Re: Tomcat Service(s) on Windows, Procmon question

2024-11-07 Thread david w
task could run your script for you. this script would require possibly administrator rights in order to actually perform any file operations that your script would need to do, but this is your call and it wouldn’t compromise the tomcat service or service account so could be an alternative. David

RE: Question about upgrading tomcat-embed-core from 10.1.20 to 10.1.25

2024-09-15 Thread KARR, DAVID
, KARR, DAVID wrote: > We build SpringBoot applications that reference "tomcat-embed-core" from "spring-boot-starter-jersey". We currently end up with version 10. 1. 20 of tomcat-embed-core, using spring-boot 3. 2. 5. There On 15/09/2024 00:37, KARR, DAVID wrote:

Question about upgrading tomcat-embed-core from 10.1.20 to 10.1.25

2024-09-14 Thread KARR, DAVID
We build SpringBoot applications that reference "tomcat-embed-core" from "spring-boot-starter-jersey". We currently end up with version 10.1.20 of tomcat-embed-core, using spring-boot 3.2.5. There is apparently a CVE for that version of tomcat-embed-core (I don't have the CVE handy right now).

Re: Nothing but 404 errors

2024-09-05 Thread David Rush
Darryl: Do you have a script or something that copies the "needed files" from the previous version to the new version? Seems like you would need to copy all your webapps and any customizations in your config files (I sometimes tweak my server.xml and logging.properties). David On

Re: Nothing but 404 errors

2024-09-05 Thread David Rush
file). Copying EVERYTHING from CATALINA_HOME/conf to CATALINA_BASE/conf resolved the issue. David On Thu, Sep 5, 2024 at 8:54 AM David Rush wrote: > Sebastian: > > I want to keep HOME and BASE separate so that when a new version of Tomcat > comes out it's easy to swap the new

Nothing but 404 errors

2024-09-05 Thread David Rush
I've been an avid user of "apt install tomcat9" for years on Ubuntu 22.04 and prior with great success, but I've discovered that the package manager on Ubuntu 24.04 doesn't support tomcat9. So I'm trying to install it from the core binary D/L from tomcat.apache.org I want to use distinct CATALINA

Re: How to configure Tomcat with a Managed Service Account when using LocalMachine certificates for TLS

2024-06-25 Thread david w
I've had the same experience, but with a regular AD service account, not an MSA. The account needs to have local administrator rights for the certificate to be found and used; setting ACL on the keystores is not enough. David From: Gavioto 🕵 Sent: Tu

Re: context.xml file location

2024-05-30 Thread David Rush
file named context.xml into the .war file itself, under META-INF directory. David On Thu, May 30, 2024 at 7:35 AM firstName lastName wrote: > I am trying to setup JNDI for tomcat with a java webapp. I am using the > official tomcat docker image (version 10.1.24-jdk21-temurin-jammy). > However,

Re: Tomcat on Windows : new keystore possibilities

2024-04-08 Thread david w
this... David Wooffindin From: Bill Stewart Sent: Monday, April 8, 2024 5:36:47 PM To: Tomcat Users List Subject: Re: Tomcat on Windows : new keystore possibilities On Mon, Apr 8, 2024 at 8:27 AM david w wrote: If you can share a way for this to not be nece

Re: Tomcat on Windows : new keystore possibilities

2024-04-08 Thread david w
If you can share a way for this to not be necessary, I'm all ears...😁 David Wooffindin From: Bill Stewart Sent: Monday, April 8, 2024 4:22:37 PM To: Tomcat Users List Subject: Re: Tomcat on Windows : new keystore possibilities On Mon, Apr 8, 2024 at 3:

Tomcat on Windows : new keystore possibilities

2024-04-08 Thread david w
Hello Referring to the documentation on Apache Tomcat 9 Configuration Reference (9.0.87) - The HTTP Connector keystore types, i wanted to get mentioned that a new set of possibilities is available with newer java builds,

Tomcat in a Windows environment : new keystore possibilities

2024-04-08 Thread David Wooffindin
Referring to the documentation on Apache Tomcat 9 Configuration Reference (9.0.87) - The HTTP Connector keystore types, i wanted to get mentioned that a new set of possibilities is available with newer java builds, when

How to properly enable logging in "org.apache.catalina.core.StandardContext"

