.0.16. I have
> it working with Tomcat 4.1. Has anyone else been able to get it to work?
>
> I'm receiving the following error in my localhost_log*.txt log even
> though the file listed is there. Has anyone else had this problem?
>
> 2003-12-12 16:46:14 StandardContext[]cgi: runCGI (stderr):Can't open
> perl script
> ""/opt/jakarta-tomcat-5.0.16/webapps/ROOT/WEB-INF/cgi/awstats.pl"":
> No such file or directory
> 2003-12-12 16:46:14 StandardContext[]cgi: runCGI: 1 lines received on
> stderr
>
> Jon
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

CGI not working on Tomcat 5.0.16?

[Jonathan Eric Miller]

I've been having problems getting CGI to work with Tomcat 5.0.16. I have it
working with Tomcat 4.1. Has anyone else been able to get it to work?

I'm receiving the following error in my localhost_log*.txt log even though
the file listed is there. Has anyone else had this problem?

2003-12-12 16:46:14 StandardContext[]cgi: runCGI (stderr):Can't open perl
script ""/opt/jakarta-tomcat-5.0.16/webapps/ROOT/WEB-INF/cgi/awstats.pl"":
No such file or directory
2003-12-12 16:46:14 StandardContext[]cgi: runCGI: 1 lines received on stderr

Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: cgi script not launching in Tomcat 5.0

[Jonathan Eric Miller]

I'm having the same exact problem. I think it might be a bug in Tomcat 5 as
I have it working no problem in Tomcat 4. For some reason the file name has
two sets of "'s. Not sure if that might have something to do with it...

Jon

- Original Message - 
From: "Li, William" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, December 11, 2003 10:13 AM
Subject: cgi script not launching in Tomcat 5.0


> Hi,
>
> I did the config as per the documentation for CGI.  I have a script
> /local/0/home/tomcat/webapps/ROOT/cgi-bin/printenv.cgi and it works fine
on
> command line.  But Tomcat doesn't like it:
>
> 2003-12-11 10:54:41 cgi: findCGI calc: name=printenv.cgi,
> path=/local/0/home/tomcat/webapps/ROOT/cgi-bin/printenv.cgi,
> scriptname=/cgi-bin/printenv.cgi, cginame=/printenv.cgi
> 2003-12-11 10:54:41 cgi: runCGI(envp=[{CONTENT_TYPE=, SERVER_PORT=8080,
> REMOTE_ADDR=127.0.0.1, GATEWAY_INTERFACE=CGI/1.1, QUERY_STRING=,
>
X_TOMCAT_SCRIPT_PATH=/local/0/home/tomcat/webapps/ROOT/cgi-bin/printenv.cgi,
> REMOTE_HOST=127.0.0.1, SERVER_SOFTWARE=TOMCAT, PATH_INFO=, AUTH_TYPE=,
> SERVER_PROTOCOL=, REQUEST_METHOD=GET, REMOTE_USER=, REMOTE_IDENT=,
> SERVER_NAME=localhost.localdomain, CONTENT_LENGTH=,
> SCRIPT_NAME=/cgi-bin/printenv.cgi}],
> command=/local/0/home/tomcat/webapps/ROOT/cgi-bin/printenv.cgi)
> 2003-12-11 10:54:41 cgi: runCGI (stderr):Can't open perl script
> ""/local/0/home/tomcat/webapps/ROOT/cgi-bin/printenv.cgi"": No such file
or
> directory
> 2003-12-11 10:54:41 cgi: runCGI: 1 lines received on stderr
>
> Can anyone help?  Thanks!
>
>
> --

> This message is intended only for the personal and confidential use of the
> designated recipient(s) named above.  If you are not the intended
recipient of
> this message you are hereby notified that any review, dissemination,
> distribution or copying of this message is strictly prohibited.  This
> communication is for information purposes only and should not be regarded
as
> an offer to sell or as a solicitation of an offer to buy any financial
> product, an official confirmation of any transaction, or as an official
> statement of Lehman Brothers.  Email transmission cannot be guaranteed to
be
> secure or error-free.  Therefore, we do not represent that this
information is
> complete or accurate and it should not be relied upon as such.  All
> information is subject to change without notice.
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Default servlet mapping not working in Tomcat 5.0.16?

[Jonathan Eric Miller]

OK, yeah, I just noticed that when I removed the leading "/", it worked. Is
this documented somewhere? I was going by what it says in the Servlet 2.4
spec, and I didn't see that mentioned in there.

Since I need to protect the resource using a security-constraint, so, I
think I'm better off just using a redirect.

Thanks, Jon

- Original Message - 
From: "Ben Souther" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Friday, December 12, 2003 3:01 PM
Subject: Re: Default servlet mapping not working in Tomcat 5.0.16?


> The welcome file list actually has to point to a servlet mapping.
> Here is mine.  It works.
>
>
>2296
>2297   
>2298 HrpServlet
>2299 /HRP
>2300   
>2301
>2302
>2303   
>2304   HRP
>    2305
>2306 
>
>
>
>
>
>
>
>
>
>
>
>
> On Friday 12 December 2003 03:35 pm, Jonathan Eric Miller wrote:
> > Hmmm, I just tried it by adding the following to my web.xml file but
it's
> > still just printing out the directory listing.
> >
> > 
> > /servlet/myservlet
> > 
> >
> > I have it working with a index.jsp with a redirect, so, I guess I'll
just
> > stick with that...
> >
> > Thanks, Jon
> >
> > - Original Message -
> > From: "Ben Souther" <[EMAIL PROTECTED]>
> > To: "Tomcat Users List" <[EMAIL PROTECTED]>
> > Sent: Friday, December 12, 2003 1:31 PM
> > Subject: Re: Default servlet mapping not working in Tomcat 5.0.16?
> >
> > > In version 5x you could also set a servlet to be your welcome file.
> > >
> > > On Friday 12 December 2003 01:45 pm, Shapira, Yoav wrote:
> > > > Howdy,
> > > > The / mapping is taken by default servlet in the default tomcat
> > > > configuration.  If you map a servlet to /, you have to:
> > > > 1. Remove the default servlet mapping from conf/web.xml.
> > > > 2. Make sure you handle static content (this is what the default
> > > > servlet handles, among other duties).
> > > >
> > > > As for directory listings, read the FAQ.
> > > >
> > > > Yoav Shapira
> > > > Millennium ChemInformatics
> > > >
> > > > >-Original Message-
> > > >
> > > > From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
> > > >
> > > > >Sent: Friday, December 12, 2003 1:23 PM
> > > > >To: Tomcat User List
> > > > >Subject: Default servlet mapping not working in Tomcat 5.0.16?
> > > > >
> > > > >I'm using Tomcat 5.0.16 and I'm trying to make it so that if a user
> > > >
> > > > enters
> > > >
> > > > >a
> > > > >path like, http://myserver/myapp it runs a default servlet for that
> > > >
> > > > path.
> > > >
> > > > >According the the Servlet 2.4 spec, you can do this by mapping "/"
to
> > > > > a servlet. However, for me, it's just printing out a directory
> > > > > listing of
> > > >
> > > > the
> > > >
> > > > >/myapp directory when I try it (on a side note, how do you globally
> > > >
> > > > disable
> > > >
> > > > >directory browsing?).
> > > > >
> > > > >I'm using a web.xml similar to the following.
> > > > >
> > > > >
> > > > >http://java.sun.com/xml/ns/j2ee";
> > > > >xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
> > > > >xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee
web-app_2_4.xsd"
> > > > >version="2.4">
> > > > >
> > > > >myservlet
> > > > >mypackage.MyServlet
> > > > >
> > > > >
> > > > >myservlet
> > > > >/
> > > > >/servlet/myservlet
> > > > >/servlet/myservlet/*
> > > > >
> > > > >
> > > > >Also, I have something similar to the following in my server.xml.
> > > > >
> > > > >
> > > > >
> > > > >Any ideas?
> > > > >
> > > > >I can do what I want to do using an index.jsp with a redirect, but,
I
> > > >
> > > > would

Re: Default servlet mapping not working in Tomcat 5.0.16?

[Jonathan Eric Miller]

Hmmm, I just tried it by adding the following to my web.xml file but it's
still just printing out the directory listing.


/servlet/myservlet


I have it working with a index.jsp with a redirect, so, I guess I'll just
stick with that...

Thanks, Jon

- Original Message - 
From: "Ben Souther" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Friday, December 12, 2003 1:31 PM
Subject: Re: Default servlet mapping not working in Tomcat 5.0.16?


> In version 5x you could also set a servlet to be your welcome file.
>
>
>
>
> On Friday 12 December 2003 01:45 pm, Shapira, Yoav wrote:
> > Howdy,
> > The / mapping is taken by default servlet in the default tomcat
> > configuration.  If you map a servlet to /, you have to:
> > 1. Remove the default servlet mapping from conf/web.xml.
> > 2. Make sure you handle static content (this is what the default servlet
> > handles, among other duties).
> >
> > As for directory listings, read the FAQ.
> >
> > Yoav Shapira
> > Millennium ChemInformatics
> >
> > >-Original Message-
> >
> > From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]
> >
> > >Sent: Friday, December 12, 2003 1:23 PM
> > >To: Tomcat User List
> > >Subject: Default servlet mapping not working in Tomcat 5.0.16?
> > >
> > >I'm using Tomcat 5.0.16 and I'm trying to make it so that if a user
> >
> > enters
> >
> > >a
> > >path like, http://myserver/myapp it runs a default servlet for that
> >
> > path.
> >
> > >According the the Servlet 2.4 spec, you can do this by mapping "/" to a
> > >servlet. However, for me, it's just printing out a directory listing of
> >
> > the
> >
> > >/myapp directory when I try it (on a side note, how do you globally
> >
> > disable
> >
> > >directory browsing?).
> > >
> > >I'm using a web.xml similar to the following.
> > >
> > >
> > >http://java.sun.com/xml/ns/j2ee";
> > >xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
> > >xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee web-app_2_4.xsd"
> > >version="2.4">
> > >
> > >myservlet
> > >mypackage.MyServlet
> > >
> > >
> > >myservlet
> > >/
> > >/servlet/myservlet
> > >/servlet/myservlet/*
> > >
> > >
> > >Also, I have something similar to the following in my server.xml.
> > >
> > >
> > >
> > >Any ideas?
> > >
> > >I can do what I want to do using an index.jsp with a redirect, but, I
> >
> > would
> >
> > >like to avoid having it do a redirect if possible.
> > >
> > >Jon
> > >
> > >
> > >-
> > >To unsubscribe, e-mail: [EMAIL PROTECTED]
> > >For additional commands, e-mail: [EMAIL PROTECTED]
> >
> > This e-mail, including any attachments, is a confidential business
> > communication, and may contain information that is confidential,
> > proprietary and/or privileged.  This e-mail is intended only for the
> > individual(s) to whom it is addressed, and may not be saved, copied,
> > printed, disclosed or used by anyone else.  If you are not the(an)
intended
> > recipient, please immediately delete this e-mail from your computer
system
> > and notify the sender.  Thank you.
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
>
> -- 
> Ben Souther
> F.W. Davison & Company, Inc.
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Default servlet mapping not working in Tomcat 5.0.16?

[Jonathan Eric Miller]

I'm using Tomcat 5.0.16 and I'm trying to make it so that if a user enters a
path like, http://myserver/myapp it runs a default servlet for that path.

