Page not able to display Tomcat 6.0.18
Hi Tryes this Question on Google /Yahoo but non of the answers are satisfactory. SPEC Tomcat 6.0.18 Jdk 1.6 O/s Win / Unix / Linux For Upload File feature in a custom built web application, We observed the following on load with various time stamp across the O/s. Same File uploaded with same no of records in the flat (*.txt) file Page not able to display message is displayed in IE 6, but in fire fox 3.0 the screen becomes blank Win O/s : 25 minuts. Linux O/s : 10 minuts HpUnix: 15 minuts Note:- 1) Sessions , DB JNDI / Connection Pooling process are used for the same. 2) The uploaded file is parsed with complex validation and inserted into the DB. With regards Karthik
by passing virtualhost when accessing an app?
Hi, Say I have app deployed as www.myapp.com, for sake of debugging I'd like to access it without the virtual host approach, maybe just http://127.0.0.1:8080~www.myapp.com, possible? Thanks. -- View this message in context: http://www.nabble.com/by-passing-virtualhost-when-accessing-an-app--tp21308824p21308824.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: by passing virtualhost when accessing an app?
Why don't you simple add the entry 127.0.0.1 www.myapp.com myapp.com into your /etc/hosts or *sic* in WIndows into C:\WINDOWS\system32\drivers\etc\hosts? Works for me Cheers Gregor -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Tutorial for implementing a valve
Dear all, I'd like to try something in Tomcat 6, and therefore I have to implement it as a valve. I know that I have to implement org.apache.catalina.valve, however, I got no clue where to start. - In which jar among all the jars delivered with Tomcat do I find the interface? - Once having the valve created, where do I put it (will ${CATALINA_HOME}/webapps/${myApp}/WEB-INF/lib be ok)? - Anybody knows about a tutorial or how-two? TIA Gregor -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Page not able to display Tomcat 6.0.18
Have you looked at the log files for any exceptions/errors? Can you provide more details regarding you app? --David Karthik Nanjangude wrote: Hi Tryes this Question on Google /Yahoo but non of the answers are satisfactory. SPEC Tomcat 6.0.18 Jdk 1.6 O/s Win / Unix / Linux For Upload File feature in a custom built web application, We observed the following on load with various time stamp across the O/s. Same File uploaded with same no of records in the flat (*.txt) file Page not able to display message is displayed in IE 6, but in fire fox 3.0 the screen becomes blank Win O/s : 25 minuts. Linux O/s : 10 minuts HpUnix: 15 minuts Note:- 1) Sessions , DB JNDI / Connection Pooling process are used for the same. 2) The uploaded file is parsed with complex validation and inserted into the DB. With regards Karthik - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: by passing virtualhost when accessing an app?
that's what i'm doing now, i was just hoping maybe there are ways without updating the hosts files, reason is, when you ask somebody to try out your app from a certain website and told them to update the hosts file, 9 out of 10 will not do it, of course this happens only during development when the domain is not yet pointed at the app. Gregor Schneider wrote: Why don't you simple add the entry 127.0.0.1 www.myapp.com myapp.com into your /etc/hosts or *sic* in WIndows into C:\WINDOWS\system32\drivers\etc\hosts? Works for me Cheers Gregor -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/by-passing-virtualhost-when-accessing-an-app--tp21308824p21309955.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: by passing virtualhost when accessing an app?
Perhaps you can make the app available as a subdirectory of a domain, (similar as how google does it) that way you can point them to http://example.com/example.org to access the app you would normally access as example.org Hope this helps, Regards, Serge Fonville On Tue, Jan 6, 2009 at 2:04 PM, Angelo Chen angelochen...@yahoo.com.hkwrote: that's what i'm doing now, i was just hoping maybe there are ways without updating the hosts files, reason is, when you ask somebody to try out your app from a certain website and told them to update the hosts file, 9 out of 10 will not do it, of course this happens only during development when the domain is not yet pointed at the app. Gregor Schneider wrote: Why don't you simple add the entry 127.0.0.1 www.myapp.com myapp.com into your /etc/hosts or *sic* in WIndows into C:\WINDOWS\system32\drivers\etc\hosts? Works for me Cheers Gregor -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/by-passing-virtualhost-when-accessing-an-app--tp21308824p21309955.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tutorial for implementing a valve
Gregor Schneider wrote: Dear all, I'd like to try something in Tomcat 6, and therefore I have to implement it as a valve. I know that I have to implement org.apache.catalina.valve, however, I got no clue where to start. - In which jar among all the jars delivered with Tomcat do I find the interface? - Once having the valve created, where do I put it (will ${CATALINA_HOME}/webapps/${myApp}/WEB-INF/lib be ok)? - Anybody knows about a tutorial or how-two? AFAIK catalina.jar is the place to look. I think that you probably want to extend ValveBase instead of just implementing the interface too. In essence, I've found Valves to be quite similar to Filters at the most basic level. Adding the Lifecycle interface makes things a little more complicated. I pulled the AccessLogValve apart when I first played with them. p TIA Gregor - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: WARNING: processCallbacks status 2
Thanks for the quick response - I'm glad it's nothing to worry about. On Mon, Jan 5, 2009 at 9:41 PM, Bill Barker wbar...@wilshire.com wrote: Jim Goodspeed goodspeeds...@gmail.com wrote in message news:84347690901051317o3824afa1t7de752b2026a1...@mail.gmail.com... I am seeing the following Warning in my catalina.out log file - it is being spit out every couple of seconds. It's not causing a problem that I can see, but I'm curious as to why it is happening. Jan 5, 2009 3:27:09 PM org.apache.jk.common.ChannelSocket processConnection WARNING: processCallbacks status 2 I am using Tomcat 5.5.9, Apache 2.2.10, Java 1.5.0_14 running on RHEL 4. I know that my version of Tomcat is old - we have plans to upgrade to the latest soon (java as well), but for now I am stuck with 5.5.9. Yeah, this should probably be lowered to DEBUG level logging. It usually happens when Apache drops the connection before Tomcat can send the I'm ready for the next request message. As such, it is pretty harmless (other than disk space). After this, Tomcat will just send the Thread back to it's pool to await another connection. We have two tomcat servers load balanced (config below) ProxyRequests Off ProxyPreserveHost On Proxy * Order deny,allow Allow from all /Proxy ProxyPass /maint ! Proxy balancer://app1 BalancerMember ajp://server1.domain.com:8009 route=app1-a loadfactor=5 BalancerMember ajp://server1.domain.com:8009 route=app1-b loadfactor=5 /Proxy Location / ProxyPass balancer://app1/ stickysession=JSESSIONID /Location My AJP config from the server.xml file is below: Connector port=8009 enableLookups=false redirectPort=8468 debug=0 maxThreads=200 minSpareThreads=10 maxSpareThreads=25 acceptCount=100 connectionTimeout=2 protocol=AJP/1.3 / As I said, I don't think this is causing a problem other than it is filling up my log files, but I'd like to get to the bottom of it. Thank you. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Redeploy leaks