2024-02-29 Thread David Karr
In our SpringBoot services, we sometimes run into situations where we get an exception like this: org.springframework.context.ApplicationContextException: Unable to start web server; nested exception is org.springframework.boot.web.server.WebServerException: Unable to start embedded Tomcat It do

Should allowHostHeaderMismatch be case sensitive

2023-12-11 Thread David Cleary
lt of false, is supposed to reject requests based on the case of the host name. Thanks David Cleary Progress

Disabling cipher warning

2023-08-29 Thread David Cleary
2023-08-29T15:31:57.840-04:00 WARN [main] o.a.t.u.n.j.JSSEUtil - Some of the specified [ciphers] are not supported by the SSL engine and have been skipped: [Dozens of OpenSSL ciphers] We use OpenSSL and moving to Tomcat 10.1.13 has caused an overload of useless information to appear when start

Tomcat-embed and Tomcat Vulnerabilities

2022-11-16 Thread David Alejandro Christensen Arreola
vulnerability going to mention tomcat-embed or Tomcat Server only when applicable? Thank you David A Christensen HCL Software -- ::DISCLAIMER:: The contents of this e-mail and any attachment(s) are confidential and intended for the named recipient(s) only. E-mail

Re: Tomcat/Java app timezone radomly changes during operation.

2022-10-28 Thread David
022, 09:22 David wrote: > I'll see if I can answer all queries. > > The server doesn't migrate, at least not across timezones. It is a > nutanix virtual though, so migration between hosts locally is possible. > > There is a Java app that allows a user to reset their passwo

Re: Tomcat/Java app timezone radomly changes during operation.

2022-10-28 Thread David
t may be the cause but is triggered by load/db contention. Lower environments that don't show the issue don't have much traffic as they are for dev/uat/etc. Thanks all! David On Fri, Oct 28, 2022, 02:51 Konstantin Kolinko wrote: > чт, 27 окт. 2022 г. в 18:31, David : > > >

Tomcat/Java app timezone radomly changes during operation.

2022-10-27 Thread David
C as well until restarting tomcat. During the issue the log timestamp remains in CDT as expected, even though values passed are UTC. I have explicitly defined the timezone in setenv.sh with no change in behavior. Any thoughts as what to investigate are greatly appreciated. Thanks, David

Re: Help with deploying multiple .WAR files in Tomcat

2022-08-05 Thread David Rush
We successfully deploy multiple webapps by simply dropping .war files into the webapps directory all the time. No problems here. Just sharing my perspective. David On Thu, Aug 4, 2022 at 4:10 PM James H. H. Lampert wrote: > Multiple WAR files work fine for us. But we don't simply &q

RE: Testing Tomcat pre-releases

2022-04-29 Thread David Cleary
> -Original Message- > From: Christopher Schultz > Sent: Thursday, April 28, 2022 12:16 PM > To: Tomcat Users List > Subject: Re: Testing Tomcat pre-releases > > David, > > (Replying to the Tomcat users@ list) > > On 4/28/22 08:45, David Cleary wr

Re: javax.servlet vs jakarta.servlet?

2021-12-29 Thread David Kerber
On 12/29/2021 2:54 PM, Michael B Allen wrote: On Wed, Dec 29, 2021 at 2:07 PM Mark Thomas wrote: One of the advantages of moving to Eclipse is that everyone involved in the spec, not just the spec lead, has an equal say in what goes into the spec. That sounds like design by committee which i

RE: CVE-2021-44228 Log4j 2 Vulnerability - Runtime vs compile time Java version

2021-12-13 Thread David Weisgerber
protect you. I must repeat, there was a website stating that the presence of tomcat alone would open up another attack vector through log4j2. Best regards, David -Original Message- From: Juri Berlanda Sent: Monday, 13 December 2021 16:03 To: users@tomcat.apache.org Subject: Re: CVE-2021

RE: CVE-2021-44228 Log4j 2 Vulnerability - Runtime vs compile time Java version

2021-12-13 Thread David Weisgerber
Hi, as far as I read through the details, it is a runtime option of the JRE. So, it does not need any recompilation. However, some websites pointed out that if you are using Tomcat you could bypass the JRE protection. Best regards, David From: Scott,Tim Sent: Monday, 13 December 2021 09:57 To

End of life dates

2021-11-04 Thread David J Pearson
Hi - What are the end of life / end of support dates for v8.5 and v9 please ? Unless stated otherwise above: IBM United Kingdom Limited - Registered in England and Wales with number 741598. Registered office: PO Box 41, North Harbour, Portsmouth, Hampshire PO6 3AU