According the the Servlet 2.4 spec, you can do this by mapping "/" to a
servlet. However, for me, it's just printing out a directory listing of the
/myapp directory when I try it (on a side note, how do you globally disable
directory browsing?).

I'm using a web.xml similar to the following.


http://java.sun.com/xml/ns/j2ee";
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee web-app_2_4.xsd"
version="2.4">

myservlet
mypackage.MyServlet


myservlet
/
/servlet/myservlet
/servlet/myservlet/*


Also, I have something similar to the following in my server.xml.



Any ideas?

I can do what I want to do using an index.jsp with a redirect, but, I would
like to avoid having it do a redirect if possible.

Jon


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Slow HTTP upload speed with IE and Tomcat on Solaris (works fine on Linux and Windows)

[Jonathan Eric Miller]

Can someone that has a Solaris box try this (see the file attachments on my
original message)? It works great on my Linux box. Could it be some kind of
buffering problem?

I noticed something else that is strange. Mozilla uploads/downloads faster
with SSL than without when using Tomcat 5 on Linux (4.4 MBs versus 3 MBs).
IE is substantially slower when using SSL. I noticed that Mozilla was using
AES-128. IE was using 128 bit too, but, I don't know how to check what the
specific cipher suite was that was being used. Also, IE seems substantially
faster at downloads than Mozilla. IE was 9.47 MBs where as Mozilla was only
3 MBs.

Jon

- Original Message - 
From: "Jonathan Eric Miller" <[EMAIL PROTECTED]>
To: "Tomcat User List" <[EMAIL PROTECTED]>
Sent: Wednesday, October 15, 2003 3:52 PM
Subject: Slow HTTP upload speed with IE and Tomcat on Solaris (works fine on
Linux and Windows)


> I'm having a strange problem with regard to HTTP upload speed when using
> Internet Explorer on Windows with Tomcat on Solaris. If I upload a 10 MB
> file over a 100 Mbs Ethernet connection, it takes 2 minutes 25 seconds if
I
> use IE (~80 Kbs). If I use Mozilla, it takes 3 seconds (~3 Mbs). If I try
> the same thing, but, run Tomcat on Linux instead, it takes 2 seconds when
> using IE. It takes 1 second if I run Tomcat on my local Windows computer.
> I'm using Solaris 8 with a patch cluster that I downloaded and installed
> within the last few weeks, Tomcat 5.0.12, J2SE 1.4.1, and the version of
> Internet Explorer that comes with Windows XP with all the Windows updates
> applied. The problem seems to occur with Tomcat 4.1.24 as well. I also
tried
> it on a different Windows 2000 computer to make sure nothing was wrong
with
> my XP box and the other computer had the same problem.
>
> Has anyone else had this problem? Is there anyone out there that has a
> Solaris box that wouldn't mind running the test application that I created
> to see if you have the same problem?
>
> I'm wondering if the problem might be with our network, but, I don't think
> that's the case because I have another application on a Solaris box that
> does HTTP uploads using a Perl application that doesn't have the
performance
> problem.
>
> Jon
>






> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Slow HTTP upload speed with IE and Tomcat on Solaris (works fine on Linux and Windows)

[Jonathan Eric Miller]

I'm having a strange problem with regard to HTTP upload speed when using
Internet Explorer on Windows with Tomcat on Solaris. If I upload a 10 MB
file over a 100 Mbs Ethernet connection, it takes 2 minutes 25 seconds if I
use IE (~80 Kbs). If I use Mozilla, it takes 3 seconds (~3 Mbs). If I try
the same thing, but, run Tomcat on Linux instead, it takes 2 seconds when
using IE. It takes 1 second if I run Tomcat on my local Windows computer.
I'm using Solaris 8 with a patch cluster that I downloaded and installed
within the last few weeks, Tomcat 5.0.12, J2SE 1.4.1, and the version of
Internet Explorer that comes with Windows XP with all the Windows updates
applied. The problem seems to occur with Tomcat 4.1.24 as well. I also tried
it on a different Windows 2000 computer to make sure nothing was wrong with
my XP box and the other computer had the same problem.

Has anyone else had this problem? Is there anyone out there that has a
Solaris box that wouldn't mind running the test application that I created
to see if you have the same problem?

I'm wondering if the problem might be with our network, but, I don't think
that's the case because I have another application on a Solaris box that
does HTTP uploads using a Perl application that doesn't have the performance
problem.

Jon
import java.text.*;
import java.util.*;

public class TimeSpan {
	public TimeSpan(Date startDate, Date endDate) {
		long l = (endDate.getTime() - startDate.getTime()) / 1000;
		hours = l / 60 / 60;
		minutes = l / 60 - (hours * 60);
		seconds = l - (hours * 60 * 60) - (minutes * 60);
	}
	
	public String toString() {
		Object[] o = {new Long(hours), new Long(minutes), new Long(seconds)};
		return new MessageFormat("{0,number,00}:{1,number,00}:{2,number,00}").format(o);
	}
	
	public long hours;
	public long minutes;
	public long seconds;
}
import java.io.*;
import java.util.*;
import javax.servlet.*;
import javax.servlet.http.*;

public class FileUpload3 extends HttpServlet {
	public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException {
		try {
			resp.setContentType("text/html");
			PrintWriter pw = resp.getWriter();
			pw.println("http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\";>");
			pw.println("File Upload");
			pw.println("");
			pw.println("File: ");
			pw.println("");
			pw.println("");
			pw.println("");
			pw.close();
		}
		catch(Exception e) {
			e.printStackTrace();
		}
	}

	public void doPost(HttpServletRequest req, HttpServletResponse resp) throws IOException {
		try {
			Date d = new Date();
			ServletInputStream sis = req.getInputStream();
			while(sis.read() != -1);
			sis.close();
			Date d2 = new Date();
			TimeSpan ts = new TimeSpan(d, d2);
			resp.setContentType("text/html");
			PrintWriter pw = resp.getWriter();
			pw.println("http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\";>");
			pw.println("File Upload");
			pw.println("");
			pw.println("" + ts + "");
			pw.println("");
			pw.println("");
			pw.close();
		}
		catch(Exception e) {
			e.printStackTrace();
		}
	}
}

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Tomcat with LDAP

[Jonathan Eric Miller]

JNDIRealm is broken and unusable.

Jon

- Original Message -
From: "Karamat Adil IHMD" <[EMAIL PROTECTED]>
To: "'Tomcat Users List'" <[EMAIL PROTECTED]>
Sent: Wednesday, April 02, 2003 2:08 PM
Subject: Tomcat with LDAP


> Hello everyone,
>Can any one give me an example of a LDIF file that I can add in a
> openLdap directory tree so that I can have tomcat authenticate against it
!
> Sorry I am new at this and I tried the example file that is on the
> tomcat page, but that doesnt work. And I dont know much about LDAP or how
to
> construct a proper LDAP file with users and roles defined.
> Thanks in advance
> Adil
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: tomcat 4.1.18, apache 2.0.43, mod_jk 2.0.43

[Jonathan Eric Miller]

I'm running in standalone mode and I'm receiving the same error, so, I don't
think the problem is with regard to what version of Apache you're running or
mod_jk.

Jon

- Original Message -
From: "Ivan F. Martinez" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Friday, March 21, 2003 6:59 AM
Subject: Re: tomcat 4.1.18, apache 2.0.43, mod_jk 2.0.43


>
> On Thu, 20 Mar 2003 09:40:14 -
> "Marion McKelvie" <[EMAIL PROTECTED]> wrote:
>
> MM> Hello again,
> MM>
> MM> Is anyone running with the combination of Tomcat 4.1.18, Apache 2.0.43
and
> MM> mod_jk 2.0.43 on Redhat 8?
> MM>
>
> I have one machine that works fine, and other with same problem as you.
> When you restart apache everything works again.
>
> I have tested with mod_jk and mod_jk2.
>
> I didn't find the difference between the two machines.
>
> MM> Marion
> MM>
> MM> -Original Message-
> MM> From: Marion McKelvie [mailto:[EMAIL PROTECTED]
> MM> Sent: 19 March 2003 10:38
> MM> To: [EMAIL PROTECTED]
> MM> Subject: tomcat 4.1.18, apache 2.0.43, mod_jk 2.0.43
> MM>
> MM>
> MM> Hi,
> MM>
> MM> I have an installation using Tomcat 4.1.18, Apache 2.0.43 and mod_jk
2.0.43
> MM> running on Redhat 8, all installed from rpms as executables (no
building
> MM> from source).
> MM>
> MM> Everything works fine for a while until I get the following error in
> MM> catalina.out
> MM>
> MM> 19-Mar-2003 10:00:20 org.apache.tomcat.util.log.CommonLogHandler log
> MM> INFO: All threads are busy, waiting. Please increase maxThreads or
check the
> MM> servlet sttus75 75
> MM>
> MM> I can get this error just by playing with the Tomcat examples for long
> MM> enough (presumably after 75 activities).  It's a bit like each thread
is not
> MM> being released after it's used.  I have a comparable installation
which runs
> MM> without problems but it's using Tomcat 4.1.12 with Apache 1.3.22.
> MM>
> MM> Server.xml is pretty much as installed by default (I've commented out
the
> MM> 8080 connector) so it's using the Coyote connector:
> MM>
> MM>  MM>port="8009" minProcessors="5" maxProcessors="75"
> MM>enableLookups="true" redirectPort="8443"
> MM>acceptCount="10" debug="0" connectionTimeout="0"
> MM>useURIValidationHack="false"
> MM>
> MM> protocolHandlerClassName="org.apache.jk.server.JkCoyoteHandler"/>
> MM>
> MM> If I change the timeout to 2, catalina.out reports that the
timeout has
> MM> been reached.
> MM>
> MM> workers.properties is as installed by default except that I've
corrected the
> MM> java_home path.
> MM>
> MM> mod_jk.conf is as follows
> MM>
> MM> JkWorkersFile /etc/httpd/conf/workers.properties
> MM> JkLogFile /var/log/httpd/mod_jk.log
> MM> JkLogLevel error
> MM>
> MM>
> MM> #
> MM> # Root context mounts for Tomcat
> MM> #
> MM> JkMount /*.jsp ajp13
> MM> JkMount /servlet/* ajp13
> MM>
> MM> #
> MM> # Auto configuration for the /examples context starts.
> MM> #
> MM>
> MM> #
> MM> # The following line makes apache aware of the location of the
/examples
> MM> context
> MM> #
> MM> Alias /examples "/var/tomcat4/webapps/examples"
> MM> 
> MM> Options Indexes FollowSymLinks
> MM> 
> MM>
> MM> #
> MM> # The following line mounts all JSP files and the /servlet/ uri to
tomcat
> MM> #
> MM> JkMount /examples/servlet/* ajp13
> MM> JkMount /examples/*.jsp ajp13
> MM>
> MM> #
> MM> # The following line prohibits users from directly access WEB-INF
> MM> #
> MM> 
> MM> AllowOverride None
> MM> deny from all
> MM> 
> MM>
> MM> ###
> MM> # Auto configuration for the /examples context ends.
> MM> ###
> MM>
> MM>
> MM>
> MM> Any help much appreciated - I'm sure I've probably missed something
obvious
> MM> but all the restarts are getting very annoying!
> MM>
> MM> Marion
> MM>
> MM>
> MM> -
> MM> To unsubscribe, e-mail: [EMAIL PROTECTED]
> MM> For additional commands, e-mail: [EMAIL PROTECTED]
> MM>
> MM>
> MM> -
> MM> To unsubscribe, e-mail: [EMAIL PROTECTED]
> MM> For additional commands, e-mail: [EMAIL PROTECTED]
> MM>
>
>
> --
>
>
> Ivan F. Martinez
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Problems with tomcat 4.0.1 and 4.1.18

[Jonathan Eric Miller]

I think I may be having the same problem as well. I'm running Tomcat in
standalone mode and I have it configured only for HTTPS. The error message
that I'm receiving is.