On Sat, 2009-01-03 at 14:30 -0500, Cosio, Raul wrote: Memory leak is an advanced task. But once understood is very easy to fix them, just follow some simple rules, most common situations are: 1) Not Usually a matter of torturing yourself for some time following classloader trees, together with various static instantiations. Logging systems and Axis/jakarta-commons stuff have been the main causes of problems for me. This article was useful for me: http://blogs.sun.com/fkieviet/entry/how_to_fix_the_dreaded I suppose that they are very easy to fix once you work out precisely what is causing a leak, but that's a bit like saying that most bugs are very easy to fix - but thats a bit misleading isn't it, since you could spend hours/days tracking down the bug in the first place. Although its obviously nice to track down all the leaks in your app so that you could sit redeploying all day to your hearts content (I'll probably be burned at the stake for this next bit) but I do sometimes suspect that its not worth the effort and just live with having to restart your tomcat instance from time to time depending on your redeploy strategies. Mark This email has been scanned for all known viruses by the MessageLabs SkyScan service. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Redeploy leaks
Yes, you should be cooked, sauted and broiled on an open flame grin. http://community.eapps.com/showthread.php?t=153 Take a look, maybe useful On Tue, Jan 6, 2009 at 9:34 AM, Mark Hagger mark.hag...@m-spatial.comwrote: On Sat, 2009-01-03 at 14:30 -0500, Cosio, Raul wrote: Memory leak is an advanced task. But once understood is very easy to fix them, just follow some simple rules, most common situations are: 1) Not Usually a matter of torturing yourself for some time following classloader trees, together with various static instantiations. Logging systems and Axis/jakarta-commons stuff have been the main causes of problems for me. This article was useful for me: http://blogs.sun.com/fkieviet/entry/how_to_fix_the_dreaded I suppose that they are very easy to fix once you work out precisely what is causing a leak, but that's a bit like saying that most bugs are very easy to fix - but thats a bit misleading isn't it, since you could spend hours/days tracking down the bug in the first place. Although its obviously nice to track down all the leaks in your app so that you could sit redeploying all day to your hearts content (I'll probably be burned at the stake for this next bit) but I do sometimes suspect that its not worth the effort and just live with having to restart your tomcat instance from time to time depending on your redeploy strategies. Mark This email has been scanned for all known viruses by the MessageLabs SkyScan service. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Configuring a Realm
From: Charl Gerber [mailto:charlger...@yahoo.com] Subject: Configuring a Realm I know I somehow have to configure the login-config to use my new Realm, but how? No, you don't, other than to indicate the authentication mechanism. The presence of the Realm element inside your webapp's Context should be sufficient to cause Tomcat to use it. There is a tag realm-name which looked to be my answer The realm-name here is not related to the configured Realm, at least for BASIC authentication; as I recall it's used primarily for DIGEST authentication to construct the hash key. The datasource works and can be tested from within the application, so it is set up correctly. Are you using the same database for both application usage and authentication? That's odd, but doable. The application's context.xml: Where is the context.xml file located? Context path=/rankings docBase=path.to.file/rankings.war If the context.xml file is in the webapp's META-INF directory, the path and docBase attributes are not allowed - remove them. Is there a conf/Catalina/[host]/rankings.xml file present? If so, it will override the context.xml in META-INF, meaning your Realm element will be ignored. Is there anything in the Tomcat logs pertinent to the use of the Realm? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Redeploy leaks
MGMark/Raul/Frank Yes, you should be cooked, sauted and broiled on an open flame grin. MGthis comment does not helpgrin http://community.eapps.com/showthread.php?t=153 MGgood link to illustrate PermGen settings but including class objects in sweep for recovering PermGen should be a last MGresort MGMark you are using spatial objects right??? Do they hang around in memory forever? MGConfining scope of these objects will go a long way to alleviate these problems..object falls out of scope and is marked MGfor deletion (and PermGen MarkAndSweep will be able to collect these on the next iteration) MGAre you acquiring many DB Connections or cursors and hanging on to them forever..have you considered using MG MGConnectionPools? MGThere are some really great Java tools that are available to you e.g. $JAVA_HOME/bin/jstack MGand of course jconsole which will illustrate Heap,classes,CPU and Threads MGChuck and the others will have some useful information MGRegards MGMartin Take a look, maybe useful On Tue, Jan 6, 2009 at 9:34 AM, Mark Hagger mark.hag...@m-spatial.comwrote: On Sat, 2009-01-03 at 14:30 -0500, Cosio, Raul wrote: Memory leak is an advanced task. But once understood is very easy to fix them, just follow some simple rules, most common situations are: 1) Not Usually a matter of torturing yourself for some time following classloader trees, together with various static instantiations. Logging systems and Axis/jakarta-commons stuff have been the main causes of problems for me. This article was useful for me: http://blogs.sun.com/fkieviet/entry/how_to_fix_the_dreaded I suppose that they are very easy to fix once you work out precisely what is causing a leak, but that's a bit like saying that most bugs are very easy to fix - but thats a bit misleading isn't it, since you could spend hours/days tracking down the bug in the first place. Although its obviously nice to track down all the leaks in your app so that you could sit redeploying all day to your hearts content (I'll probably be burned at the stake for this next bit) but I do sometimes suspect that its not worth the effort and just live with having to restart your tomcat instance from time to time depending on your redeploy strategies. Mark This email has been scanned for all known viruses by the MessageLabs SkyScan service. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org _ It’s the same Hotmail®. If by “same” you mean up to 70% faster. http://windowslive.com/online/hotmail?ocid=TXT_TAGLM_WL_hotmail_acq_broad1_122008
RE: Redeploy leaks