Re: 403 Error

2021-09-03 Thread David Lau
Hi Thomas, Thanks for the response. The application uses ADFS authentication, which should be happening through an Apache httpd server, with the application accessed at https://marmoset.eng.uwaterloo.ca. So is the indication here that the ADFS authentication is not working? Thanks, David Lau

403 Error

2021-09-02 Thread David Lau
Start Starting filter 'ProjectJarfileFilter' 03-Sep-2021 03:13:31.474 FINE [main] org.apache.catalina.core.StandardContext.filterStart Starting filter 'InstructorActionFilter' Any assistance would be greatly appreciated. Thanks, David - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org

RE: Truststore in HTTPS Connector does not work with Linux

2020-09-17 Thread David Weisgerber
Linux). -Original Message- From: David Weisgerber Sent: Thursday, 17 September 2020 09:29 To: Tomcat Users List Subject: RE: Truststore in HTTPS Connector does not work with Linux Hi, > Ugh. That *does* point toward a bug in Tomcat itself or something odd with > the JVM. Yep.

RE: Truststore in HTTPS Connector does not work with Linux

2020-09-17 Thread David Weisgerber
re any other people that can confirm this? I guess client certificates is a more rarely used feature. Best regards, David

RE: Truststore in HTTPS Connector does not work with Linux

2020-09-08 Thread David Weisgerber
7; -rfc -keystore > /diagdata/keystore.jks BEGIN CERTIFICATE= blah blah blah =END > CERTIFICATE= > > $ keytool -importcert -alias 'dummy' -keystore /diagdata/keystore.jks [paste > cert here] I tried this but it did not help... Thanks, David

AW: Truststore in HTTPS Connector does not work with Linux

2020-09-08 Thread David Weisgerber
e=WINDOWS-ROOT ____ Von: Luis Rodríguez Fernández [uo67...@gmail.com] Gesendet: Dienstag, 8. September 2020 10:16 An: Tomcat Users List Betreff: Re: Truststore in HTTPS Connector does not work with Linux Hello David, That error usually happens when the java

Truststore in HTTPS Connector does not work with Linux

2020-09-08 Thread David Weisgerber
rom version 8.5.5. The error also seems not to be based on the java version, I tried it with Java 8 and Java 14. Under Windows we use Java 9... Is this a Linux specific bug? What is a trust anchor anyway? Thanks in advance, David - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org

Re: Tomcat 9.0.29 - HTTPS threads age, max connections reached, Tomcat not responding on 8443

2020-08-27 Thread David
On Thu, Aug 27, 2020 at 4:30 PM Christopher Schultz wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > David, > > On 8/27/20 17:14, David wrote: > > Thank you all for the replies! > > > > On Thu, Aug 27, 2020 at 3:53 PM Christopher Schultz >

Re: Tomcat 9.0.29 - HTTPS threads age, max connections reached, Tomcat not responding on 8443

2020-08-27 Thread David
Thank you all for the replies! On Thu, Aug 27, 2020 at 3:53 PM Christopher Schultz wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > David, > > On 8/27/20 13:57, David wrote: > > On Thu, Aug 27, 2020 at 12:35 PM Christopher Schultz > > wrote: >

Re: Tomcat 9.0.29 - HTTPS threads age, max connections reached, Tomcat not responding on 8443

2020-08-27 Thread David
On Thu, Aug 27, 2020 at 12:35 PM Christopher Schultz wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > David, > > On 8/27/20 10:48, David wrote: > > In the last two weeks I've had two occurrences where a single > > CentOS 7 production serv

Tomcat 9.0.29 - HTTPS threads age, max connections reached, Tomcat not responding on 8443

2020-08-27 Thread David
open to any suggestions that would be able to automate a resolution to keep the system from experiencing downtime, or for any insight on where to look for a root cause. Thanks in advance for any guidance you can lend. Thanks, David

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-10 Thread David Filip
would touch anything Java related in their updates (unless it is related to some JNI code that is calling some OS specific stuff somewhere?). Nonetheless, thanks for your feedback, and I'm closing down this thread now. Regards, Dave. > On Aug 10, 2020, at 4:28 AM, Mark Thomas wrote: &

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-09 Thread David Filip
e that on the older Macs (macOS 10.12) it never stopped working, and up until about a week ago, it worked correctly on the newer Macs (macOS 10.14), until it didn't, without knowing what changed. Clear as mud? > On Aug 9, 2020, at 3:19 PM, Mark Thomas wrote: > > On August 8, 2020