INFO: All threads are busy, waiting. Please increase maxThreads or check the
servlet status75 75

This is the second time I've seen this. I don't think I've seen the problem
before upgrading to 4.1.18.

Jon

- Original Message -
From: "Daniel Rubio" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Friday, March 21, 2003 4:19 AM
Subject: Re: Problems with tomcat 4.0.1 and 4.1.18


> Is running standalone, we have apache in port 80 but we have a link to
> the secure area (tomcat, that runs in 8443).
>
> Marion McKelvie wrote:
> > Daniel
> >
> > Are you running in standalone mode or with a web server?
> >
> > I have seen a similar problem when using 4.1.18, but I think I've traced
it
> > to Apache 4.0.43 and mod_jk : Apache seems to keep producing child
processes
> > each of which uses up a mod_jk thread until I get the same error in
> > catalina.out
> >
> > Marion
> >
> > -Original Message-
> > From: Daniel Rubio [mailto:[EMAIL PROTECTED]
> > Sent: 21 March 2003 08:49
> > To: [EMAIL PROTECTED]
> > Subject: Problems with tomcat 4.0.1 and 4.1.18
> >
> >
> > Hi to all
> >
> > Recently, we updated our Tomcat server from 4.0.1 to 4.1.18.
> > All was perfect on the first day, but then the new server crashed and I
> > can't found the cause.
> >
> > Doing a ps -ef i see lots of tomcat processes that are'nt finalizing,
> > and when this number arrives to the value we have in acceptCount
> > variable it stops serving pages.
> >
> > Here is the error on catalina.out
> >
> > Mar 20, 2003 9:34:30 PM org.apache.tomcat.util.log.CommonLogHandler log
> > INFO: All threads are busy, waiting. Please increase maxThreads or check
> > the servlet status75 75
> >
> > maxThreads is set to 75 but we haven't more from 2-3 concurrent users so
> > I think this is not th problem.
> >
> > We tried to run again the old server, but now we have a very strange
> > error, we can execute servlets but not jsp pages. Here is the error
> > received by the browser:
> >
> > Apache Tomcat/4.0.1 - HTTP Status 503 - Servlet jsp is currently
unavailable
> >
> > this happens too to the examples directory, I think it's not caused by
> > the application...
> >
> > I'm going crazy, somebody could help?
> >
> > Thanks in advance
> > --
> > 
> > Daniel Rubio Rodríguez
> > OASI (Organisme Autònom Per la Societat de la Informació)
> > c/ Assalt, 12
> > 43003 - Tarragona
> > Tef.: 977.244.007 - Fax: 977.224.517
> > e-mail: [EMAIL PROTECTED]
> > 
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
>
> --
> 
> Daniel Rubio Rodríguez
> OASI (Organisme Autònom Per la Societat de la Informació)
> c/ Assalt, 12
> 43003 - Tarragona
> Tef.: 977.244.007 - Fax: 977.224.517
> e-mail: [EMAIL PROTECTED]
> 
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Anyone running 4.1.12 with SDK 1.4.1 on Solaris 7?

[Jonathan Eric Miller]

Did you set your CATALINA_HOME environment variable to point to the
directory you have Tomcat installed in?

Jon

- Original Message -
From: "Shapira, Yoav" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Monday, October 28, 2002 11:12 AM
Subject: RE: Anyone running 4.1.12 with SDK 1.4.1 on Solaris 7?


Hi,
We're running 4.1.12-LE, JDK 1.4.1, Solaris 8.  Vanilla install, no
problems.  Don't forget to install the Sun Solaris OS patches for JDK
1.4.1.

Yoav Shapira
Millennium ChemInformatics


>-Original Message-
>From: Madere, Colin [mailto:colin.madere@;ieminc.com]
>Sent: Monday, October 28, 2002 11:47 AM
>To: '[EMAIL PROTECTED]'
>Subject: Anyone running 4.1.12 with SDK 1.4.1 on Solaris 7?
>
>More specifically Solaris 7 on x86?
>
>I did a default install and all I get is a NoClassDefFound in the
Bootstrap
>class and was wondering if anyone else has TC running in even remotely
the
>same environment.
>
>Colin
>
>
>--
>To unsubscribe, e-mail:   [EMAIL PROTECTED]>
>For additional commands, e-mail: [EMAIL PROTECTED]>








> This e-mail, including any attachments, is a confidential business
communication, and may contain information that is confidential, proprietary
and/or privileged.  This e-mail is intended only for the individual(s) to
whom it is addressed, and may not be saved, copied, printed, disclosed or
used by anyone else.  If you are not the(an) intended recipient, please
immediately delete this e-mail from your computer system and notify the
sender.  Thank you.
>
>






> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:



--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: Authentification LDAP multiple entries

[Jonathan Eric Miller]

Don't use cn, use uid.

Jon

- Original Message -
From: "hans albers" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, October 14, 2002 4:09 AM
Subject: Authentification LDAP multiple entries


> Authentification with JNDI-Realm works fine,
> but what to do if there are multiple entries
> with the same cn in the Directory?
>
> in my server.xml there's
> userBase="ou=first,o=company"
> userSearch="(cn={0})"
> userSubtree="true"
>
> What to do if there are the entries
>   cn=Peter Webbers,ou=help,ou=first,o=company
>   cn=Peter Webbers,ou=water,ou=first,o=company
> other than changing the cn's???
> (I mustn't change them)
>
> Thanks in advace
>
> Hans
>
>
>
> _
> Testen Sie MSN Messenger für Ihren Online-Chat mit Freunden:
> http://messenger.msn.de
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Possible to disable session persistence?

[Jonathan Eric Miller]

Does anyone know if it is possible to turn off session persistence? I don't
have an immediate need to do so, but, I was thinking that it might be a nice
option to have while testing an application if you want to make sure all the
state is getting cleared out. You could do that by just opening a new Web
browser, so, it's not much of an issue. I was just curious.

Jon


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: JNDIRealm and 4.1.10 with iPlanet

[Jonathan Eric Miller]

Did you protect the resource that you're trying to access with a
security-constraint in your web.xml?

Jon

- Original Message -
From: "Douglas L Stewart" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, September 23, 2002 11:31 AM
Subject: JNDIRealm and 4.1.10 with iPlanet


> I'm using Tomcat 4.1.10 trying to authenticate against iPlanet
> Directory Server 5.0.
>
> I've created a Realm inside of the Engine declaration:
>
>debug="999"
> connectionName="cn=Directory Manager"
> connectionPassword="mypassword"
> connectionURL="ldap://192.168.90.120:11592";
> roleBase="dc=my-company,dc=com"
> roleName="uid"
> roleSearch="(uid={0})"
> roleSubtree="false"
> userPassword="userPassword"
> userPattern="uid={0}, ou=People, dc=my-company,
> dc=com"
>   />
>
> I'm getting this in the log when I start Tomcat:
>
> 2002-09-23 11:09:49 JNDIRealm[Standalone]: Connecting to URL
> ldap://192.168.90.120:11592
>
> According to the documentation putting the Realm declaration in the
> Engine section should make it used globally, but when I try to view
> some of my servlets I see nothing in the log and I'm not prompted for
> a login, it just shows the page.
>
> What am I missing?
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

javax.servlet.request.cipher_suite and javax.servlet.request.key_size attributes not being set on HTTPS connection?

[Jonathan Eric Miller]

It used to be the case that javax.servlet.request.cipher_suite and
javax.servlet.request.key_size attributes would be set by Tomcat to
something similar to the following for HTTPS connections. I just noticed
that this no longer seems to be the case?

javax.servlet.request.cipher_suite: SSL_RSA_WITH_RC4_128_MD5
javax.servlet.request.key_size: 128

I'm using Tomcat 4.1.10 (with CoyoteConnector) with J2SE 1.4.1.

Jon


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: mod_webapp and Virtual Hosts

[Jonathan Eric Miller]

FYI, something is screwed up with your email application. You have no To
field in the headers.

Jon

- Original Message -
From: <[EMAIL PROTECTED]>
Sent: Tuesday, July 09, 2002 11:29 AM
Subject: mod_webapp and Virtual Hosts


> Following the installation instructions, I have successfully configured
mod_webapp and Apache to display the examples web application. My next step
was to move the webapp directives to a virtual host block. Now, when I
access the virtual host, tomcat displays a directory listing of the root
directory of my drive. Any thoughts? Thanks,
>
> Jack
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: Tomcat 4.0.3 on Solaris

[Jonathan Eric Miller]

If I remember correctly, JAXP is optional if you are using JDK 1.4. I
remember having the same problem, but, then I realized that it was optional.
I was able to get Tomcat to build without it.

Jon

- Original Message -
From: "Heap, John" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, June 14, 2002 5:13 AM
Subject: Tomcat 4.0.3 on Solaris


> Hi all,
>
> We are trying to build Tomcat 4.0.3 on Solaris 2.6 and are having trouble
> locating a copy of the
>
> JAXP 1.1.3
>
> we have tried JAXP 1.2 but it doesn't seem to work.
>
>
> Does anybody have a copy or know where it can be found.
>
>
> cheers
>
>
> John.
>
>
> _
> Common Services Agency Disclaimer
>
> The information contained in this message may be confidential
> or legally privileged and is intended for the addressee only.
> If you have received this message in error or there are any
> problems please notify the originator immediately.
> The unauthorised use, disclosure, copying or alteration of this
> message is strictly forbidden.
> _
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: JNDIRealm authentication

[Jonathan Eric Miller]

The value that you have connectionName set to looks invalid. It looks like
you have it set to the name of a container rather than to the dn of the
admin account that is used to bind to the directory for querying for user
passwords and role information.

Jon

- Original Message -
From: "Josh Fenlason" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, June 12, 2002 4:10 PM
Subject: RE: JNDIRealm authentication


> Thanks for the pointer.  It's prompting me for authentication now.  My
>  isn't right though.
> using the Realm element below I get the following exception.  If anyone
has
> any ideas of what I'm doing wrong, I would appreciate your advice.
Thanks.
> ,
> Josh.
>
>  connectionName="ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=Arden
> Hills,o=PTC"
> connectionPassword="secret"
> connectionURL="ldap://camaro.mn.ptc.com:389";
> roleName="uid"
> roleSearch="(uniqueMember={0})"
> userPassword="userPassword"
> userPattern="uid={0},ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=Arden
> Hills,o=PTC"
> debug="99"/>
>
> Here's the AuthLDAPURL that works with Apache1 doing the authentication
>
ldap://corvette.mn.ptc.com:389/ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=A
> rden Hills,o=Bethel
>
>
> Catalina.start: LifecycleException:  Exception opening directory server
> connection:  javax.naming.AuthenticationException: [LDAP: error code 48 -
> Inappropriate Authentication]
> LifecycleException:  Exception opening directory server connection:
> javax.naming.AuthenticationException: [LDAP: error code 48 - Inappropriate
> Authentication]
> at org.apache.catalina.realm.JNDIRealm.start(JNDIRealm.java:834)
> at
> org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1108)
> at
> org.apache.catalina.core.StandardEngine.start(StandardEngine.java:343)
> at
> org.apache.catalina.core.StandardService.start(StandardService.java:388)
> at
> org.apache.catalina.core.StandardServer.start(StandardServer.java:506)
> at org.apache.catalina.startup.Catalina.start(Catalina.java:781)
> at org.apache.catalina.startup.Catalina.execute(Catalina.java:681)
> at org.apache.catalina.startup.Catalina.process(Catalina.java:179)
> at java.lang.reflect.Method.invoke(Native Method)
> at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:243)
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: JNDIRealm authentication

[Jonathan Eric Miller]

Oh yeah, one other thing. I haven't tested this with Apache HTTP Server. I'm
just using Tomcat in standalone mode. I think it may work the same way if
you're using mod_webapp, but, you might want to test it in standalone mode
first to rule out any kind of problems that might be introduced if you're
using Apache HTTP Server on the front end.