From: Martin Gainty [mailto:mgai...@hotmail.com] Subject: RE: Redeploy leaks http://community.eapps.com/showthread.php?t=153 MGgood link to illustrate PermGen settings but including class objects in sweep for recovering PermGen should be a last MGresort Note that the above article applies only when the concurrent mark-sweep (CMS) GC algorithm is in effect, which is *not* the default. CMS can be manually enabled via the command line parameter: -XX:+UseConcMarkSweepGC or one of its aliases (-Xincgc, -Xconcgc). The CMS algorithm will also be invoked if UseAutoGCSelectPolicy is set and MaxGCPauseMillis is explicitly set to a value less than or equal to AutoGCSelectPauseMillis, whose default value is 5000 (the Java SE 6 release notes say 1 second, but the code says 5). Unless you have extremely stringent response time requirements, you probably don't want to enable CMS; it reduces throughput, and normal parallel GCs these days are usually fast enough not to create a noticeable hiccup. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
replacement for useBean directive
OK I know this isn't Tomcat-specific, but my post on Sun Forums didn't get much of a reply, so I thought I'd try it here. I'm in the process of translating a series of JSPs into straightout servlets and I have a question about how I should replicate the functionality of the useBean directive in my Servlet. I have a set of Beans that mediate between the JSP and a database (actually btwn JSP and a class that accesses the db). These beans cache results from the database, cutting back on back and forth traffic. They timeout after varying periods of time, flush their memory (hashmaps) and then reload as needed. I've used the useBean directive with no problem, it's just that now the project has grown in complexity to where it needs to be re-written as a set Servlets. My solution for replacing the useBean functionality has been a BeanBag class with the following form: class BeanBag { private static AppleBean appleBean = null; private static BananaBean bananaBean = null; public static AppleBean getAppleBean() { if (appleBean == null) { appleBean = new AppleBean(); } return appleBean; } . and so on } In the Servlet code, I just obtain a bean like this: AppleBean appleBean = BeanBag.getAppleBean(); My question is: where (or if) should I implement the synchronization? The generated servlets that Tomcat creates for the useBean directive uses Synchronized Statements, like this: synchronized (application) { appleBean = (com.fruitsalad.AppleBean) _jspx_page_context.getAttribute(appleBean, PageContext.APPLICATION_SCOPE); if (appleBean == null){ appleBean = new com.fruitsalad.AppleBean(); _jspx_page_context.setAttribute(appleBean, appleBean, PageContext.APPLICATION_SCOPE); } } But wouldn't making the methods in BeanBag synchronized be a better approach? Thanks
UTF-8
Hello everyone, could you please give me a hint how my jsp pages can be viewed in UTF-8. Do I have to configure some thing in apache server? Thanks -- Thinh - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: replacement for useBean directive
From: Jonathan Mast [mailto:jhmast.develo...@gmail.com] Subject: replacement for useBean directive wouldn't making the methods in BeanBag synchronized be a better approach? Definitely. Centralize the required synchronization rather than burdening each caller with it. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
i dont know how to request j_security_check on https! i attemped http://wiki.apache.org/tomcat/SSLWithFORMFallback but didnt work login-config !--auth-methodFORM/auth-method-- form-login-config form-login-page/login.do/form-login-page form-error-page/login/loginError.jsp/form-error-page /form-login-config /login-config tomcat redirect to Http! cheers - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: UTF-8
Il 6-01-2009 17:14, l...@informatik.uni-hamburg.de ha scritto: could you please give me a hint how my jsp pages can be viewed in UTF-8. I use %@ page language=java contentType=text/html; charset=UTF-8 pageEncoding=UTF-8% at the top of the page Edoardo - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: by passing virtualhost when accessing an app?
On Tue, Jan 6, 2009 at 5:04 AM, Angelo Chen angelochen...@yahoo.com.hk wrote: that's what i'm doing now, i was just hoping maybe there are ways without updating the hosts files, reason is, when you ask somebody to try out your app from a certain website and told them to update the hosts file, 9 out of 10 will not do it, of course this happens only during development when the domain is not yet pointed at the app. Well, good practice would be to have a dev/staging server for this, rather than your desktop :-) but... Just give them your IP address, and make sure the app in question is under the default Host. FWIW, -- Hassan Schroeder hassan.schroe...@gmail.com - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Tomact behind ISA server - session problem
Hi, I have a Tomcat installed behind ISA server. It is properly(?) published, so I can reach it from outside world, as from LAN also. But, when I access my Tomcat application from LAN, all session attributes are fine, the app works as I want it to. When I access it from outside world, something is wrong with session. For example, I access the app from Firefox, exit Firefox, and start IE - the same session(!). On the other hand, I have a Java class as a session object, but sometimes I can not modify it, and sometimes I can. I must emphasize that everything works nice when I access the app from LAN. Any idea ? Thnks in advance. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomact behind ISA server - session problem
My first thought is some kind of caching proxy server. If you aren't the local IT admin, you might want to check with them what might exist on the border between the LAN and WAN. Tomcat itself doesn't treat the local LAN any different than the outside world. From it's perspective, a client is a client regardless of network location. --David Boban Jankovic wrote: Hi, I have a Tomcat installed behind ISA server. It is properly(?) published, so I can reach it from outside world, as from LAN also. But, when I access my Tomcat application from LAN, all session attributes are fine, the app works as I want it to. When I access it from outside world, something is wrong with session. For example, I access the app from Firefox, exit Firefox, and start IE - the same session(!). On the other hand, I have a Java class as a session object, but sometimes I can not modify it, and sometimes I can. I must emphasize that everything works nice when I access the app from LAN. Any idea ? Thnks in advance. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: replacement for useBean directive
Thanks Chuck, just one more question: do I really need synchronization at all? These Beans basically work like this: getApple(int appleID) { purgeIfTimeout(); //calls appleMap.clear() if we've timed out if (appleMap.containsKey(String.valueOf(appleID)) { return (Apple)appleMap.get(String.valueOf(appleID); } else { Apple a = FruitDB.getApple(appleID); //this is where the database interaction takes place if (a != null) appleMap.put(String.valueOf(appleID), a); return a; } } Is synchronization really called for here, either around the getITEM() methods inside the beans or around the methods in BeanBag that return the bean? On Tue, Jan 6, 2009 at 11:14 AM, Caldarale, Charles R chuck.caldar...@unisys.com wrote: From: Jonathan Mast [mailto:jhmast.develo...@gmail.com] Subject: replacement for useBean directive wouldn't making the methods in BeanBag synchronized be a better approach? Definitely. Centralize the required synchronization rather than burdening each caller with it. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