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-08 Thread David Filip
sistent reproducibility. > On Aug 8, 2020, at 5:17 PM, calder wrote: > > On Sat, Aug 8, 2020, 13:59 David Filip <mailto:dfi...@colornet.com>> wrote: > >> Hello Everyone! >> >> I spent a large part of yesterday and this morning trying to debug an SSL >

Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-08 Thread David Filip
Hello Everyone! I spent a large part of yesterday and this morning trying to debug an SSL problem on Tomcat 8.5.57 to no avail. I've seen some discussion on either this problem or something related back in 2016, but wanted to confirm what the "correct" solution might be, because I got lost in

RE: Alternatives for AJP

2020-04-13 Thread David Cleary
, à 17:45, David Cleary a écrit: >Some of our customers are currently using the AJP connector. Given the >vulnerability and breaking change to address it, now may be a good time >to prompt them look at alternatives. One requirement is HTTPS support. >What are the alternatives when ho

Alternatives for AJP

2020-04-10 Thread David Cleary
Some of our customers are currently using the AJP connector. Given the vulnerability and breaking change to address it, now may be a good time to prompt them look at alternatives. One requirement is HTTPS support. What are the alternatives when hosting Tomcat behind Apache httpd, nginx, or IIS?

Compiling TCNative on Windows

2020-01-30 Thread David Cleary
One of our customers got binged on a security audit because some Windows binaries weren't compiled with the security features listed below. TCNative is on that list. We only include it for our Windows distributions since it is available in binary form. One side effect of ASLR is that pointers ca

Any suggestions on Java 11 JVM options for Tomcat?

2019-10-31 Thread David Cleary
We made the decision to move to Java 11 for an upcoming release that will be our Long Term Servicing branch. We have noticed a non-trivial increase in memory usage compared to Java 8. On most platforms, it isn't something critical. On Solaris, with the Oracle JVM, we see about double our process

RE: Setting samesite attribute on JSESSIONID

2019-10-13 Thread David Cleary
On 10/10/19 14:08, David Cleary wrote: > Have a customer asking about this. I see Tomcat supports it here. > https://tomcat.apache.org/tomcat-9.0-doc/config/cookie-processor.html > .apache.org > > > We currently use defaults, so I'm looking for an XML fragment and > the

Setting samesite attribute on JSESSIONID

2019-10-10 Thread David Cleary
Have a customer asking about this. I see Tomcat supports it here. https://tomcat.apache.org/tomcat-9.0-doc/config/cookie-processor.html We currently use defaults, so I'm looking for an XML fragment and the file it goes in to add the samesite attribute to the JSESSIONID. I'm assuming they want i

tomcat-users.xml dynamic changes

2019-07-10 Thread David Cleary
Mark, I see this feature in the new Tomcat 8.5 release. - Add the ability for a UserDatabase to monitor the backing XML file for changes and reload the source file if a change in the last modified time is detected. This is enabled by default meaning that changes to $CATALINA_BASE/conf/tomcat-user

Tomcat hanging on shutdown post 9.0.13

2019-06-24 Thread David Cleary
We currently ship our AppServer on Tomcat 9.0.13. We like to update to a more recent version when we ship a new release. However, Tomcat refuses to stop, on both Windows and Linux, when we go past 9.0.13. I know that it has something to do with our main web application as Tomcat does shut down w

RE: ecj-4.6.3 no longer required?

2019-03-27 Thread David Cleary
Wed, Mar 27, 2019 at 1:58 AM David Cleary wrote: > > I'm current updating our server that is based on Tomcat 8.5.x and found that > ecj-4.6.3.jar is no longer in the distribution. The changelog does not note > that it has been removed. I just want to confirm that I should remove t

ecj-4.6.3 no longer required?