Jon

- Original Message -----
From: "Jonathan Eric Miller" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, June 12, 2002 2:20 PM
Subject: Re: JNDIRealm authentication


> Josh,
>
> You also need to put something similar to the following in your web.xml
> file. i.e. the stuff you put in server.xml, just tells Tomcat where to
> authenticate. The stuff in web.xml, tells Tomcat what resources are
> protected and what roles are required in order to access a particular
> resource. I have this in my conf/web.xml and as far as I can tell, it
makes
> it so that it prompts for a password for any resource that is located on
the
> server. If it's just a servlet that you are protecting, I think you should
> be able to put this in the web.xml file for that context. The Servlet 2.3
> spec defines the format of the web.xml file. You can find it at
> http://java.sun.com under the Servlets section.
>
> 
>  
>   myresource
>   /*
>  
>  
>   myrole
>  
> 
> 
>  BASIC
>  myrealm
> 
>
> Jon
>
> - Original Message -
> From: "Josh Fenlason" <[EMAIL PROTECTED]>
> To: "Tomcat" <[EMAIL PROTECTED]>
> Sent: Wednesday, June 12, 2002 1:18 PM
> Subject: JNDIRealm authentication
>
>
> > I'm trying to do LDAP authentication with Tomcat 4.1.3.  I've read
through
> > the how to docs on Tomcat's site,
> >
>
http://jakarta.apache.org/tomcat/tomcat-4.1-doc/realm-howto.html#JNDIRealm,
> > and tried to follow the example.  My site loads fine, but I never get an
> > authentication prompt when I enter my site.  If anyone could sees
anything
> > wrong with my  or has any ideas of where else I should need to
> > change things, I would greatly appreciate it.  Thanks.
> > ,
> > Josh.
> >
> > Here's what I entered for the Realm element in
> > /conf/server.xml
> >
> >  > connectionName="ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=Arden
> > Hills,o=Bethel"
> > connectionPassword="secret"
> > connectionURL="ldap://corvette.mn.ptc.com:389";
> > roleName="oid"
> > roleSearch="(uniqueMember={0})"
> > userPassword="userPassword"
> >
userPattern="oid={0},ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=Arden
> > Hills,o=Bethel"
> > debug="99"/>
> >
> > Here's the AuthLDAPURL that works with Apache1 doing the authentication
> >
>
ldap://corvette.mn.ptc.com:389/ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=A
> > rden Hills,o=Bethel"
> >
> >
> > --
> > To unsubscribe, e-mail:
> <mailto:[EMAIL PROTECTED]>
> > For additional commands, e-mail:
> <mailto:[EMAIL PROTECTED]>
> >
>
>
> --
> To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
> For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
>


--
To unsubscribe, e-mail:   <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>

Re: JNDIRealm authentication

[Jonathan Eric Miller]

Josh,

You also need to put something similar to the following in your web.xml
file. i.e. the stuff you put in server.xml, just tells Tomcat where to
authenticate. The stuff in web.xml, tells Tomcat what resources are
protected and what roles are required in order to access a particular
resource. I have this in my conf/web.xml and as far as I can tell, it makes
it so that it prompts for a password for any resource that is located on the
server. If it's just a servlet that you are protecting, I think you should
be able to put this in the web.xml file for that context. The Servlet 2.3
spec defines the format of the web.xml file. You can find it at
http://java.sun.com under the Servlets section.


 
  myresource
  /*
 
 
  myrole
 


 BASIC
 myrealm


Jon

- Original Message -
From: "Josh Fenlason" <[EMAIL PROTECTED]>
To: "Tomcat" <[EMAIL PROTECTED]>
Sent: Wednesday, June 12, 2002 1:18 PM
Subject: JNDIRealm authentication


> I'm trying to do LDAP authentication with Tomcat 4.1.3.  I've read through
> the how to docs on Tomcat's site,
>
http://jakarta.apache.org/tomcat/tomcat-4.1-doc/realm-howto.html#JNDIRealm,
> and tried to follow the example.  My site loads fine, but I never get an
> authentication prompt when I enter my site.  If anyone could sees anything
> wrong with my  or has any ideas of where else I should need to
> change things, I would greatly appreciate it.  Thanks.
> ,
> Josh.
>
> Here's what I entered for the Realm element in
> /conf/server.xml
>
>  connectionName="ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=Arden
> Hills,o=Bethel"
> connectionPassword="secret"
> connectionURL="ldap://corvette.mn.ptc.com:389";
> roleName="oid"
> roleSearch="(uniqueMember={0})"
> userPassword="userPassword"
> userPattern="oid={0},ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=Arden
> Hills,o=Bethel"
> debug="99"/>
>
> Here's the AuthLDAPURL that works with Apache1 doing the authentication
>
ldap://corvette.mn.ptc.com:389/ou=People,ou=jfenlason_r62DC,ou=jfenlason,l=A
> rden Hills,o=Bethel"
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: Question regarding Active Directory/LDAP

[Jonathan Eric Miller]

If you want to see what the structure of AD is, run LDIFDE. LDIFDE comes
with Windows 2000 Server and will dump the contents of AD to a LDIF file.

Jon

- Original Message -
From: "Chris Shen" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, June 06, 2002 4:35 PM
Subject: Re: Question regarding Active Directory/LDAP


> i am trying to create a web front end using an ldap api to query and
update
> the active directory so that i can pull out information on an user or
create
> and update the info on an user in the active directory...
>
> Chris
> - Original Message -
> From: <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Wednesday, June 05, 2002 10:30 PM
> Subject: RE: Question regarding Active Directory/LDAP
>
>
> > You be in rela trouble here. Active Directory uses a conglomeration of
> > Kerberos 5 with MS ciphers and LDAP
> >
> > As for LDAP, I think its straightforward - look up the standard and get
> one
> > bit at a time. Perhaps see the SMABA 3.x  code and what it does (its a
> late
> > beta stuff).
> >
> > What are you trying to do with the active directory information?
> >
> > regards
> > TMC
> >
> > --
> > Tomasz M. Ciolek
> > Systems Administrator - CSIRO Entomology
> > Phone: 02-62464391 * Fax: 02-62464000
> >
> >
> > > -Original Message-
> > > From: Chris Shen [mailto:[EMAIL PROTECTED]]
> > > Sent: Thursday, 06 June 2002 14:57
> > > To: Tomcat Users List
> > > Subject: Question regarding Active Directory/LDAP
> > >
> > >
> > > i know this is not directly related to tomcat. i am trying to
> > > write a LDAP
> > > client in jsp to talk to an active directory. however, i am rather
> > > unfamiliar with the directory structure in active directory.
> > > i have one set
> > > up on my machine, but i am having trouble looking up
> > > attributes such as the
> > > base DN, CN, and so on. does anyone have any clue how to find
> > > this type of
> > > information on active directory?
> > >
> > > --
> > > To unsubscribe, e-mail:
> > >  [EMAIL PROTECTED]>
> > > For
> > > additional commands,
> > > e-mail: 
> > >
> >
> > --
> > To unsubscribe, e-mail:
> 
> > For additional commands, e-mail:
> 
> >
> >
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: LDAP Authentication with Tomcat 4.1.3

[Jonathan Eric Miller]

Have a look at these links. There is some new functionality in Tomcat 4.1
that isn't mentioned in the main end-user document yet that is in the second
link. Namely, how to get it to bind as a user to do the authentication
rather than querying for a password and comparing it.

http://jakarta.apache.org/tomcat/tomcat-4.1-doc/realm-howto.html#JNDIRealm

http://jakarta.apache.org/tomcat/tomcat-4.1-doc/catalina/docs/api/index.html

Jon

- Original Message -
From: "Josh Fenlason" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, June 12, 2002 8:28 AM
Subject: RE: LDAP Authentication with Tomcat 4.1.3


> I used to use Apache1.3.24 and Tomcat 3.2 and I did the ldap
authentication
> from Apache with two ou entries.  Now I'm moving to Apache2 but the ldap
> authentication modules don't seem to work, so I need to get Tomcat to do
the
> ldap authentication.  If anyone could give me a pointer, I would greatly
> appreciate it.  Thanks in advance.
> ,
> Josh.
>
> -Original Message-
> From: John Burgess [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, June 12, 2002 4:21 AM
> To: Tomcat Users List
> Subject: RE: LDAP Authentication with Tomcat 4.1.3
>
>
> Is having two OU entries OK?
>
> Best Wishes
> John Burgess
> [EMAIL PROTECTED]
> Tel: 01865 718666
> Fax: 01865 718600
>
>
> -Original Message-
> From: Josh Fenlason [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, June 11, 2002 9:12 PM
> To: Tomcat
> Subject: LDAP Authentication with Tomcat 4.1.3
>
>
> I'm trying to do LDAP Authentication in Tomcat 4.1.3.  I found some a
couple
> of links that said to use LDAPRealm in Tomcat's server.xml, but I still
> haven't had any luck.  Has anyone else been able to get this to work?
Here
> are the two Realm elements that I've tried in server.xml.  Any help would
be
> greatly appreciated.  Thanks.
> ,
> Josh.
>
>  debug="1"
> directoryUrl = "ldap://corvette.mn.ptc.com:389";
> searchBindDN = "ou-jfenlason_r62DC,ou=jfenlason,l=Arden
Hills,o=Bethel"
> searchBindCredentials = "mypassword"
> searchBaseContext = "o=PTC"
> searchFilter = "cn={0}"
> searchScopeAsString = "sub"
> securityAttributes = "securityEquals"
> attributesReadByOwner = "true"
> connectionMaxPoolSize = "10"
> ldapVersion = "3" />
>  ldapContextFactory="com.sun.jndi.ldap.LdapCtxFactory"
> ldapServer="ldap.corvette.mn.com"
> ldapPort="389"
> ldapDN="cn=%u,ou=jfenlason_r62DC,ou=jfenlason,l=Arden Hills,o=Bethel"
> ldapGroupContext="ou=jfenlason_r62DC,ou=jfenlason,l=Arden
> Hills,o=Bethel"
>
>
ldapGroupFilter="(&(uniquemember=%dn)(objectclass=groupOfUniqueNames))"
> ldapRoleAttribute="cn"
> debug="99" />
>
>
> --
> To unsubscribe, e-mail:
> 
> For additional commands, e-mail:
> 
>
> ---
> Incoming mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.365 / Virus Database: 202 - Release Date: 24/05/02
>
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.365 / Virus Database: 202 - Release Date: 24/05/02
>
>
> --
> To unsubscribe, e-mail:
> 
> For additional commands, e-mail:
> 
>
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: Re[3]: Roles in JNDIRealms

[Jonathan Eric Miller]

I think you can use whatever objectClass you want. The only filter that it
uses for finding roles is the string that you set roleSearch to.