Diego Armando Gusava wrote: i dont know how to request j_security_check on https! i attemped http://wiki.apache.org/tomcat/SSLWithFORMFallback but didnt work I think the above attempts to find an SSL cert, but falls back to FORM auth. Which isn't perhaps what you want? login-config !--auth-methodFORM/auth-method-- form-login-config form-login-page/login.do/form-login-page form-error-page/login/loginError.jsp/form-error-page /form-login-config /login-config Set transport-guaranteeCONFIDENTIAL/transport-guarantee in the security constraint section, as below. Ensure that you have an SSL enabled connector and that the redirect port on the normal connector matches the SSL port. security-constraint web-resource-collection web-resource-nameProtected Area/web-resource-name url-pattern/mySecurePath//url-pattern http-methodGET/http-method ... http-methodPOST/http-method /web-resource-collection auth-constraint role-namerolename/role-name /auth-constraint user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint p tomcat redirect to Http! cheers - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
let me explain when i try to access mySecurePath for example, tomcat show me a login page with https but after that i dont need for example be with https, because i only need to send protected username and password. i want to only need login.jsp with https!! 2009/1/6 Pid p...@pidster.com: Diego Armando Gusava wrote: i dont know how to request j_security_check on https! i attemped http://wiki.apache.org/tomcat/SSLWithFORMFallback but didnt work I think the above attempts to find an SSL cert, but falls back to FORM auth. Which isn't perhaps what you want? login-config !--auth-methodFORM/auth-method-- form-login-config form-login-page/login.do/form-login-page form-error-page/login/loginError.jsp/form-error-page /form-login-config /login-config Set transport-guaranteeCONFIDENTIAL/transport-guarantee in the security constraint section, as below. Ensure that you have an SSL enabled connector and that the redirect port on the normal connector matches the SSL port. security-constraint web-resource-collection web-resource-nameProtected Area/web-resource-name url-pattern/mySecurePath//url-pattern http-methodGET/http-method ... http-methodPOST/http-method /web-resource-collection auth-constraint role-namerolename/role-name /auth-constraint user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint p tomcat redirect to Http! cheers - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
orm Based Authentication has the same lack of security as Basic Authentication since the user password is transmitted as plain text and the target server is not authenticated. Again additional protection can alleviate some of these concerns: a secure transport mechanism (HTTPS). i want secure transport mechanism (HTTPS) how can i do it? 2009/1/6 Diego Armando Gusava diegogus...@gmail.com: let me explain when i try to access mySecurePath for example, tomcat show me a login page with https but after that i dont need for example be with https, because i only need to send protected username and password. i want to only need login.jsp with https!! 2009/1/6 Pid p...@pidster.com: Diego Armando Gusava wrote: i dont know how to request j_security_check on https! i attemped http://wiki.apache.org/tomcat/SSLWithFORMFallback but didnt work I think the above attempts to find an SSL cert, but falls back to FORM auth. Which isn't perhaps what you want? login-config !--auth-methodFORM/auth-method-- form-login-config form-login-page/login.do/form-login-page form-error-page/login/loginError.jsp/form-error-page /form-login-config /login-config Set transport-guaranteeCONFIDENTIAL/transport-guarantee in the security constraint section, as below. Ensure that you have an SSL enabled connector and that the redirect port on the normal connector matches the SSL port. security-constraint web-resource-collection web-resource-nameProtected Area/web-resource-name url-pattern/mySecurePath//url-pattern http-methodGET/http-method ... http-methodPOST/http-method /web-resource-collection auth-constraint role-namerolename/role-name /auth-constraint user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint p tomcat redirect to Http! cheers - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Linux 4 Update 7 and Tomcat
Hey Guys, Happy New Year! Being a novice in the world of Apache, I have a quick question regarding Tomcat and Linux 4 Update 7. We are currently running Tomcat version 5.5.23 on Red Hat Linux OS Linux 4 Update 5. Our server team is planning to upgrade Red Hat Linux 4 to version 2.6.9-78.0.8.ELsmp (Red Hat Enterprise Linux 4 (Nahant Update 7)). I was wondering if you are aware of any known incompatibility issues with this mix of Tomcat and Linux or is there something else we should be aware of when upgrading. Any advice would greatly be appreciated. Thank you for your time Thank you, Rob Gonzales Programmer Analyst Limited Brands Technology Services Office 212*884*0840 Mobile 917*796*9018
RE: replacement for useBean directive
From: Jonathan Mast [mailto:jhmast.develo...@gmail.com] Subject: Re: replacement for useBean directive do I really need synchronization at all? Short answer: yes. Is synchronization really called for here, either around the getITEM() methods inside the beans or around the methods in BeanBag that return the bean? Yes to both. Your example getApple() shows use of some form of Map, most forms of which require external synchronization. Even if such Map objects implemented internal synchronization, the logic that checks for the existence of the key then retrieves the corresponding value requires that the state of the Map not change between the containsKey() and get() calls. BTW, you're creating a ton of throw-away objects by doing String.valueOf(int) here; you may be better off to keep appleID as a String or Integer throughout. Also, you don't need the containsKey() call, the get() will return null if the key isn't present. synchronized Apple getApple(int appleID) { purgeIfTimeout(); //calls appleMap.clear() if we've timed out Apple a = (Apple)appleMap.get(String.valueOf(appleID)); if (a != null) return a; a = FruitDB.getApple(appleID); if (a != null) appleMap.put(String.valueOf(appleID), a); return a; } Also, your appleMap should be declared as HashMapString, Apple or HashMapInteger, Apple (or whatever Map type you're using) so you can get rid of the casting. Your BeanBag class methods also need synchronization to close the window between testing a field for null and then allocating an object for it. Failure to do so runs the risk of two threads both seeing the field as null, and both creating beans for the same item type. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: j_security_check with https