2019-03-26 Thread David Cleary
I'm current updating our server that is based on Tomcat 8.5.x and found that ecj-4.6.3.jar is no longer in the distribution. The changelog does not note that it has been removed. I just want to confirm that I should remove this library as part of the Tomcat update. Thanks Dave

Re: Tomcat 8.5 Startup w/systemctl & Immediate Shutdown

2019-01-23 Thread David Filip
gt; On Jan 23, 2019, at 3:22 AM, Mark Thomas wrote: > > On 22/01/2019 23:52, David Filip wrote: >> Hi All, >> >> I seem to be having troubles getting Tomcat 8.5 to start on an Amazon Linux >> 2 server with systemctl. The problem seems to be that after starting >

Re: Tomcat 8.5 Startup w/systemctl & Immediate Shutdown

2019-01-22 Thread David Filip
- > Hash: SHA256 > > David, > > On 1/22/19 18:52, David Filip wrote: >> Hi All, >> >> I seem to be having troubles getting Tomcat 8.5 to start on an >> Amazon Linux 2 server with systemctl. The problem seems to be >> that after starting tomcat, i

Tomcat 8.5 Startup w/systemctl & Immediate Shutdown

2019-01-22 Thread David Filip
Hi All, I seem to be having troubles getting Tomcat 8.5 to start on an Amazon Linux 2 server with systemctl. The problem seems to be that after starting tomcat, it always immediately tries to shut down. From /var/log: Jan 22 23:13:32 cloud systemd: Starting Tomcat 8.5 servlet container... Jan

RE: Apache Tomcat Deploying war file every time on AIX even though there are no changes in war file.

2018-11-13 Thread David Cleary
Mark, Turns out it is a JDK bug. http://www-01.ibm.com/support/docview.wss?uid=swg1IV99686 https://bugs.openjdk.java.net/browse/JDK-8177809 While it has been fixed, we currently are required to support AIX 6.1, which doesn't have an updated JDK because IBM no longer supports that version of AIX

log4j: Logging to same file from multiple contexts?

2018-10-08 Thread David Filip
Dear Tomcat Users, Apologies if this is more of a log4j question, but I thought that I'd start here, in case Tomcat has any easy remedies. I have a common webapp that I deploy to multiple, different contexts. In log4j.properties, I have a few different log files defined, e.g., for logins: log4

Re: how to prevent user access to JSP pages?

2018-08-22 Thread David Wall
Has any decision been made on how the original poster will do this? As I read through the various responses, while you can always argue certain structures are better, it's simply not true that if you create messy/insecure JSPs, you'll somehow create clean/secure servlets.  Any error you would

Re: how to prevent user access to JSP pages?

2018-08-16 Thread David Wall
I'll be curious to see the answers. JSPs are servlets. For us, the common way would be for your non-JSP servlets to authenticate the request (and save the results in the request), and then your JSPs can check if the request has been authenticated before progressing further.  Of course, if it'

RE: Re: Tomcat 5.5.17 migration to 6.0.53

2018-07-24 Thread David Babooram
-Original Message- From: Christopher Schultz [mailto:ch...@christopherschultz.net] Sent: Tuesday, 24 July 2018 12:41 PM To: users@tomcat.apache.org Subject: [EXTERNAL] Re: Tomcat 5.5.17 migration to 6.0.53 -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 David, On 7/24/18 10:54 AM

Re: Re: Tomcat 5.5.17 migration to 6.0.53

2018-07-24 Thread David Babooram
Hey thanks. Before I go through your recommendations with a fine tooth comb, do you think it will be there same amount of work trying to go straight to the latest Apache version? I started thinking of this since your mentioned the vul. Thanks, David On Tue, Jul 24, 2018 at 12:41 PM

RE: Re: Tomcat 5.5.17 migration to 6.0.53

2018-07-24 Thread David Babooram
Subject: [EXTERNAL] Re: Tomcat 5.5.17 migration to 6.0.53 -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 David, On 7/23/18 12:51 PM, David Babooram wrote: > Hello > > I have begun a migration from 5.5 to 6. Yes I know 6 is EOL but the > migration from 5.5 to 6 has some more d

Tomcat 5.5.17 migration to 6.0.53

2018-07-23 Thread David Babooram
Hello I have begun a migration from 5.5 to 6. Yes I know 6 is EOL but the migration from 5.5 to 6 has some more documentation compared to 5.5 to the latest version. I followed the standard migration of libs and classes from /common /shared etc to the new /lin directory for 6.. The server engin

RE: 21 second pause that randomly happens

2018-07-20 Thread David Cleary
From: charlie arehart [mailto:charlie_li...@carehart.org] Sent: Thursday, July 19, 2018 12:24 PM To: 'Tomcat Users List' Subject: RE: 21 second pause that randomly happens David? Are you still needing help with this? Your answers to what I ask may help us get you to a solu