Jon

- Original Message -
From: "Cristina Perez Sanchez" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Tuesday, June 11, 2002 3:36 AM
Subject: Re: Re[3]: Roles in JNDIRealms


> Hi,
>
> first, thanks for your answers.
>
> I would like to ask another question. I use Tomcat
> 4.0.3 and so I have to set roleSearch and create group
> objects that contain the DNs of users associated to.
> Which objectclass must be these group entries?
> groupOfUniqueNames objectclass? group class? Are both
> valid?
>
>
> Thanks,
>
> Cristina
>
>
> --- Jonathan Eric Miller <[EMAIL PROTECTED]>
> wrote:
> > Jacob,
> >
> > I'm happy to say that there is a new "bind as user"
> > mode in Tomcat 4.1.3
> > which verifies the user password by binding as them
> > to the directory, rather
> > than querying the directory for the password. You
> > are correct, previously it
> > wouldn't work with Active Directory (as well as any
> > other directory that
> > didn't store it's passwords in the specific format
> > that Tomcat wanted), but,
> > now it does. Now, if you don't set the userPassword
> > attribute, it operates
> > in "bind as user" mode. They haven't updated the
> > main end-user documentation
> > on JNDIRealm yet, but, if you look at the Catalina
> > developer docs, you'll
> > see what I'm referring to if you look at the
> > JNDIRealm class.
> >
> > Jon
> >
> > - Original Message -
> > From: "Ryan" <[EMAIL PROTECTED]>
> > To: "Tomcat Users List"
> > <[EMAIL PROTECTED]>; "Jacob Kjome"
> > <[EMAIL PROTECTED]>
> > Sent: Monday, June 10, 2002 4:55 PM
> > Subject: Re: Re[2]: Roles in JNDIRealms
> >
> >
> > > Jacob,
> > > I took a quick look at the source, but it looks
> > like
> > > the passwords are digested here also (i.e. will
> > not
> > > work with Active Directory). From what I
> > understand,
> > > with AD the authentication has to be done _on_ the
> > > server.
> > > Thanks,
> > > Ryan
> > >
> > > --- Jacob Kjome <[EMAIL PROTECTED]> wrote:
> > > > Hello Ryan,
> > > >
> > > > Check this out:
> > > >
> > http://www.peacetech.com/java/files/apache/tomcat/
> > > >
> > > > I haven't used it (nor have I used JNDIRealm at
> > all
> > > > so far), but I
> > > > grab stuff that looks like useful info off the
> > list
> > > > and put it in my
> > > > Vault ( http://www.personalmicrocosms.com/ )
> > from
> > > > time to time. Hopefully it is useful for you.
> > > >
> > > > Jake
> > > >
> > > > Monday, June 10, 2002, 3:18:15 PM, you wrote:
> > > >
> > > > R> Jonathan,
> > > > R> This is sort of off subject, but does your
> > Active
> > > > R> Directory setup work for Authentication?? It
> > > > seems to
> > > > R> me that it wouldn't since there is no
> > > > userPassword
> > > > R> attribute in AD, but I am hoping I'm wrong.
> > > > R> Thanks,
> > > > R> Ryan
> > > >
> > > > R> --- Jonathan Eric Miller
> > <[EMAIL PROTECTED]>
> > > > R> wrote:
> > > > >> If you are using Tomcat 4.1.3, there are two
> > > > modes
> > > > >> that you can use for
> > > > >> checking roles. If you set roleSearch, it
> > will
> > > > look
> > > > >> for search for group
> > > > >> objects that contain a list of users for each
> > > > group.
> > > > >> If you set
> > > > >> userRoleName, it will get the group
> > information
> > > > out
> > > > >> of the user's entry
> > > > >> instead. i.e. you don't need separate group
> > > > objects.
> > > > >>
> > > > >> If you are using Active Directory, I found
> > that
> > > > you
> > > > >> can use a setup similar
> > > > >> to the following.
> > > > >>
> > > >

Re: JDBC BASIC authentication and SSL

[Jonathan Eric Miller]

When you say that you configured SSL to work, do you mean you enabled HTTPS?
You may also want to enable SSL for the JDBC connection assuming the
database server is on a different host. The problem there is that many
databases don't support SSL. It depends on which DBMS your using. If you
want the password in the database encrypted, you have to use
digest.bat/digest.sh to generate the hashes and then store those hashes in
the database. You also need to set a property for JDBCRealm telling it which
hash algorithm it is that you're using.

Jon

- Original Message -
From: "Sefton, Adam" <[EMAIL PROTECTED]>
To: "'Tomcat Users List'" <[EMAIL PROTECTED]>
Sent: Tuesday, June 11, 2002 10:44 AM
Subject: JDBC BASIC authentication and SSL


> I am running Tomcat 4.0.3 standalone on Win2k.
>
> I've configured SSL to work and have JDBC realm authentication working
correctly, with BASIC authentication - is this now encrypted? So any admin
servlet I write to add new users to the database .. will the passwords be
encrypted? Or do I need to reference a method of the Realm class to ensure
that this is correctly encrypted?
>
> Also, does anybody know how to set up a custom error page for login
failure using BASIC authentication method.
>
> Thanks for any answers
>
> Adam
>
>
> **
> This message may contain information which is confidential or privileged.
> If you are not the intended recipient, please advise the sender
immediately
> by reply e-mail and delete this message and any attachments
> without retaining a copy.
>
> **
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: AW: SSL Certificates from a CA...

[Jonathan Eric Miller]

Here's a link to the Tomcat SSL How To document.

http://jakarta.apache.org/tomcat/tomcat-4.1-doc/ssl-howto.html

This is a link to the keytool documentation in the JDK.

http://java.sun.com/j2se/1.4/docs/tooldocs/tools.html

Note, it's also now possible to use a PKCS12 keystore. This would be useful
if you already had a private key/certificate that you were using with
OpenSSL/Apache and wanted to use that.

Jon

- Original Message -
From: "Sean M Alderman" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Tuesday, June 11, 2002 9:12 AM
Subject: Re: AW: SSL Certificates from a CA...


> On Tue, 2002-06-11 at 09:47, Sven Woltmann wrote:
> > If you use Apache's SSL functionality, you don't need Tomcat's, since
Apache
> > does all the SSL encrypting/decrypting for you.
>
> Can you point me in the right direction for the docs on these to
> setups?  Forgive me, but I don't recall seeing anything on configuration
> of Tomcat as Standalone versus w/ Apache.  I have apache installed and
> running in a different location (same server, different IP).  Now that
> you mention that I'm not sure which way I have Tomcat setup.  I start it
> with $CATALINA_HOME/bin/startup.sh
>
> >
> > If you use Tomcat standalone, you can use JDK's "keytool" to generate an
SSL
> > certificate request with the "-certreq" option.
> >
> > Sven
> >
> >
> > > -Ursprüngliche Nachricht-
> > > Von: Sean M Alderman [mailto:[EMAIL PROTECTED]]
> > > Gesendet: Dienstag, 11. Juni 2002 15:43
> > > An: Tomcat Users List
> > > Betreff: SSL Certificates from a CA...
> > >
> > >
> > > Greetings,
> > >   I just read through the SSL-HowTo for Tomcat and followed it to get
> > > things going with a test certificate.  Is there any
> > > documentation on how
> > > to generate a server certificate request for a CA?  I've done
> > > this with
> > > apache and mod_ssl using openSSL with out issue.  Are the
> > > openSSL tools
> > > interoperable with Tomcat?
> > >
> > > Thanks.
> > > --
> > > Sean M. Alderman
> > > ITRACK Systems Analyst
> > > PACE/NCI - NASA Glenn Research Center
> > > (216) 433-2795
> > >
> > > Calling a windowed operating system "Windows" is like naming an
> > > automobile "Wheels."
> > >
> > > --
> > > To unsubscribe, e-mail:
> > > 
> > > For additional commands, e-mail:
> > > 
> > >
> >
> > --
> > To unsubscribe, e-mail:

> > For additional commands, e-mail:

> >
> >
> --
> Sean M. Alderman
> ITRACK Systems Analyst
> PACE/NCI - NASA Glenn Research Center
> (216) 433-2795
>
> Calling a windowed operating system "Windows" is like naming an
> automobile "Wheels."
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: Re[2]: Roles in JNDIRealms

[Jonathan Eric Miller]

Jacob,

I'm happy to say that there is a new "bind as user" mode in Tomcat 4.1.3
which verifies the user password by binding as them to the directory, rather
than querying the directory for the password. You are correct, previously it
wouldn't work with Active Directory (as well as any other directory that
didn't store it's passwords in the specific format that Tomcat wanted), but,
now it does. Now, if you don't set the userPassword attribute, it operates
in "bind as user" mode. They haven't updated the main end-user documentation
on JNDIRealm yet, but, if you look at the Catalina developer docs, you'll
see what I'm referring to if you look at the JNDIRealm class.

Jon

- Original Message -
From: "Ryan" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>; "Jacob Kjome"
<[EMAIL PROTECTED]>
Sent: Monday, June 10, 2002 4:55 PM
Subject: Re: Re[2]: Roles in JNDIRealms


> Jacob,
> I took a quick look at the source, but it looks like
> the passwords are digested here also (i.e. will not
> work with Active Directory). From what I understand,
> with AD the authentication has to be done _on_ the
> server.
> Thanks,
> Ryan
>
> --- Jacob Kjome <[EMAIL PROTECTED]> wrote:
> > Hello Ryan,
> >
> > Check this out:
> > http://www.peacetech.com/java/files/apache/tomcat/
> >
> > I haven't used it (nor have I used JNDIRealm at all
> > so far), but I
> > grab stuff that looks like useful info off the list
> > and put it in my
> > Vault ( http://www.personalmicrocosms.com/ ) from
> > time to time. Hopefully it is useful for you.
> >
> > Jake
> >
> > Monday, June 10, 2002, 3:18:15 PM, you wrote:
> >
> > R> Jonathan,
> > R> This is sort of off subject, but does your Active
> > R> Directory setup work for Authentication?? It
> > seems to
> > R> me that it wouldn't since there is no
> > userPassword
> > R> attribute in AD, but I am hoping I'm wrong.
> > R> Thanks,
> > R> Ryan
> >
> > R> --- Jonathan Eric Miller <[EMAIL PROTECTED]>
> > R> wrote:
> > >> If you are using Tomcat 4.1.3, there are two
> > modes
> > >> that you can use for
> > >> checking roles. If you set roleSearch, it will
> > look
> > >> for search for group
> > >> objects that contain a list of users for each
> > group.
> > >> If you set
> > >> userRoleName, it will get the group information
> > out
> > >> of the user's entry
> > >> instead. i.e. you don't need separate group
> > objects.
> > >>
> > >> If you are using Active Directory, I found that
> > you
> > >> can use a setup similar
> > >> to the following.
> > >>
> > >> This goes in server.xml,
> > >>
> > >>  > >> className="org.apache.catalina.realm.JNDIRealm"
> > >>  debug="99"
> > >>  connectionName="myadminuser@mydomain"
> > >>  connectionPassword="myadminpassword"
> > >>  connectionURL="ldap://mydomaincontroller";
> > >>  userBase="cn=Users, dc=mydomain"
> > >>  userRoleName="memberOf"
> > >>  userSearch="(userPrincipalName={0}@mydomain)"/>
> > >>
> > >> Group membership is stored in an attribute named
> > >> memberOf in Active
> > >> Directory. myadminuser doesn't really have to be
> > an
> > >> admin user in AD. It
> > >> just has to have read permission to the memberOf
> > >> attribute which is visible
> > >> to normal user accounts by default.
> > >>
> > >> This goes in web.xml,
> > >>
> > >> 
> > >>  
> > >>   Tomcat
> > >>   /*
> > >>  
> > >>  
> > >>
> > >>
> > R>
> >
> CN=Tomcat,CN=Users,DC=mydomain
> > >>  
> > >> 
> > >> 
> > >>  BASIC
> > >>  Tomcat
> > >> 
> > >>
> > >> In the above example, I created a group in the
> > Users
> > >> container named Tomcat.
> > >> If you want to see how things are organized in
> > >> Active Directory, you can use
> > >> LDIFDE to dump the directory into an LDIF file.
> > >> That's how I figured it out.
> > >>
> > >>

Re: Roles in JNDIRealms

[Jonathan Eric Miller]

If you are using Tomcat 4.1.3, there are two modes that you can use for
checking roles. If you set roleSearch, it will look for search for group
objects that contain a list of users for each group. If you set
userRoleName, it will get the group information out of the user's entry
instead. i.e. you don't need separate group objects.