From: Diego Armando Gusava [mailto:diegogus...@gmail.com] Subject: Re: j_security_check with https when i try to access mySecurePath for example, tomcat show me a login page with https but after that i dont need for example be with https, because i only need to send protected username and password. i want to only need login.jsp with https!! You cannot switch a secure (HTTPS) session to an insecure transport (HTTP) - your login would be worthless if you could. Once you log in via SSL, you'll need to stay with HTTPS to utilize the session. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Configuring a Realm
No, you don't, other than to indicate the authentication mechanism. The presence of the Realm element inside your webapp's Context should be sufficient to cause Tomcat to use it. That's what I thought, but my Realm is just ignored and the one that is present by default when installing Tomcat is used instead. Are you using the same database for both application usage and authentication? That's odd, but doable. Yes, same datasource. Won't go into the details, but perfectly valid reason for doing so. If the context.xml file is in the webapp's META-INF directory, the path and docBase attributes are not allowed - remove them. Yes, in the META-INF. I removed the path and docBase attributes, but still no joy. Is there a conf/Catalina/[host]/rankings.xml file present? no. Is there anything in the Tomcat logs pertinent to the use of the Realm? No, that was going to be my next question. I see no authentication logging whatsoever. Not even of the default Realm, which has debug=0. I'm baffled. Charl - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
How to set up Apache Tomcat for deployment
I am really new on setting up Web server (on UNIX) for deployment, Please assist me on followings. Please let me know where I can set up the path for my projects (source) in the server It seems like Apache Tomcat is configured, right? //usr/local/apache-tomcat/bin/shutdown.sh Using CATALINA_BASE: /usr/local/apache-tomcat Using CATALINA_HOME: /usr/local/apache-tomcat Using CATALINA_TMPDIR: /usr/local/apache-tomcat/temp Using JRE_HOME: /usr/jre //usr/local/apache-tomcat/bin/startup.sh Using CATALINA_BASE: /usr/local/apache-tomcat Using CATALINA_HOME: /usr/local/apache-tomcat Using CATALINA_TMPDIR: /usr/local/apache-tomcat/temp Using JRE_HOME: /usr/jre When I run command netstat -an | grep LISTEN, I see port 8080 is open then I tried http://serverIP:8080/ in the IE browser I get followings error. The webpage cannot be found HTTP 400 Note: I am trying to do above on a Web project using Netbeans 6.1 on Java EE 5 using Apache Tomcat 6.0.16 - currently testing on Window XP - Developing a Web application - want to move this project to UNIX SUN server Thank you kam - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Linux 4 Update 7 and Tomcat
Not knowing about Red hat. What JDK is being used? As long as it's the original JDK from SUN = 1.5.x, there should not be any problems since Tomcat is pure Java. However, if you're using the APR, you might have to recompile the APR. HTH Gregor -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Configuring a Realm
Never mind. I uninstalled all my apps, cleaned up the temp/work dirs and re-installed and now it goes well. Must have been an incorrect context.xml in one of those dirs that I've missed. Charl --- On Tue, 6/1/09, Caldarale, Charles R chuck.caldar...@unisys.com wrote: From: Caldarale, Charles R chuck.caldar...@unisys.com Subject: RE: Configuring a Realm To: Tomcat Users List users@tomcat.apache.org Date: Tuesday, 6 January, 2009, 4:21 PM From: Charl Gerber [mailto:charlger...@yahoo.com] Subject: Configuring a Realm I know I somehow have to configure the login-config to use my new Realm, but how? No, you don't, other than to indicate the authentication mechanism. The presence of the Realm element inside your webapp's Context should be sufficient to cause Tomcat to use it. There is a tag realm-name which looked to be my answer The realm-name here is not related to the configured Realm, at least for BASIC authentication; as I recall it's used primarily for DIGEST authentication to construct the hash key. The datasource works and can be tested from within the application, so it is set up correctly. Are you using the same database for both application usage and authentication? That's odd, but doable. The application's context.xml: Where is the context.xml file located? Context path=/rankings docBase=path.to.file/rankings.war If the context.xml file is in the webapp's META-INF directory, the path and docBase attributes are not allowed - remove them. Is there a conf/Catalina/[host]/rankings.xml file present? If so, it will override the context.xml in META-INF, meaning your Realm element will be ignored. Is there anything in the Tomcat logs pertinent to the use of the Realm? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
no man, example, email when u login, your username and password will be transport https, but after that, you are in http! u dont need https because, you are only reading messages(emails) 2009/1/6 Caldarale, Charles R chuck.caldar...@unisys.com: From: Diego Armando Gusava [mailto:diegogus...@gmail.com] Subject: Re: j_security_check with https when i try to access mySecurePath for example, tomcat show me a login page with https but after that i dont need for example be with https, because i only need to send protected username and password. i want to only need login.jsp with https!! You cannot switch a secure (HTTPS) session to an insecure transport (HTTP) - your login would be worthless if you could. Once you log in via SSL, you'll need to stay with HTTPS to utilize the session. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
On Tue, Jan 6, 2009 at 9:13 PM, Diego Armando Gusava diegogus...@gmail.com wrote: no man, example, email when u login, your username and password will be transport https, but after that, you are in http! u dont need https because, you are only reading messages(emails) Then just phrase your url-pattern in your security-constraint-section accordingly - should work. Gregor -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: j_security_check with https
From: Diego Armando Gusava [mailto:diegogus...@gmail.com] Subject: Re: j_security_check with https when u login, your username and password will be transport https, but after that, you are in http! u dont need https because, you are only reading messages(emails) And what does that have to do with the behavior of a servlet container? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
this didnt work security-constraint web-resource-collection web-resource-nameUsuario/web-resource-name url-pattern/login/*/url-pattern http-methodPOST/http-method http-methodGET/http-method /web-resource-collection user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint if i try myAPP/login/login.jsp work, but when i try an action and has restrict access, and havent user logged, tomcat redirect to login page with http !!! 2009/1/6 Caldarale, Charles R chuck.caldar...@unisys.com: From: Diego Armando Gusava [mailto:diegogus...@gmail.com] Subject: Re: j_security_check with https when u login, your username and password will be transport https, but after that, you are in http! u dont need https because, you are only reading messages(emails) And what does that have to do with the behavior of a servlet container? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Oracle database calling the web app?