Re: 21 second pause that randomly happens

2018-07-16 Thread David Cleary
On 16.07.2018 16:35, David Cleary wrote: > 2018-07-16 15:55 GMT+03:00 David Cleary : >>> We have a customer who is experiencing a random, 21 second pause when using >>> out Tomcat > based application server. We believe this may be during a TCP connect and > timeout. Lo

Re: 21 second pause that randomly happens

2018-07-16 Thread David Cleary
2018-07-16 15:55 GMT+03:00 David Cleary : >> We have a customer who is experiencing a random, 21 second pause when using >> out Tomcat based application server. We believe this may be during a TCP connect and timeout. Logging indicates the pause happens before the request makes it

21 second pause that randomly happens

2018-07-16 Thread David Cleary
the Endpoint class, but that did not provide anything useful. There is a NAT firewall between the client and server, so I'm looking for some TCP level logging that could point me in the proper direction. Thanks David Cleary Progress

Re: RE: Re: Tomcat 5.5.17 migration to 6

2018-07-14 Thread David Babooram
Alright. I guess the thought the process was to upgrade to 6, then 7, 8 Thanks, David On Sat, Jul 14, 2018 at 3:38 PM -0400, "Caldarale, Charles R" mailto:chuck.caldar...@unisys.com>> wrote: > From: David Babooram [mailto:david.baboo...@digicelgroup.com] > Subject:

Re: Re: Tomcat 5.5.17 migration to 6

2018-07-14 Thread David Babooram
Hi Good point. But by decision was based on what was presented in the Apache site. In that, upgrade from 5.5 was known to only go to 6. Nevertheless.. is there some official documents on migrating to 8.5? Thanks, David On Sat, Jul 14, 2018 at 11:05 AM -0400, "calder" mai

Tomcat 5.5.17 migration to 6

2018-07-14 Thread David Babooram
on how to proceed with this migration? Thanks, David Notice of Confidentiality: The information contained in this communication is intended solely for the use of the individual or entity to whom it is addressed and others authorized to receive it. It may

Re: configuring ciphers for SSL Labs server test

2018-05-10 Thread David Wall
We're doing good with this:     protocols="TLSv1.1, TLSv1.2" honorCipherOrder="true" ciphers="TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE

TomcatCon at ApacheCon?

2018-02-22 Thread David Cleary
Mark, Will there be a TomcatCon within ApacheCon this year? Dave

Supporting on-line deployment through JMX

2018-01-19 Thread David Cleary
doesn't require the Manager web app? Thanks David Cleary Progress Software

The case of disappearing JARs

2017-11-03 Thread David Morris
I've got a case of disappearing JARs from my webapps lib folder which I can't seem to solve, hopefully someone on the list can provide some pointers. We've got a number of webapps which are deployed by an installer already exploded (The war is exploded and wrapped by the installer) without the

Re: Session timeout despite user activity - websockets on Tomcat 8.5.16

2017-08-09 Thread David Wall
On 8/9/17 8:35 AM, Mark Thomas wrote: On 09/08/17 16:09, David Wall wrote: We're using Tomcat 8.5.16 with Java 1.8.0_91, Vaadin 7.7.10 and Atmosphere Websockets. We have had reports of sessions logging out while users are active with our Vaadin-based application. This has been frustrati

Session timeout despite user activity - websockets on Tomcat 8.5.16

2017-08-09 Thread David Wall
a way to update it ourselves as I believe it's managed by Tomcat itself, but as Tomcat is handling the websocket requests, it's unclear why they are not tied to the HttpSession. Anybody have any ideas? Thanks as we have a lot of frustrated user

Re: trimSpaces removing whitespace from html

2017-05-29 Thread David Kavanagh
Here is the link to the enhancement request. https://bz.apache.org/bugzilla/show_bug.cgi?id=45931 Thanks On 29 May 2017 at 13:32, David Kavanagh wrote: > > > On 29 May 2017 at 10:43, Mark Thomas wrote: > >> On 26/05/17 21:33, Christopher Schultz wrote: >> > Mark, &

Re: trimSpaces removing whitespace from html

2017-05-29 Thread David Kavanagh
On 29 May 2017 at 10:43, Mark Thomas wrote: > On 26/05/17 21:33, Christopher Schultz wrote: > > Mark, > > > > On 5/26/17 6:59 AM, Mark Thomas wrote: > >> On 26/05/17 10:15, David Kavanagh wrote: > >>> Hey guys, > >>> > >

Re: trimSpaces removing whitespace from html

2017-05-29 Thread David Kavanagh
On 26 May 2017 at 22:33, Christopher Schultz wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Mark, > > On 5/26/17 6:59 AM, Mark Thomas wrote: > > On 26/05/17 10:15, David Kavanagh wrote: > >> Hey guys, > >> > >> Thank

Re: trimSpaces removing whitespace from html

2017-05-26 Thread David Kavanagh
I will need to confirm with some people if that is a realistic fix for us and i will let you know. Thanks On 26 May 2017 at 13:05, David Kavanagh wrote: > Thanks Mark, > > I will try that out and let you know if it sorts our issue. > > Much appreciated > > On 26 May 2017

Re: trimSpaces removing whitespace from html

2017-05-26 Thread David Kavanagh
Thanks Mark, I will try that out and let you know if it sorts our issue. Much appreciated On 26 May 2017 at 12:59, Mark Thomas wrote: > On 26/05/17 10:15, David Kavanagh wrote: > > Hey guys, > > > > Thanks for getting back to me. I didn't realise that the attachmen

Re: trimSpaces removing whitespace from html

2017-05-26 Thread David Kavanagh
data-mrf-transitioner="${transitioner}" data-mrf-virtualpageid="${virtualPageId}" class="${articleClass} ${imageClassName} ${pocketClassName}">

Re: trimSpaces removing whitespace from html

2017-05-24 Thread David Kavanagh
Hi Mark, Apologies for the delay. I have the files that should reproduce the error for you. The imageTopWrapper.jsp loads the articleBody.tag. Then inside the articleBody.tag file the following section loads class names into the class attributes. data-mrf-transitioner="${transitioner}" d

Re: trimSpaces removing whitespace from html

2017-05-15 Thread David Kavanagh
Ok cool, hopefully that will reproduce so you can see for yourself. Thanks! On 15 May 2017 at 10:39, Mark Thomas wrote: > On 12/05/17 17:08, David Kavanagh wrote: > > Yes, this is one of the .jsp files. I don't know how useful this is. > > Hopefully this will reproduce this

Re: trimSpaces removing whitespace from html

2017-05-12 Thread David Kavanagh
arfeel.com/jsp/mrf/dali"; %> <%@taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core"; %> <%@page pageEncoding="UTF-8" %> On 11 May 2017 at 18:35, Mark Thomas wrote: > On 11 May 2017 15:34:32 BST, David Kavanagh > wrote: > >Yes, the pro

Re: trimSpaces removing whitespace from html

2017-05-11 Thread David Kavanagh
Yes, the problem happens in the class attribute string. They are some examples but it happened throughout the files in many cases. I am using .jsp files Also, in the second example that i gave, you can see that mrf-video was removed as well as mrf-m and mrf-image being joined. This was the strang

Re: trimSpaces removing whitespace from html

2017-05-11 Thread David Kavanagh
-page mrf-noFillet mrf-author mrf-mmrf-image"> 3.Before 3.After There are many more incidents of the same thing happening. Thanks On 10 May 2017 at 20:13, Mark Thomas wrote: > On 10/05/17 17:17, David Kavanagh wrote: > > Hey, > > > > I am wonderin

trimSpaces removing whitespace from html

2017-05-10 Thread David Kavanagh
ge: Inline images 5] 3. Before [image: Inline images 6] 3. After [image: Inline images 7] Any advice on this would be greatly appreciated. Kind Regards David

RE: Diagnose why Tomcat doesn't appear to deploy webapp module

2017-04-18 Thread KARR, DAVID
> -Original Message- > From: KARR, DAVID > Sent: Monday, April 17, 2017 5:01 PM > To: Tomcat Users List > Subject: Diagnose why Tomcat doesn't appear to deploy webapp module > > I'm trying to set up an existing Spring webapp that ran on a different > c

Diagnose why Tomcat doesn't appear to deploy webapp module

2017-04-17 Thread KARR, DAVID
I'm trying to set up an existing Spring webapp that ran on a different container before (weblogic), to run on Tomcat. Working on it in Eclipse, I've gotten all of the compile errors out, and I was able to add the webapp to my Tomcat server instance in the "Servers" view. I started the server i

CVEs Not Published

2017-03-16 Thread David Dillard
know how to get these published? We use some tools to help us identify vulnerable versions based off of CVEs published in the NVD and not having them be published for so long is causing some problems. Regards, David

RE: When do I actually need to add JNDI references to web.xml?

2017-03-14 Thread KARR, DAVID
> -Original Message- > From: KARR, DAVID > Sent: Tuesday, March 14, 2017 1:20 PM > To: Tomcat Users List > Subject: When do I actually need to add JNDI references to web.xml? > > I have a small CXF/REST/Spring/JDBC app that I've run on TomEE and > Tomc

When do I actually need to add JNDI references to web.xml?

2017-03-14 Thread KARR, DAVID
I have a small CXF/REST/Spring/JDBC app that I've run on TomEE and Tomcat. I define datasources and environment entries and retrieve those from the application code using JNDI interfaces. This all works fine. What confuses me is that whenever I read in various unrelated docs about setting and

RE: Moved app from TomEE to Tomcat, now getting Spring errors failing to go through proxy for XML validation

2017-03-10 Thread KARR, DAVID
on > > -BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > David, > > On 3/10/17 1:07 PM, KARR, DAVID wrote: > > I have an app using CXF/REST/Spring/JDBC that is working pretty well > > in TomEE (7.0.1). I'm trying to move it to Tomcat (8.5.11) because it

RE: get NPE from NamingContextListener in app moved from TomEE to Tomcat

2017-03-10 Thread KARR, DAVID
> -Original Message- > From: Mark Thomas [mailto:ma...@apache.org] > Sent: Friday, March 10, 2017 9:42 AM > To: Tomcat Users List > Subject: Re: get NPE from NamingContextListener in app moved from TomEE > to Tomcat > > On 10/03/2017 17:39, KARR, DAVID wrote: >

Moved app from TomEE to Tomcat, now getting Spring errors failing to go through proxy for XML validation

2017-03-10 Thread KARR, DAVID
I have an app using CXF/REST/Spring/JDBC that is working pretty well in TomEE (7.0.1). I'm trying to move it to Tomcat (8.5.11) because it doesn't need to be in TomEE, and I'm having problems adding additional features due to aspects of TomEE. I'm first testing the port by running Tomcat in Ec

get NPE from NamingContextListener in app moved from TomEE to Tomcat

2017-03-10 Thread KARR, DAVID
I have a CXF/REST/Spring/JDBC app running in TomEE (7.0.1). I've decided to try to move it to Tomcat (8.5.11) because of some classloader conflicts (CXF classes) I'm now seeing in trying to add some new code to the app. Initially, I'm just running the server in Eclipse. When I add the apps to

Required changes to move an app from TomEE 7.0.1 to Tomcat 8.5.11

2017-03-10 Thread KARR, DAVID
I'm currently running a somewhat simple CXF/REST/Spring app in TomEE 7.0.1. It uses the CXF libraries in WEB-INF/lib, not in the container. It uses a couple of Environment strings, and some DataSource resources, all of which it gets from JNDI. I'm considering moving this app from TomEE to Tom

Re: Can Tomcat act as an HTTPS proxy?

2017-01-19 Thread David P. Caldwell
On Thu, Jan 19, 2017 at 7:15 PM, Daniel Savard wrote: > 2017-01-19 12:21 GMT-05:00 David P. Caldwell > : > >> Chris, >> >> Good questions, I'll try to clarify. >> >> 1. The backend server serves files via HTTPS. (I control this, and may >> switch

Re: Can Tomcat act as an HTTPS proxy?

2017-01-19 Thread David P. Caldwell
situation, explaining it to you suggests a different solution -- since I have my Tomcat "middle" server with an HTTPS connector, and that is working, I am also going to experiment with using HTTPS to communicate with the middle, and then switch the back end to HTTP. I'm not sure that&#

Re: Can Tomcat act as an HTTPS proxy?

2017-01-19 Thread David P. Caldwell
erver-side implementation that can make the request of the backend server and return the response to the front end. On Thu, Jan 19, 2017 at 10:38 AM, David P. Caldwell wrote: > I'm trying to forward HTTPS requests through a Tomcat HTTP (or HTTPS) > server to a backend HTTPS server. > > The

Can Tomcat act as an HTTPS proxy?

2017-01-19 Thread David P. Caldwell
erstanding of the concepts is a bit murky, so I might be wrong. Am I on the right track? If so, is there something configurable that will allow those requests to be forwarded rather than rejected? -- David P. Caldwell http://www.davidpcaldwell.com/ -

  1   2   3   4   5   6   7   8   9   10   >