If you are using Active Directory, I found that you can use a setup similar
to the following.

This goes in server.xml,

ldap://mydomaincontroller";
 userBase="cn=Users, dc=mydomain"
 userRoleName="memberOf"
 userSearch="(userPrincipalName={0}@mydomain)"/>

Group membership is stored in an attribute named memberOf in Active
Directory. myadminuser doesn't really have to be an admin user in AD. It
just has to have read permission to the memberOf attribute which is visible
to normal user accounts by default.

This goes in web.xml,


 
  Tomcat
  /*
 
 
  CN=Tomcat,CN=Users,DC=mydomain
 


 BASIC
 Tomcat


In the above example, I created a group in the Users container named Tomcat.
If you want to see how things are organized in Active Directory, you can use
LDIFDE to dump the directory into an LDIF file. That's how I figured it out.

Jon

- Original Message -
From: "Cristina Perez Sanchez" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, June 10, 2002 9:10 AM
Subject: Roles in JNDIRealms


> Hi,
>
> could anyone tell me what objectclass must be group
> entries that represent roles associated to users in
> JNDIRealms?? I use groupOfUniqueNames as objectclass
> but I would like to know if the objectclass group is
> more proper or if the objectclass isn´t relevant.
>
>
> Thanks for advance,
>
> Cristina
>
> __
> Do You Yahoo!?
> Yahoo! - Official partner of 2002 FIFA World Cup
> http://fifaworldcup.yahoo.com
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Tomcat 4.0 nightly build binary downloads broken?

[Jonathan Eric Miller]

I found that it looks like the nightly binary builds are broken. As you can
see, for some reason the many of the file sizes are only 45 bytes. Also, the
.zip file builds are missing.

http://jakarta.apache.org/builds/jakarta-tomcat-4.0/nightly/

of /builds/jakarta-tomcat-4.0/nightly
 Name   Last modified  Size  Description
Parent Directory-
 jakarta-tomcat-4.0-20020524.tar.gz 24-May-2002 02:57   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020525.tar.gz 25-May-2002 02:44  5.1M  GZIP compressed
file
 jakarta-tomcat-4.0-20020525.zip25-May-2002 02:52  6.6M
 jakarta-tomcat-4.0-20020526.tar.gz 26-May-2002 03:02   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020527.tar.gz 27-May-2002 03:01   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020528.tar.gz 28-May-2002 03:02  5.1M  GZIP compressed
file
 jakarta-tomcat-4.0-20020528.zip28-May-2002 03:10  6.6M
 jakarta-tomcat-4.0-20020529.tar.gz 29-May-2002 03:11  5.1M  GZIP compressed
file
 jakarta-tomcat-4.0-20020529.zip29-May-2002 03:18  6.6M
 jakarta-tomcat-4.0-20020530.tar.gz 30-May-2002 03:17  5.1M  GZIP compressed
file
 jakarta-tomcat-4.0-20020530.zip30-May-2002 03:27  6.6M
 jakarta-tomcat-4.0-20020531.tar.gz 31-May-2002 02:59   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020601.tar.gz 01-Jun-2002 02:59   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020602.tar.gz 02-Jun-2002 03:00   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020603.tar.gz 03-Jun-2002 03:00   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020604.tar.gz 04-Jun-2002 03:08   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020605.tar.gz 05-Jun-2002 03:00   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020606.tar.gz 06-Jun-2002 02:58   45   GZIP compressed
file
 jakarta-tomcat-4.0-20020607.tar.gz 07-Jun-2002 03:02   45   GZIP compressed
file
 src/   07-Jun-2002 03:04-
 test1/ 02-May-2002 01:02-

Apache/2.0.37-dev Server at jakarta.apache.org Port 80

Jon



--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

GlobalNamingResources element required in Tomcat 4.1.2?

[Jonathan Eric Miller]

I noticed that you will receive the following error if you do not have a
GlobalNamingResources element in your server.xml file for Tomcat 4.1.2.
IMHO, this tag shouldn't be required because sometimes you might not having
anything to put in that section. i.e. I want to use JNDIRealm, not the
UserDatabaseRealm, therefore, I don't really have anything that I need to
put in that section.

java.lang.NullPointerException
at
org.apache.catalina.core.NamingContextListener.lifecycleEvent(NamingC
ontextListener.java:269)
at
org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(Lifecycl
eSupport.java:166)
at
org.apache.catalina.core.StandardServer.start(StandardServer.java:698
)
at org.apache.catalina.startup.Catalina.start(Catalina.java:504)
at org.apache.catalina.startup.Catalina.execute(Catalina.java:399)
at org.apache.catalina.startup.Catalina.process(Catalina.java:179)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.
java:39)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
sorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:203)

Jon



--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: [Coyote] Coyote 1.0 Release Candidate 2 available

[Jonathan Eric Miller]

Remy,

Can you tell me if org.apache.coyote.tomcat4.CoyoteServerSocketFactory when
used for SSL supports the keystoreType attribute? As far as I can tell, it
doesn't. I'm hoping to be able to use it with a PKCS12 keystore rather than
the default JKS keystore. This works fine using the old HTTP connector, but,
not with Coyote.

Jon

- Original Message -
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Wednesday, May 22, 2002 12:26 AM
Subject: [Coyote] Coyote 1.0 Release Candidate 2 available


> Coyote 1.0 RC 2 is now available, and includes:
> - HTTP/1.1 protocol handler
> - JK 2 protocol handler, with support for the AJP 1.3 protocol
> - An adapter for Tomcat 3.3.x
> - An adapter for Tomcat 4.x
>
> The only change over RC 1 is fixing compatibility with Tomcat 4.0.x.
>
> Note: The version of Coyote included in Tomcat 4.0.4 Beta 3 (Coyote 1.0
Beta
> 9) was not subject to this problem.
>
> Binaries can be downloaded at:
>
http://jakarta.apache.org/builds/jakarta-tomcat-connectors/coyote/release/v1
> .0-rc2/
>
> Installation instructions for both 3.3.x and 4.0.x are given on the
download
> page. The Tomcat 4.1.x milestones already include this new connector, and
> use it for HTTP/1.1 and AJP 1.3 support.
>
> Remy
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: JNDI/LDAP/JSP Example?

[Jonathan Eric Miller]

I have some Java servlet example applications that do this that I can send
you if you want. I don't know JSP, so, I don't know if you can easily
translate it to JSP or not. I would assume that you can do all the same
things using JSP that you can in servlets, just using different syntax?

Jon

- Original Message -
From: "Allen Chesley" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, May 15, 2002 6:48 PM
Subject: Re: JNDI/LDAP/JSP Example?


> Very nice, but not quite what I need.
>
> For one, user authentication in JNDIRealms is not working, and won't until
> Tomcat 4.1 or later.  That means I cannot use it to log in users, only the
> admin entry embedded in the code.
>
> For another, I want to access and store DATA in an LDAP server, not just
use
> it to authenticate.  I need to know how to set up a structure to allow me
to
> both read (unauthenticated) and modify (authenticated) using JSP's.
>
> Like I said, there is a fair number of examples of how to do it using a
> standalone JAVA app, and how to use JDBC to do it in a JSP, but none that
I
> can find that combine LDAP accesses with JSP.
>
> Chakradhar Tallam wrote:
>
> > http://www.vsj.co.uk/archive/Feb2002/Javanet/javanet1-0202.asp
> > http://jakarta.apache.org/tomcat/tomcat-4.0-doc/realm-howto.html
> >
> > ct
> >
> > -Original Message-
> > From: Allen Chesley [mailto:[EMAIL PROTECTED]]
> > Sent: Thursday, 16 May 2002 8:31 AM
> > To: Tomcat User Mail List
> > Subject: JNDI/LDAP/JSP Example?
> >
> > Does anyone know a good reference for a working application that uses
> > LDAP with JNDI in JSP (with or without Beans)?
> >
> > I have read all of the existing documents/pages I can find, and they all
> > show JNDI/LDAP with JAVA apps.  I assume that something similar to a
> > JDBC Context would be appropriate, but I have been unable to figure out
> > where the differences lie.
> >
> > --
> > Allen L. Chesley
> > Senior Systems Engineer
> > Raytheon
> >
> > --
> > To unsubscribe, e-mail:
> > 
> > For additional commands, e-mail:
> > 
>
> --
> Allen L. Chesley
> Senior Systems Engineer
> Raytheon
>
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

org.apache.coyote.tomcat4.CoyoteServerSocketFactory doesn't support keystoreType attribute?

[Jonathan Eric Miller]

This question is probably for Remy.

Does the CoyoteServerSocketFactory class that you use with CoyoteConnector
to use SSL not support the keystoreType attribute? I tried it out using the
following, and it doesn't work. I receive a "Catalina.start:
LifecycleException:  Protocol handler initialization failed:
java.io.IOException: Invalid keystore format" error, so, I'm assuming that
this attribute is probably just being ignored. It works OK if I use the
usual SSLServerSocketFactory and HttpConnector classes instead.





Jon



--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: CoyoteConnector with SSL no longer works, was Re: [ANNOUNCEMENT] Tomcat 4.0.4 Beta 3 released

[Jonathan Eric Miller]

Thanks, but, unless I'm overlooking something the factory is still listed as
org.apache.catalina.net.SSLServerSocketFactory (for use with HttpConnector).
There is no example for SSL with Coyote in the provided server.xml.

Jon

- Original Message -
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, May 15, 2002 10:36 AM
Subject: Re: CoyoteConnector with SSL no longer works, was Re:
[ANNOUNCEMENT] Tomcat 4.0.4 Beta 3 released


> > I just noticed that the CoyoteConnector no longer seems to work. I'm
using
> > the config listed below for my server.xml. This worked fine with Tomcat
> > 4.0.4b2-01 and Coyote 1.0b5. Now, it just hangs.
>
> The syntax changed (the factory classname you have to use with Coyote is
> different). Please refer to the bundled server.xml.
>
> Remy
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

CoyoteConnector with SSL no longer works, was Re: [ANNOUNCEMENT] Tomcat 4.0.4 Beta 3 released

[Jonathan Eric Miller]

I just noticed that the CoyoteConnector no longer seems to work. I'm using
the config listed below for my server.xml. This worked fine with Tomcat
4.0.4b2-01 and Coyote 1.0b5. Now, it just hangs.