Is it possible to set up a callback like situation so that a trigger in an Oracle 10g database can call a method in a currently running webapp that's running in Tomcat 6? My situation is that I want to cache some infrequently changed database data in memory but when that data does change in the database, I want the web applications, running on multiple servers, to immediately pick up the change. Right now, one idea I have for this is to have the database trigger create a file in a file system that's shared by the database server and the application servers and have the web apps check for the existence of this file to know whether to update the cache. It feels ugly and means hitting a networked file system a lot but it seems like it should work and it seems like it should not be as bad as hitting the database constantly for something that doesn't change very often. I'd rather have the database send a message somehow to the web app that it needs to update its cache of the data. Any suggestions? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: How to set up Apache Tomcat for deployment
HASSAN Kamrul wrote: I am really new on setting up Web server (on UNIX) for deployment, Please assist me on followings. Please do not hi-jack threads. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
Support for what you want to do is actually a feature in Oracle 11g. For Oracle 10g, you want to look at the publish/subscribe support which is part of advanced queueing. The documentation is available online at http://otn.oracle.com. Ed On Tue, Jan 6, 2009 at 5:22 PM, Bill Davidson bill...@gmail.com wrote: Is it possible to set up a callback like situation so that a trigger in an Oracle 10g database can call a method in a currently running webapp that's running in Tomcat 6? My situation is that I want to cache some infrequently changed database data in memory but when that data does change in the database, I want the web applications, running on multiple servers, to immediately pick up the change. Right now, one idea I have for this is to have the database trigger create a file in a file system that's shared by the database server and the application servers and have the web apps check for the existence of this file to know whether to update the cache. It feels ugly and means hitting a networked file system a lot but it seems like it should work and it seems like it should not be as bad as hitting the database constantly for something that doesn't change very often. I'd rather have the database send a message somehow to the web app that it needs to update its cache of the data. Any suggestions? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
Bill Davidson wrote: Is it possible to set up a callback like situation so that a trigger in an Oracle 10g database can call a method in a currently running webapp that's running in Tomcat 6? My situation is that I want to cache some infrequently changed database data in memory but when that data does change in the database, I want the web applications, running on multiple servers, to immediately pick up the change. Right now, one idea I have for this is to have the database trigger create a file in a file system that's shared by the database server and the application servers and have the web apps check for the existence of this file to know whether to update the cache. It feels ugly and means hitting a networked file system a lot but it seems like it should work and it seems like it should not be as bad as hitting the database constantly for something that doesn't change very often. I'd rather have the database send a message somehow to the web app that it needs to update its cache of the data. Any suggestions? 1. JMS? 2. Call an reload servlet from the database? 3. Drop the immediate update requirement and poll a data changed flag in the db every x seconds? Personally, I'd go with 3. For a simple flag this could be every few seconds with very little load on the db or Tomcat and would take all of a few minutes to code. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
you can also have your trigger call a java package where you can simply call a web service (SOAP or RESTful). Regards, Youssef On Wed, Jan 7, 2009 at 12:26 AM, Edward Dowgiallo eddowgia...@gmail.comwrote: Support for what you want to do is actually a feature in Oracle 11g. For Oracle 10g, you want to look at the publish/subscribe support which is part of advanced queueing. The documentation is available online at http://otn.oracle.com. Ed On Tue, Jan 6, 2009 at 5:22 PM, Bill Davidson bill...@gmail.com wrote: Is it possible to set up a callback like situation so that a trigger in an Oracle 10g database can call a method in a currently running webapp that's running in Tomcat 6? My situation is that I want to cache some infrequently changed database data in memory but when that data does change in the database, I want the web applications, running on multiple servers, to immediately pick up the change. Right now, one idea I have for this is to have the database trigger create a file in a file system that's shared by the database server and the application servers and have the web apps check for the existence of this file to know whether to update the cache. It feels ugly and means hitting a networked file system a lot but it seems like it should work and it seems like it should not be as bad as hitting the database constantly for something that doesn't change very often. I'd rather have the database send a message somehow to the web app that it needs to update its cache of the data. Any suggestions? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
Gregor Schneider wrote: On Tue, Jan 6, 2009 at 9:13 PM, Diego Armando Gusava diegogus...@gmail.com wrote: no man, example, email when u login, your username and password will be transport https, but after that, you are in http! u dont need https because, you are only reading messages(emails) Then just phrase your url-pattern in your security-constraint-section accordingly - should work. It won't. Tomcat won't let a session created under HTTPS transition to HTTP as the session ID is effectively the password. If the password needed HTTPS then the session ID does too. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
It is not necessary to poll an Oracle database. Advanced queueing in combination with triggers provide an event driven framework. Ed On Tue, Jan 6, 2009 at 5:28 PM, Mark Thomas ma...@apache.org wrote: Bill Davidson wrote: Is it possible to set up a callback like situation so that a trigger in an Oracle 10g database can call a method in a currently running webapp that's running in Tomcat 6? My situation is that I want to cache some infrequently changed database data in memory but when that data does change in the database, I want the web applications, running on multiple servers, to immediately pick up the change. Right now, one idea I have for this is to have the database trigger create a file in a file system that's shared by the database server and the application servers and have the web apps check for the existence of this file to know whether to update the cache. It feels ugly and means hitting a networked file system a lot but it seems like it should work and it seems like it should not be as bad as hitting the database constantly for something that doesn't change very often. I'd rather have the database send a message somehow to the web app that it needs to update its cache of the data. Any suggestions? 1. JMS? 2. Call an reload servlet from the database? 3. Drop the immediate update requirement and poll a data changed flag in the db every x seconds? Personally, I'd go with 3. For a simple flag this could be every few seconds with very little load on the db or Tomcat and would take all of a few minutes to code. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
This is also highly inefficient. You are taking on all the additional overhead of a web service call for no reason. Ed On Tue, Jan 6, 2009 at 5:31 PM, Youssef Mohammed youssef.moham...@gmail.com wrote: you can also have your trigger call a java package where you can simply call a web service (SOAP or RESTful). Regards, Youssef On Wed, Jan 7, 2009 at 12:26 AM, Edward Dowgiallo eddowgia...@gmail.com wrote: Support for what you want to do is actually a feature in Oracle 11g. For Oracle 10g, you want to look at the publish/subscribe support which is part of advanced queueing. The documentation is available online at http://otn.oracle.com. Ed On Tue, Jan 6, 2009 at 5:22 PM, Bill Davidson bill...@gmail.com wrote: Is it possible to set up a callback like situation so that a trigger in an Oracle 10g database can call a method in a currently running webapp that's running in Tomcat 6? My situation is that I want to cache some infrequently changed database data in memory but when that data does change in the database, I want the web applications, running on multiple servers, to immediately pick up the change. Right now, one idea I have for this is to have the database trigger create a file in a file system that's shared by the database server and the application servers and have the web apps check for the existence of this file to know whether to update the cache. It feels ugly and means hitting a networked file system a lot but it seems like it should work and it seems like it should not be as bad as hitting the database constantly for something that doesn't change very often. I'd rather have the database send a message somehow to the web app that it needs to update its cache of the data. Any suggestions? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
an asynchronous solution is definitely a better solution but either ways, you have to call some web services at the end to notify the web app , no ? Regards, Youssef On Wed, Jan 7, 2009 at 12:35 AM, Edward Dowgiallo eddowgia...@gmail.comwrote: This is also highly inefficient. You are taking on all the additional overhead of a web service call for no reason. Ed On Tue, Jan 6, 2009 at 5:31 PM, Youssef Mohammed youssef.moham...@gmail.com wrote: you can also have your trigger call a java package where you can simply call a web service (SOAP or RESTful). Regards, Youssef On Wed, Jan 7, 2009 at 12:26 AM, Edward Dowgiallo eddowgia...@gmail.com wrote: Support for what you want to do is actually a feature in Oracle 11g. For Oracle 10g, you want to look at the publish/subscribe support which is part of advanced queueing. The documentation is available online at http://otn.oracle.com. Ed On Tue, Jan 6, 2009 at 5:22 PM, Bill Davidson bill...@gmail.com wrote: Is it possible to set up a callback like situation so that a trigger in an Oracle 10g database can call a method in a currently running webapp that's running in Tomcat 6? My situation is that I want to cache some infrequently changed database data in memory but when that data does change in the database, I want the web applications, running on multiple servers, to immediately pick up the change. Right now, one idea I have for this is to have the database trigger create a file in a file system that's shared by the database server and the application servers and have the web apps check for the existence of this file to know whether to update the cache. It feels ugly and means hitting a networked file system a lot but it seems like it should work and it seems like it should not be as bad as hitting the database constantly for something that doesn't change very often. I'd rather have the database send a message somehow to the web app that it needs to update its cache of the data. Any suggestions? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
Mark Thomas wrote: 1. JMS? I thought Tomcat didn't support JMS. Am I wrong about this? 2. Call an reload servlet from the database? Sounds slightly painful but at least it's event driven. 3. Drop the immediate update requirement and poll a data changed flag in the db every x seconds? Still not event driven like I'd like but it might be acceptable. Thanks. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
Edward Dowgiallo wrote: Support for what you want to do is actually a feature in Oracle 11g. For Oracle 10g, you want to look at the publish/subscribe support which is part of advanced queueing. The documentation is available online at http://otn.oracle.com. Is this the book I should be reading? Oracle Streams Advanced Queuing User's Guide and Reference - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: j_security_check with https
My question is how to combine the form based authentication, where we use jsecuritycheck , jusername etc with https. As far as I know if we use form based authentication username and password will be authenticated by the container managed resource called 'jsecuritycheck. But the data transfer from client browser to tomcat will be still a plain text. i want to encrypt this and obviously i need to use https. So how to combine both and how tomcat wil help me doping this?? 2009/1/6 Mark Thomas ma...@apache.org: Gregor Schneider wrote: On Tue, Jan 6, 2009 at 9:13 PM, Diego Armando Gusava diegogus...@gmail.com wrote: no man, example, email when u login, your username and password will be transport https, but after that, you are in http! u dont need https because, you are only reading messages(emails) Then just phrase your url-pattern in your security-constraint-section accordingly - should work. It won't. Tomcat won't let a session created under HTTPS transition to HTTP as the session ID is effectively the password. If the password needed HTTPS then the session ID does too. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
Bill Davidson wrote: Oracle Streams Advanced Queuing User's Guide and Reference Looking through that, it looks like it uses JMS to send a message back to Java. Being on Tomcat, that's a problem. Some searching shows I may be able to use OpenJMS or ActiveMQ to get JMS in Tomcat. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
It's possible to integrate Tomcat and ActiveMQ (a JMS superset): http://activemq.apache.org/tomcat.html On Jan 6, 2009, at 6:08 PM, Bill Davidson wrote: Bill Davidson wrote: Oracle Streams Advanced Queuing User's Guide and Reference Looking through that, it looks like it uses JMS to send a message back to Java. Being on Tomcat, that's a problem. Some searching shows I may be able to use OpenJMS or ActiveMQ to get JMS in Tomcat. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Oracle database calling the web app?
Whoops, hold that. This is ok for outbound. For inbound, it seems Jboss is needed: http://activemq.apache.org/jboss-integration.html On Jan 6, 2009, at 6:51 PM, Ken Bowen wrote: It's possible to integrate Tomcat and ActiveMQ (a JMS superset): http://activemq.apache.org/tomcat.html On Jan 6, 2009, at 6:08 PM, Bill Davidson wrote: Bill Davidson wrote: Oracle Streams Advanced Queuing User's Guide and Reference Looking through that, it looks like it uses JMS to send a message back to Java. Being on Tomcat, that's a problem. Some searching shows I may be able to use OpenJMS or ActiveMQ to get JMS in Tomcat. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Setting up Apache Tomcat for deployment for SunOS 5.9 Generic_118558-39 sun4u sparc SUNW,Ultra-5_10
I am really new on setting up Web server (on UNIX) for deployment, Please assist me on followings. Please let me know where I can set up the path for my projects (source) in the server It seems like Apache Tomcat is configured, right? //usr/local/apache-tomcat/bin/shutdown.sh Using CATALINA_BASE: /usr/local/apache-tomcat Using CATALINA_HOME: /usr/local/apache-tomcat Using CATALINA_TMPDIR: /usr/local/apache-tomcat/temp Using JRE_HOME: /usr/jre //usr/local/apache-tomcat/bin/startup.sh Using CATALINA_BASE: /usr/local/apache-tomcat Using CATALINA_HOME: /usr/local/apache-tomcat Using CATALINA_TMPDIR: /usr/local/apache-tomcat/temp Using JRE_HOME: /usr/jre When I run command netstat -an | grep LISTEN, I see port 8080 is open then I tried http://serverIP:8080/ in the IE browser I get followings error. The webpage cannot be found HTTP 400 Note: I am trying to do above on a Web project using Netbeans 6.1 on Java EE 5 using Apache Tomcat 6.0.16 - currently testing on Window XP - Developing a Web application - want to move this project to UNIX SUN server Thank you kam - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: j_security_check with https
Howdy, First, to clear an incorrect point made... There is a point of switching back to HTTP after HTTPS. From a server load perspective having to perform SSL computations for every single HTTP request can be a serious performance bottleneck. As for the security aspect, transmission of the username/password should be done over HTTPS, as this is considered private/confidential data and can be used to establish future authenticated sessions, however unless you are in a location where eavesdropping attacks are a risk, there is no need for encryption as the session ID is either a hashed string in a cookie, or the servlet is making use of URL re-writing, both of which are only temporary passes until the HttpSession has been invalidated. Second, to answer the question regarding actions redirect to HTTP... The reason the redirects are not going to HTTPS is because of the RequestDispatcher. When Tomcat sees that you are trying to access a resource for which login is required, it FOWARDs the request to the login form. The security constraints defined in web.xml are for when requests are made directly for those resources. What this means is that your configuration to make sure that the login pages use SSL only come into affect when the browser requests them directly. Requests that have been FORWARDed by the RequestDispatcher totally bypass the SSL constraints. What is the solution? Create a Filter subclass with the sole purpose of having its doFilter method call sendRedirect on the HttpServletResponse object. Map this Filter to the same URL pattern you use for SSL and make sure to use the dispatcher tags for FORWARD, INCLUDE, ERROR, and whatever other RequestDispatcher operations you want to ensure use SSL. Hope this helps. Justin Date: Tue, 6 Jan 2009 19:01:24 -0200 From: diegogus...@gmail.com To: users@tomcat.apache.org Subject: Re: j_security_check with https this didnt work security-constraint web-resource-collection web-resource-nameUsuario/web-resource-name url-pattern/login/*/url-pattern http-methodPOST/http-method http-methodGET/http-method /web-resource-collection user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint if i try myAPP/login/login.jsp work, but when i try an action and has restrict access, and havent user logged, tomcat redirect to login page with http !!! 2009/1/6 Caldarale, Charles R chuck.caldar...@unisys.com: From: Diego Armando Gusava [mailto:diegogus...@gmail.com] Subject: Re: j_security_check with https when u login, your username and password will be transport https, but after that, you are in http! u dont need https because, you are only reading messages(emails) And what does that have to do with the behavior of a servlet container? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org _ Keep in touch and up to date with friends and family. Make the connection now. http://www.microsoft.com/windows/windowslive/
RE: j_security_check with https
From: Justin Randall [mailto:ran...@hotmail.com] Subject: RE: j_security_check with https There is a point of switching back to HTTP after HTTPS. From a server load perspective having to perform SSL computations for every single HTTP request can be a serious performance bottleneck. Of course - everyone recognizes that. Serious sites will offload the SSL processing to a separate box or NIC card for that very reason. however unless you are in a location where eavesdropping attacks are a risk, Such as pretty much anywhere on the Internet? If eavesdropping attacks were not a risk, there would be no point in encrypting the security credentials. You can't have it both ways. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Page not able to display Tomcat 6.0.18
Hi We did not see any exceptions in for the same catalina.out. We suspect some Browser bug may be the root cause. With regards karthik -Original Message- From: David Smith [mailto:d...@cornell.edu] Sent: Tuesday, January 06, 2009 6:19 PM To: Tomcat Users List Subject: Re: Page not able to display Tomcat 6.0.18 Have you looked at the log files for any exceptions/errors? Can you provide more details regarding you app? --David Karthik Nanjangude wrote: Hi Tryes this Question on Google /Yahoo but non of the answers are satisfactory. SPEC Tomcat 6.0.18 Jdk 1.6 O/s Win / Unix / Linux For Upload File feature in a custom built web application, We observed the following on load with various time stamp across the O/s. Same File uploaded with same no of records in the flat (*.txt) file Page not able to display message is displayed in IE 6, but in fire fox 3.0 the screen becomes blank Win O/s : 25 minuts. Linux O/s : 10 minuts HpUnix: 15 minuts Note:- 1) Sessions , DB JNDI / Connection Pooling process are used for the same. 2) The uploaded file is parsed with complex validation and inserted into the DB. With regards Karthik - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat and problems with languages
fairyaya wrote: Goodmornig (or afternoon, it's depends) It's my first post here. I've a problem with a web application developped with struts and which uses different languages with properties files (so if the brower's setting is english the application will display texts in english, if it's italian twxts will be italian and so on..) On a tomcat 5.5 on a windows workstation everything goes fine: when you change the browser's language the application's language will change too. The same application on tomcat 5.5.15 on a linux workstation causes some problems: if we restart the server the application will respond with a mix of the browser language (italian) and the default (english) and the only way to make it go well again is to restart again the server. I've no idea at what tomcat setting see and change. what way can I try take to solve this problem? Any hint? Thank you very much. Hi, Text display according to the bean message of the property file,there are seprate proerty file where you mention a single language bean messages. hope it will help you but my problem is that my web application is run properly on windows but when i deployed it on linux via (PLESK) multi langauge can not support properly. what I will do for run the application on linux fedora. -- View this message in context: http://www.nabble.com/Tomcat-and-problems-with-languages-tp21070996p21326184.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: what have i done to get 9 million cookies?
Dear Leon, i'm performing a jmap -histo:live on a tomcat which froze because of full (8GB) old space gen, and my top 10 looks like: num #instances #bytes class name -- 1: 19268009 2655683368 [C 2: 17410092 1392807360 org.apache.tomcat.util.buf.MessageBytes 3: 17411294 1114322816 org.apache.tomcat.util.buf.ByteChunk 4: 17410562 974991472 org.apache.tomcat.util.buf.CharChunk 5: 19275640 771025600 java.lang.String 6: 8697280 626204160 javax.servlet.http.Cookie 7: 8699584 417580032 org.apache.tomcat.util.http.MimeHeaderField 8: 188 134247456 [Lorg.apache.tomcat.util.http.MimeHeaderField; 9:198645 114493776 [Ljava.lang.Object; 10: 21303 30450504 [B So how did I manage to get almost 9 million of mimeheaderfields and cookies and 17 millions message bytes and chunks. During normal operation mode the number of the above doesn't increase except before the gc freeze. You can try to generate a heap dump and analyse it using jhat. Trouble is, jhat requires insane amounts of memory. So for you 8GB dump you'd need something in the order of 32GB RAM for jhat. If that is feasible, you could lower the memory limits on your machine, run the tests again to get a smaller dump with (hopefully) the same characteristics. -- Kees Jan http://java-monitor.com/forum/ kjkos...@kjkoster.org 06-51838192 The secret of success lies in the stability of the goal. -- Benjamin Disraeli - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org