 
  
  
   
  
  
   
   



   
  
 


Jon

- Original Message -
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Saturday, May 11, 2002 6:15 PM
Subject: [ANNOUNCEMENT] Tomcat 4.0.4 Beta 3 released


> The third beta release of Tomcat 4.0.4 has been released. This release
> includes bugfixes and small feature additions over Tomcat 4.0.2/4.0.3
> (please refer to the release notes for the complete list).
>
> Release notes:
>
http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.4-b3/RELEAS
> E-NOTES
>
> Downloads (source and binaries):
> http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.4-b3/
>
> Remy
>
>
> --
> To unsubscribe, e-mail:

> For additional commands, e-mail:

>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: [ANNOUCEMENT] Apache Tomcat 4.1.0 Alpha

[Jonathan Eric Miller]

Unless the docs just haven't been updated yet, it looks like it still has
the same JNDI Realm support that it had before. i.e. it uses an admin DN to
log into the LDAP server and then queries the userPassword attribute for the
user and compares the passwords. I'm hoping that the method where it does an
LDAP bind as the user himself will be implemented. I know someone had a
patch that does this. The question is whether or not that patch will be in
4.1 or not.

Jon

- Original Message -
From: "Rick Fincher" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>; "Jonathan Eric
Miller" <[EMAIL PROTECTED]>
Sent: Monday, May 06, 2002 1:16 PM
Subject: Re: [ANNOUCEMENT] Apache Tomcat 4.1.0 Alpha


> Hi Jon,
>
> I have not used it, so I can't say how well it works but the 4.1
server.xml
> and example webapps have examples showing how use JNDI for that.  The
admin
> webapp (kind of confusing terminology, manager now refers mostly to
> persistence management and the admin webapp is the administration
interface)
> will use it to administer users, roles, etc.
>
> Rick
>
> > Does anyone know if this release contains the new JNDI Realm code that
> > allows you to authenticate users using LDAP binds instead of querying
the
> > directory for the password and comparing?
> >
> > Jon
> >
>
>
>
> --
> To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
> For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
>


--
To unsubscribe, e-mail:   <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>

Re: [ANNOUCEMENT] Apache Tomcat 4.1.0 Alpha

[Jonathan Eric Miller]

Does anyone know if this release contains the new JNDI Realm code that
allows you to authenticate users using LDAP binds instead of querying the
directory for the password and comparing?

Jon

- Original Message -
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: "Tomcat Developers List" <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Friday, May 03, 2002 11:25 PM
Subject: [ANNOUCEMENT] Apache Tomcat 4.1.0 Alpha


> Apache Tomcat 4.1.0 Alpha, the first milestone of the 4.1.x release cycle,
> is now available.
>
> Over Tomcat 4.0.x, Tomcat 4.1.x includes the following major new features:
> * JMX based administration features
> * JSP and Struts based administration web application
> * New Coyote HTTP/1.1 connector
> * New Coyote JK2 AJP 1.3 connector
> * Rewritten Jasper JSP page compiler
> * Performance and memory efficiency improvements
> * Enhanced manager application support for integration with development
> tools.
> * Custom Ant tasks to interact with the manager application directly
>   from build.xml scripts.
> * Many other miscanellous improvements
>
> Note: In the 4.1.0 release, the administration web application is not
fully
> functional. It will be addressed in the next release.
>
> Downloads (source and binaries):
> http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.1.0-alpha/
>
> Remy
>
>
> --
> To unsubscribe:   
> For additional commands: 
> Troubles with the list: 
>


--
To unsubscribe, e-mail:   
For additional commands, e-mail: 

Re: How to enforce SSL???

[Jonathan Eric Miller]

I think if you add something similar to the following to the web.xml file
for your application, it will make it automatically redirect from HTTP to
HTTPS.



Tomcat
/*


CONFIDENTIAL



As far as requiring a particular encryption strength, the only way I know
how to do it is to check the following attributes. i.e. as far as I know
there isn't a flag in the web.xml file that you can use in order to require
128 bit encryption.
req.getAttribute("javax.servlet.request.cipher_suite")

req.getAttribute("javax.servlet.request.key_size")

javax.servlet.request.cipher_suite: SSL_RSA_WITH_RC4_128_MD5

javax.servlet.request.key_size: 128

Jon

- Original Message -
From: "Steve D George" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, April 26, 2002 11:04 AM
Subject: How to enforce SSL???


> Hi, I'm working with a standalone Tomcat 4.0.2 on W2K. I've just gone
> through the SSL How To and created myself a little certificate and got
> everything working over SSL. I can access all my pages over HTTP or HTTPS.
>
> My question now is how to enforce the use of HTTPS for a given page. The
> SSL How To says that any page that absolutely requires SSL should check
the
> protocol of the request and take the appropriate action, by which I
presume
> it means that you code a redirect to the same page but over https.
>
> Is this the standard way to enforce it though. I sort of imagined that you
> would be able to say that any page in a certain directory should be served
> over HTTPS and just let tomcat handle it for you?
>
> Thanks for any  help,
>
> Have a great weekend everyone!
>
> Cheers,
>
> Steve.
>
>
> --
> To unsubscribe:   
> For additional commands: 
> Troubles with the list: 
>


--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Re: JNDI Realm with Tomcat 4.0.1 and Netscape LDAP

[Jonathan Eric Miller]

I don't know if you noticed, but, the password has to be stored as a hex
string rather than a base64 encoded string in the directory in order for it
to work. I think there is a patch that is supposed to fix this that I think
is supposed to be included when Tomcat 4.1 comes out. Also, there's supposed
to be another method of authentication where it binds as the user themself
rather than as the administrator and querying in order to verify the user's
password.

Jon

- Original Message -
From: "Allen Chesley" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, April 12, 2002 11:20 AM
Subject: JNDI Realm with Tomcat 4.0.1 and Netscape LDAP


> I am having problems trying to get a Tomcat 4.0.3 installation to
> authenticate to a Netscape LDAP server using the "built-in" capability.
> Configuration:
> Solaris 8, patched to date
> Netscape Directory Server 4.16
> Tomcat 4.0.1
> J2SDK v1.4
> Apache 1.3.23
>
> I have edited the server.xml file to include a JNDIRealm entry as below:
>
>contextFactory="com.netscape.jndi.ldap.LdapContextFactory"
>   debug="999"
>   digest="SHA"
>   connectionName="uid=tomcat,ou=Special Users,o=mydomain.com"
>   connectionPassword="secret"
>   connectionURL="ldap://ldapserver.mydoman.com:389";
>   roleBase="ou=People,o=mydomain.com"
>   roleName="cn"
>   roleSearch="(uniqueMember={0})"
>   roleSubtree="true"
>   userpassword="userpassword"
>   userPattern="uid={0},ou=People,o=mydomain.com" />
>
> I have confirmed that I am contacting the LDAP server, finding the user
> account, and downloading the userPassword attribute, but authentication
> always fails.
>
> I have tried both th Sun and Netscape context factories with no
> difference.
> I have confirmed that the DN from the server uses the UID and not the
> CN.
> I have tried changeing the roleName to UID.
> I have tried deleting and changing the digest value.
> I have tried setting the roleSubtree to both true and false.
> I have confirmed tht my role groups are under ou=People,o=mydomain.com
> with the user accounts.
>
> Any ideas/help?  Has any body gotten the JNDIRealm in Tomcat 4 to work
> with Netscape?
> --
> Allen L. Chesley
> Senior Systems Engineer
> Raytheon
>
>
>
> --
> To unsubscribe:   
> For additional commands: 
> Troubles with the list: 
>


--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Re: JNDI realm against win2000 DC (REPOST SORRY)

[Jonathan Eric Miller]

As far as I know, you won't be able to do this until Tomcat 4.1 is released.
In the current version of Tomcat, it binds as an administrator and then
queries for the user's password and compares it to that which was provided
by the user. This comparison takes place on the client-side. i.e. in Tomcat
itself. There is another way to do this where it binds as the user himself.
This is really what you need. Someone provided a patch that does this and
from what I've heard it will most likely be introduced when Tomcat 4.1 comes
out. I don't think the patch included SSL support though. Hopefully, they
will put that in there too. Otherwise, that would be pretty problematic as
well.

Jon

- Original Message -
From: "Soefara Redzuan" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, April 12, 2002 7:57 AM
Subject: Re: JNDI realm against win2000 DC (REPOST SORRY)


> No sooner have I hit send then I find the solution for you !!
>
> http://forum.java.sun.com/thread.jsp?forum=51&thread=194669
>
> Please do let us know if it works.
>
> Soefara.
>
> >From: "Soefara Redzuan" <[EMAIL PROTECTED]>
> >Reply-To: "Tomcat Users List" <[EMAIL PROTECTED]>
> >To: [EMAIL PROTECTED]
> >Subject: Re: JNDI realm against win2000 DC (REPOST SORRY)
> >Date: Fri, 12 Apr 2002 20:55:31 +0800
> >
> >Do you mean authentication against a Windows 2000 Active Directory ? The
> >latter is based upon LDAP I believe and therefore should be accessible.
At
> >least that's what the JNDI FAQ implies
> >http://java.sun.com/products/jndi/faq.html
> >
> >However, for authentication purposes, you need to communicate with the
> >server via SSL. I've never managed to get this to work successfully but
> >there are quite a few references in the forums. For example
> >http://forum.java.sun.com/thread.jsp?forum=51&thread=91182
> >
> >Please do let us know if you get it working. I'm sure there are many
people
> >who would love to use it too.
> >
> >Soefara.
> >
> >
> >
> >
> >
> >>From: "Jacob Lund" <[EMAIL PROTECTED]>
> >>Reply-To: "Tomcat Users List" <[EMAIL PROTECTED]>
> >>To: <[EMAIL PROTECTED]>
> >>Subject: JNDI realm against win2000 DC (REPOST SORRY)
> >>Date: Fri, 12 Apr 2002 14:39:07 +0200
> >>
> >>Sorry about this repost, but it is really bugging me!
> >>
> >>
> >>Does anyone have a TC 4.0.x configured with a JNDI realm against a
> >>windows 2000 domain controller? Or maybe just know how to set this up!
> >>
> >>I have been looking at the JNDI how-to and I cannot get it working.
> >>
> >>Thanks,
> >>Jacob
> >>
> >>
> >>--
> >>To unsubscribe:   
> >>For additional commands: 
> >>Troubles with the list: 
> >>
> >
> >
> >_
> >Chat with friends online, try MSN Messenger: http://messenger.msn.com
> >
> >
> >--
> >To unsubscribe:   
> >For additional commands: 
> >Troubles with the list: 
> >
>
>
> _
> Join the world's largest e-mail service with MSN Hotmail.
> http://www.hotmail.com
>
>
> --
> To unsubscribe:   
> For additional commands: 
> Troubles with the list: 
>


--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Re: [ANNOUNCEMENT] Tomcat 4.0.4 Beta 2 released

[Jonathan Eric Miller]

It is possible to use the Coyote connector for SSL connections as well?

Jon

- Original Message -
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Tuesday, March 26, 2002 1:34 PM
Subject: [ANNOUNCEMENT] Tomcat 4.0.4 Beta 2 released


> The second beta release of Tomcat 4.0.4 has been released. This release
> includes bugfixes and small feature additions over Tomcat 4.0.2/4.0.3
> (please refer to the release notes for the complete list).
>
> Of particular interest in this beta release is the inclusion of a new
> standalone HTTP/1.1 connector, called Coyote. Coyote brings increased
> performance and better scalability to Tomcat over the old connector. The
> connector can be enabled by uncommenting an element in the Tomcat
server.xml
> configuration file.
>
> Release notes:
>
http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.4-b2/RELEAS
> E-NOTES
>
> Downloads (source and binaries):
> http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.4-b2/
>
> Remy
>
>
> --
> To unsubscribe:   
> For additional commands: 
> Troubles with the list: 
>


--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Re: Tomcat 4.0.4-b2 available?

[Jonathan Eric Miller]

Thanks!

Jon

- Original Message -
From: "Remy Maucherat" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Tuesday, March 26, 2002 1:00 AM
Subject: Re: Tomcat 4.0.4-b2 available?


> > I noticed that the following directory now exists on the Jakarta Web
site.
> >
> >
http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.4-b2/bin/
> >
> > Does this mean that 4.0.4-b2 is out? Or, is that a nightly build?
>
> There was no announcement, so it is not out yet. The binaries were
uploaded
> for verification (and it turns out there are issues with them, so that
will
> be modified).
>
> > Also, anyone know if this release will contain the JNDIRealm
enhancements?
> I
> > think Craig was saying that they wouldn't necessarily be in there since
> they
> > are enhancements rather than bug fixes?
>
> I think this will be in the 4.1 release cycle.
>
> Remy
>
>
> --
> To unsubscribe:   
> For additional commands: 
> Troubles with the list: 
>


--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Tomcat 4.0.4-b2 available?

[Jonathan Eric Miller]

I noticed that the following directory now exists on the Jakarta Web site.

http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.4-b2/bin/

Does this mean that 4.0.4-b2 is out? Or, is that a nightly build?

Also, anyone know if this release will contain the JNDIRealm enhancements? I
think Craig was saying that they wouldn't necessarily be in there since they
are enhancements rather than bug fixes?

Jon



--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Re: JNDIRealm with bind as user functionality

[Jonathan Eric Miller]

Thanks for the info. Can you tell me where I would download it from? So,
you're saying it would be in a directory other than the following?

http://jakarta.apache.org/builds/jakarta-tomcat-4.0/nightly/

Thanks, Jon

- Original Message -
From: "Craig R. McClanahan" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>; "Jonathan Eric
Miller" <[EMAIL PROTECTED]>
Sent: Friday, March 15, 2002 5:14 PM
Subject: Re: JNDIRealm with bind as user functionality


>
>
> On Fri, 15 Mar 2002, Jonathan Eric Miller wrote:
>
> > Date: Fri, 15 Mar 2002 15:36:09 -0600
> > From: Jonathan Eric Miller <[EMAIL PROTECTED]>
> > Reply-To: Tomcat Users List <[EMAIL PROTECTED]>,
> >  Jonathan Eric Miller <[EMAIL PROTECTED]>
> > To: Tomcat User List <[EMAIL PROTECTED]>
> > Subject: JNDIRealm with bind as user functionality
> >
> > Does anyone know if JNDIRealm is going to be fixed up anytime soon so
that
> > the bind as user functionality is in there?
> >
> > I know someone had a patch for this. I'm wondering if that patch is
going to
> > be integrated into the main distribution.
> >
>
> Interesting timing ... I committed the patch a couple of hours ago :-).
>
> It will be in tonight's nightly build, which runs off the HEAD branch.
> Seeing as how it is an enhancement, it may or may not get added into the
> 4.0 branch (which is focused on bug fixes, while new features get put into
> the following release).  In theory, the new JNDIRealm class should work in
> a 4.0.x environment, but I haven't tested it that way.
>
> > Jon
> >
>
> Craig
>
>
> --
> To unsubscribe:   <mailto:[EMAIL PROTECTED]>
> For additional commands: <mailto:[EMAIL PROTECTED]>
> Troubles with the list: <mailto:[EMAIL PROTECTED]>
>


--
To unsubscribe:   <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>

JNDIRealm with bind as user functionality

[Jonathan Eric Miller]

Does anyone know if JNDIRealm is going to be fixed up anytime soon so that
the bind as user functionality is in there?

I know someone had a patch for this. I'm wondering if that patch is going to
be integrated into the main distribution.

Jon



--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Re: Warp Connector still broken in 4.0.3 on Win platforms...

[Jonathan Eric Miller]

According to the announcement, 4.0.3 is really just 4.0.2 with a security
patch applied. So, I'm pretty sure any other post 4.0.2 fixes won't be in
there.

Jon

- Original Message -
From: "Andrzej Jan Taramina" <[EMAIL PROTECTED]>
To: "tomcat Users List" <[EMAIL PROTECTED]>
Sent: Sunday, March 03, 2002 4:56 PM
Subject: Warp Connector still broken in 4.0.3 on Win platforms...


> Just an FYI...I installed Tomcat 4.0.3 and the Warp Connector (mod_webapp)
> still dies when trying to transmit binary (eg. gif images) data between
Tomcat
> and Apache 1.3.23 on a Windows box.
>
> Rebuilt the connector from latest snapshot (Sunday)...same problem.
>
> Sure wish someone would look at this.
>
> This is a posted bug:
>
> http://nagoya.apache.org/bugzilla/show_bug.cgi?id=6621
>
>
> Andrzej Jan Taramina
> Chaeron Corporation: Enterprise System Solutions
> http://www.chaeron.com
>
>
> --
> To unsubscribe:   
> For additional commands: 
> Troubles with the list: 
>


--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Re: Re: Using JNDIRealm with password digesting and Netscape Directory Structure

[Jonathan Eric Miller]

The last I heard, it was on the to do list. The current setup is pretty much
unusable. i.e. no TLS/SSL and you have to either store a clear-text password
in the directory or as a hex string which a directory wouldn't normally do.
i.e. normally, it would store it as a base64 encoded string as you listed
below.

Jon

- Original Message -
From: "jay n gaba" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Monday, February 18, 2002 2:34 AM
Subject: Re: Re: Using JNDIRealm with password digesting and Netscape
Directory Structure


>
> hi
>
> Has the bind style authentication been implemented?? has anyone tried it??
>
> How does it work? I mean when I authenticate using bind style why is the
password ignored? I will seach on the web but would appreciate if someone
gives me a pointer.
>
> Thanks&Regards
> jay
>
> On Sat, 16 Feb 2002 Jonathan Eric Miller wrote :
> > How about bind-style authentication to the directory?
> > Is that on the todo
> > list? If you implement that, you no longer need to
> > worry about supporting
> > all the varying password formats.
> >
> > Jon
> >
> > - Original Message -
> > From: "jay n gaba" <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Sent: Friday, February 15, 2002 12:47 PM
> > Subject: Using JNDIRealm with password digesting and
> > Netscape Directory
> > Structure
> >
> >
> > >
> > > Hi
> > > Has anyone solved the following problem regarding the
> > digest password
> > >
> > > please give me some hint;
> > >
> > > thanks
> > >
> > > regards
> > > jay
> > >
> > > Hi,
> > > >
> > > > I'm trying to use tomcat's JNDIRealm with OpenLDAP.
> > I've
> > > converted my
> > > > passwords to digest format in the LDAP directory
> > instead of
> > > plain text.
> > > >
> > > > Apparently, tomcat only excepts only hex formatted
> > password
> > > where openLDAP
> > > > provides passwords of the format
> > > > {crypt}X where crypt = { SHA, MD, ... } and XXX
> > is a base64
> > > encoded
> > > > integer.
> > > >
> > > > Is there a way to configure tomcat to accept this
> > format of
> > > passwords? If
> > > > so does this require any recompilation of
> > > > tomcat?
> > > >
> > >
> > > Supporting passwords in this format (with the leading
> > {foo} prefix)
> > > is
> > > high on my TODO list of enhancements for JNDIRealm --
> > along with
> > > other
> > > improvements -- but it hasn't been done yet.
> > >
> > > > Thanks for your help,
> > > > --  Dirk
> > > >
> > >
> > >
> > >
> > > --
> > > To unsubscribe:   <mailto:tomcat-user-unsubscribe@jaka-
> > rta.apache.org>
> > > For additional commands: <mailto:tomcat-user-help@jaka-
> > rta.apache.org>
> > > Troubles with the list: <mailto:tomcat-user-owner@jaka-
> > rta.apache.org>
> > >
> >
> subscribe:   <mailto:tomcat-user-unsubscribe@jakart-
> > a.apache.org>
> > For additional commands: <mailto:tomcat-user-help@jakart-
> > a.apache.org>
> > Troubles with the list: <mailto:tomcat-user-owner@jakart-
> > a.apache.org>
> >
>
>
>
> --
> To unsubscribe:   <mailto:[EMAIL PROTECTED]>
> For additional commands: <mailto:[EMAIL PROTECTED]>
> Troubles with the list: <mailto:[EMAIL PROTECTED]>
>


--
To unsubscribe:   <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>

Bug in the Bug Database?

[Jonathan Eric Miller]

There seems to be a bug in the Bug Database as it appears to be down right
now.

http://nagoya.apache.org/bugzilla/

Jon



--
To unsubscribe:   
For additional commands: 
Troubles with the list: 

Re: Jakarta Tomcat Error Message Information Disclosure Vulnerability?

[Jonathan Eric Miller]

What I'm saying is that the page that is displayed by default doesn't seem
to be displaying any information of any value aside from the name and
version of the Web server.

Jon

- Original Message -
From: "Ricky Leung" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, February 20, 2002 3:44 PM
Subject: RE: Jakarta Tomcat Error Message Information Disclosure
Vulnerability?


> The link that you send already has the answer to the problem, just some
> people might not implement it and therefore give it away how things are
> organized/setup.
>
> -Original Message-
> From: Jonathan Eric Miller [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, February 20, 2002 4:34 PM
> To: Tomcat User List
> Subject: Jakarta Tomcat Error Message Information Disclosure
> Vulnerability?
>
>
> Does anyone know if this vulnerability still exists? It says that 4.0.1
> suffers from this vulnerability, but, I don't see anything out of the
> ordinary when I try it on mine.
>
> http://online.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=3199
>
> Jon
>
>
>
> --
> To unsubscribe:   <mailto:[EMAIL PROTECTED]>
> For additional commands: <mailto:[EMAIL PROTECTED]>
> Troubles with the list: <mailto:[EMAIL PROTECTED]>
>
>
>
> --
> To unsubscribe:   <mailto:[EMAIL PROTECTED]>
> For additional commands: <mailto:[EMAIL PROTECTED]>
> Troubles with the list: <mailto:[EMAIL PROTECTED]>
>


--
To unsubscribe:   <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>

Jakarta Tomcat Error Message Information Disclosure Vulnerability?

[Jonathan Eric Miller]

Does anyone know if this vulnerability still exists? It says that 4.0.1
suffers from this vulnerability, but, I don't see anything out of the
ordinary when I try it on mine.

http://online.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=3199

Jon



--
To unsubscribe:   
For additional commands: 
Troubles with the list: