Please may I have some assistance to upgrade a JAVA Maven project which uses
embedded Tomcat 7 to use embedded Tomcat 10?
I’m having extreme difficulty determining the appropriate versions of the
various components such that they play nice together.
I am also planning to upgrade from JAVA 7 to
get a canonical version of Tomcat (e.g. 8.5.78) built
that contains the remediation for CVE-2022-0778? Is there anything I can do to
help?
Matthew Mellon CISSP
Chief Information Security Officer
828.265.2907 ext 5058 | www.ecrs.com<https://www.ecrs.com/>
[cid:image001.png@01D83D1E.16997AA0]
ted access to this application: I
redirect all HTTP requests to the HTTPS site, and I set a HSTS header
that signals browsers to remember this for future connection attempts.
Best wishes,
Matthew
P.S. If you haven't already, please review
https://wiki.mozilla.org/Security/Server_Side_TLS and appl
is this the right place to ask about tomcat7-maven-plugin v2.2? i am
trying to run mvn tomcat:deploy to /manager/text on a host which is
proxy passed from behind httpd. several virtual hosts are deployed on
the server. SNI works fine through the browser and using openssl
s_client
HAHAHAHAHAHA
On Wed, Jul 27, 2016 at 7:06 PM, James H. H. Lampert <
jam...@touchtonecorp.com> wrote:
> Ladies and Gentlemen of both Lists:
>
> Does anybody in either the Tomcat List or the Java 400 List have
> experience running Tomcat 8 on an IBM Midrange box?
>
> And (just for the Java 400
net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Matthew,
>
> On 5/5/16 9:09 PM, Matthew Herzog wrote:
> > You said, "the http-bio-8443 endpoint is an HTTP connector, not an
> > AJP13 connector."
> >
> > This is confusing to me be
t 443. Bad assumption on my
part.
On Thu, May 5, 2016 at 5:28 PM, Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Matthew,
>
> On 5/5/16 5:05 PM, Matthew Herzog wrote:
> > when I run the startup script
&
when I run the startup script
/usr/bin/java -Djava.security.egd=file:/dev/./urandom
-Djava.awt.headless=true -Xmx512m -XX:MaxPermSize=256m
-XX:+UseConcMarkSweepGC -classpath
/usr/share/tomcat/bin/bootstrap.jar:/usr/share/tomcat/bin/tomcat-juli.jar:/usr/share/java/commons-daemon.jar
I use an application called Spacewalk to manage RHEL systems in an
enterprise environment. The application provides an API that I use for
automation purposes. While load starts to increase on the application
server, we reach a breaking point where the application becomes
unresponsive, and throws
On 01/22/2015 04:19 AM, Mark Thomas wrote:
On 22/01/2015 00:12, Matthew Mah wrote:
On 01/21/2015 03:24 PM, Christopher Schultz wrote:
Have you tried a plain-old HTTPS connection? No Websocket?
I just tried HTTPS using
HttpsURLConnection urlConnection = (HttpsURLConnection)
url.openConnection
On 01/21/2015 11:26 AM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Matt,
On 1/21/15 11:13 AM, Matthew Mah wrote:
On 01/20/2015 10:08 AM, Christopher Schultz wrote: Matthew,
On 1/18/15 1:54 PM, Matthew Mah wrote:
I have setup a Tomcat server using spring-boot
On 01/20/2015 10:08 AM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Matthew,
On 1/18/15 1:54 PM, Matthew Mah wrote:
I have setup a Tomcat server using spring-boot with SSL/TLS for
secure websockets.
Tomcat version? JVM version? Any relevant configuration
On 01/21/2015 03:24 PM, Christopher Schultz wrote:
Have you tried a plain-old HTTPS connection? No Websocket?
I just tried HTTPS using
HttpsURLConnection urlConnection = (HttpsURLConnection)
url.openConnection();
try {
try {
InputStream in = new
I have setup a Tomcat server using spring-boot with SSL/TLS for secure
websockets. This works for Android 4.4, iOS, Firefox, and Chrome
clients. Android 5.0 clients (Nexus 5) fail the SSL handshake.
Has anyone successfully setup secure websockets with Android 5?
I know there are SSL/TLS
I'm running Apache Tomcat 7 on Windows Server 2008 R2 with Java jdk
1.8.0_25. I was able to use the keytool.exe command with the -genkey switch
to create a keystore. I then used keytool.exe to create a CSR which I
submitted to an issuer and received a certificate. I have to use
keytool.exe to
:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Mark,
On 3/27/14, 5:38 AM, Mark Thomas wrote:
On 27/03/2014 03:08, Matthew Turany wrote:
Is it possible to configure either apache or tomcat to send a
packet every x number of seconds so that at the client end the
gateway thinks
Hi,
Trying to figure out if this is possible; apache reverse-proxy sitting in
front of a server running tomcat serving a web app. Due to the amount of
data in the backend DB, when a user generated report is requested, it can
take several minutes (3-4) for the report to be presented to the browser
Hi,
Apologies if this is the wrong place to post this and if so it would be
great if you could let me know where I should direct it.
We're a software developer located in Australia, one of our products uses
Apache as a reverse proxy to multiple tomcat instances each supporting
numerous
the *unloadDelay* property programmatically in
the above example?
Cheers,
Matthew
I am running Tomcat programmatically (embedded) and I wanted to configure
its logging so I can track inbound request.
I start Tomcat as follows:
tomcat = new Tomcat();
tomcat.setBaseDir(DEFAULT_BASE_DIR);
tomcat.getService().addConnector(defaultConnector);
incorrect.
I have confirmed the existence of the private key in the keystore (using
Keystore Explorer), so all that is fine.
Please, any help would be greatly appreciated.
Cheers,
Matthew
*Matthew Westwood-Hill **
*
On 10/29/2012 03:16 PM, verlag.preis...@t-online.de wrote:
3. Bizarre observations when using high-resolution (or even ms-res)
clocks and timers... seems like you can't get more than about 0.1-sec
resolution or so reliably -- or at least plausibly -- on a win32 box.
Hmm, I think this applies
Just a heads up to the Tomcat team - I switched all our comet handling to
Jetty, and these issues are resolved. Something is definitely amiss in the
NIO connector.
Regards,
Matt Tyson
On Sat, Dec 31, 2011 at 10:23 AM, Mark Thomas ma...@apache.org wrote:
On 31/12/2011 16:35, Matthew Tyson
, downloaded separately from Eclipse
* Eclipse = Eclipse Java EE IDE for Web Developers., Version:
Indigo Release, Eclipse Platform, Version:
3.7.0.v20110530-9gF7UHNFFt4cwE-pkZDJ7oz-mj4OSEIlu9SEv0f, Build id:
I20110613-1736.
* 64-bit Windows 7 machine
Thank you,
--
Matthew Doucette
Hi,
I was wondering if anyone knew how to configure Tomcat (6.0.26) to only start
the default app when the Tomcat service starts. I have many webapps deployed so
that they are accessible when I need them and I don't have to
re-deploy/configure them later, but I don't like that they all start
On Wed, Dec 28, 2011 at 1:04 AM, ma...@apache.org wrote:
Matthew Tyson matthewcarlty...@gmail.com wrote:
That's right, there is an f5 load balancer. The valve is used to keep
track of whether the request was via HTTPS or not.
What happens if you go direct to Tomcat and bypass the F5
On Fri, Dec 30, 2011 at 11:57 AM, S Ahmed sahmed1...@gmail.com wrote:
I know with other frameworks (like python/rails) people tend to run
multiple instaces of the web server and round robin requests to each using
something like haproxy.
Is this known in the tomcat community at all?
If I
On Wed, Dec 28, 2011 at 6:22 PM, Matthew Tyson
matthewcarlty...@gmail.comwrote:
On Wed, Dec 28, 2011 at 8:58 AM, Stefan Mayr ste...@mayr-stefan.dewrote:
Am 28.12.2011 10:04, schrieb ma...@apache.org:
Matthew Tysonmatthewcarltyson@gmail.**com matthewcarlty...@gmail.com
wrote:
That's
On Thu, Dec 29, 2011 at 11:07 AM, Pid p...@pidster.com wrote:
On 29/12/2011 17:27, Matthew Tyson wrote:
On Wed, Dec 28, 2011 at 6:22 PM, Matthew Tyson
matthewcarlty...@gmail.comwrote:
On Wed, Dec 28, 2011 at 8:58 AM, Stefan Mayr ste...@mayr-stefan.de
wrote:
Am 28.12.2011 10:04
On Thu, Dec 29, 2011 at 12:02 PM, Tim Watts t...@cliftonfarm.org wrote:
On Thu, 2011-12-29 at 11:22 -0800, Matthew Tyson wrote:
BIG SNIP
How an empty 200 response could be generated
without executing the logging statement here is a mystery.
Do you still have that MonitoringFilter
On Wed, Dec 28, 2011 at 8:58 AM, Stefan Mayr ste...@mayr-stefan.de wrote:
Am 28.12.2011 10:04, schrieb ma...@apache.org:
Matthew Tysonmatthewcarltyson@gmail.**com matthewcarlty...@gmail.com
wrote:
That's right, there is an f5 load balancer. The valve is used to keep
track of whether
On Tue, Dec 27, 2011 at 11:11 AM, Mark Thomas ma...@apache.org wrote:
On 25/12/2011 02:17, Matthew Tyson wrote:
INFO 2011-12-24 10:25:35,578 COMET REQUEST: 75.149.42.46 POST null |
TRACE:
java.lang.Throwable
at
org.cometd.server.CometdServlet.service(CometdServlet.java:149
On Tue, Dec 27, 2011 at 1:31 PM, Stefan Mayr ste...@mayr-stefan.de wrote:
Am 24.12.2011 00:39, schrieb Matthew Tyson:
Hello,
We have been having quite a few problems with using long-polling
connections in Tomcat, via the NIO connector. Upgrading to Tomcat 7.0.23
definitely improved
On Sat, Dec 24, 2011 at 1:06 AM, Mark Thomas ma...@apache.org wrote:
On 23/12/2011 23:39, Matthew Tyson wrote:
Hello,
We have been having quite a few problems with using long-polling
connections in Tomcat, via the NIO connector. Upgrading to Tomcat 7.0.23
definitely improved things
On Sat, Dec 24, 2011 at 10:33 AM, Matthew Tyson
matthewcarlty...@gmail.comwrote:
On Sat, Dec 24, 2011 at 1:06 AM, Mark Thomas ma...@apache.org wrote:
On 23/12/2011 23:39, Matthew Tyson wrote:
Hello,
We have been having quite a few problems with using long-polling
connections in Tomcat
Hello,
We have been having quite a few problems with using long-polling
connections in Tomcat, via the NIO connector. Upgrading to Tomcat 7.0.23
definitely improved things, but we are still seeing major issues.
The problems only crop up after a couple minutes under some load (modest
load,
Hey Guys,
We are seeing the following errors (in production of course, testing didn't
reveal this) after switching to NIO protocol.
This is Tomcat 7.0.22 on CentOS 6. There is a load balancer sending only
comet traffic to port 8080, where the NIO protocol is used.
Nov 15, 2011 8:39:29 AM
Is there more info I can provide to help diagnose this error? It is
killing us.
Thanks,
Matt
On Tue, Nov 15, 2011 at 9:00 AM, Matthew Tyson
matthewcarlty...@gmail.comwrote:
Hey Guys,
We are seeing the following errors (in production of course, testing
didn't reveal this) after switching
From: Matthew Tyson matthewcarlty...@gmail.com
To: Tomcat Users List users@tomcat.apache.org
Sent: Tuesday, November 15, 2011 4:18 PM
Subject: Re: Errors with NIO processor
Is there more info I can provide to help diagnose this error? It is
killing us.
Thanks,
Matt
On Tue
give us a sense of how using a non-blocking connector would be
important when doing comet? Once startAsync is called, will the standard
(blocking) connector continue to hold resources (where the NIO connectors
won't)?
Thanks,
Matt
On Wed, Nov 9, 2011 at 1:24 AM, ma...@apache.org wrote:
Matthew
Hey Guys,
It has been my assumption that Tomcat 7's comet implementation (ie,
asyncSupported=true), will automatically use NIO processing.
Is that not true? Do I need to set the connector to be
org.apache.coyote.http11.Http11NioProtocol explicitly?
Thanks,
Matt
it be handled without blocking IO, I need to use the NIO connector?
Thanks,
Matt
On Tue, Nov 8, 2011 at 12:27 PM, Mark Thomas ma...@apache.org wrote:
On 08/11/2011 20:15, Matthew Tyson wrote:
Hey Guys,
It has been my assumption that Tomcat 7's comet implementation (ie,
asyncSupported
,jcharset.jar,pager-taglib.jar
Any ideas?
Thanks,
Matt
On Wed, Jul 20, 2011 at 12:21 AM, Mark Thomas ma...@apache.org wrote:
On 20/07/2011 03:55, Matthew Tyson wrote:
Hey guys,
tomcat 7.0.19
Java 1.6.0_22
CentOS 5.6
I just switched the web.xml to servlet 3.0 (from a app running
knst.koli...@gmail.com
wrote:
2011/7/20 Matthew Tyson matthewcarlty...@gmail.com:
Adding that to the skip list definitely prevented that error, but I'm
getting many jars with the same problem. I thought I could maybe get
away
with just skipping them all, but I'm starting to see some jars
by
o.a.tomcat.util.bcel.classfile.Constant#readConstant(...). There is a
switch() and default: label results in this exception being thrown.
Expected values there are from 1 to 12. Your 60 is far outside the
range.
2011/7/21 Matthew Tyson matthewcarlty...@gmail.com:
3. Maybe if you enable
Hey guys,
tomcat 7.0.19
Java 1.6.0_22
CentOS 5.6
I just switched the web.xml to servlet 3.0 (from a app running servlet 2.4
previously without issue) and now I'm seeing the following error (turned on
fine logging in the util class):
FINE: Scanning JAR
Hello,
Just performed a download on the 6.0.29 version of the software, and
after performing a Sophos Anti-virus scan found the following four files
to be corrupt: dso-dlfcn.o, locks.o, replace.o, signals.o. These files
were found within the commons-daemon-native.tar.gz for the
.
I can load my servlet from http://localhost:8080/Client_Access, but I can't
load it from http://localhost/Client_Access
so mod_jk isn't working. What could it be?
Thanks,
Matthew Fleming
PS, here is my whole mod_jk.conf file:
LoadModule jk_module /usr/lib/apache2/modules/mod_jk.so
JkWorkersFile
I appreciate all the suggestions and have implemented them all, but its
still not working. Any other suggestions?
Matthew Fleming
Working now. Thanks again for all your advice. The original recommendations
were all that was necessary (plus I had two apache Includes in the wrong
order, and there was a little matter of a typo...) Thanks so much for all
your help.
Matthew Fleming
Thankyou very much for your diagnosis here, Mark. I will investigate the
proposed solution and let you know how it goes.
Cheers,
Matt.
-Original Message-
From: Mark Thomas [mailto:ma...@apache.org]
Sent: Tuesday, 20 July 2010 3:07 AM
To: Tomcat Users List
Subject: Re: SEVERE message
might be trying to send headers,
unfortunately I am not in the same location as the server so I will have
to check this out tomorrow.
I'll keep you posted,
~Matt
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matthew,
On 6/30/2010 8:20 PM, Matthew Mauriello wrote:
The behavior seems
-
Hash: SHA1
Matthew,
On 6/30/2010 12:07 AM, Matthew Mauriello wrote:
I have two directories in 'webapps' other than ROOT. ROOT redirects
users
to webappA. WebappA does not use tomcat's basic authentication but if
you
log into the application there are links inside it that sends the user
method, how do websites grant access
to public sites and secure certain sections? Or is this a problem because
I have two separate applications deployed and I am trying to navigate
between both?
Thanks again,
~Matt
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matthew,
On 6/30/2010 8:20 PM
PGP SIGNED MESSAGE-
Hash: SHA1
Matthew,
On 6/30/2010 8:20 PM, Matthew Mauriello wrote:
The behavior seems rather strange to me in fact, I've seen other
websites
run on what looks to be BASIC Authentication without popping these
browser
messages when leaving secured sections.
Most
of the very few
users on the website.
Hope this clears things up.
Thanks,
~Matt
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matt,
On 6/29/2010 5:57 PM, Matthew Mauriello wrote:
I am having a minor problem related to Tomcat's BASIC Authentication
setup.
A user access my custom web
This is *open* source...
Thx Capt. Obvious - very helpful ;-)
OK, so I now understand why it was chosen to perform the redirection in the
Connector rather than in a Valve; to remove unnecessary processing keeping the
redirect response as efficient as possible. I might lodge an enhancement
.
-Original Message-
From: Cyrille Le Clerc [mailto:clecl...@xebia.fr]
Sent: Friday, 18 June 2010 8:30 AM
To: Tomcat Users List; Matthew Peterson
Subject: Re: HTTP connector to be aware of proxied SSL requests
Hello Matt,
I think the RemoteIpValve does what you need : it looks at http
headers filled
, Matthew Peterson wrote:
Lambda Probe is stale. It has been forked to Psi Probe which has regular
activity: http://code.google.com/p/psi-probe/
Is Lambda Probe stale?
It may not have gotten any updates for a while, but is it really lacking
anything?
- -chris
-BEGIN PGP SIGNATURE-
Version
I have discovered that the RemoteIPValve which has been shipped with Tomcat
since v6.0.24 also performs the tasks am trying to perform with my valve. I had
overlooked it previously due to its name.
We are using v6.0.26, so I'll give it a whirl!
Cheers,
Matt.
-Original Message-
From:
Lambda Probe is stale. It has been forked to Psi Probe which has regular
activity: http://code.google.com/p/psi-probe/
-Original Message-
From: Myk Bova [mailto:syste...@narod.ru]
Sent: Tuesday, 15 June 2010 2:07 AM
To: Tomcat Users List
Subject: Re: Re: how to calculate a memory
Never mind. I found out how to do it. For anyone else interested, from a
catalina.Request object you need to get the underlying coyote.Request object,
access it's Scheme object (type MessageByte) and then set it's String value to
https.
I still don't understand why the catalina.Request object
]
Sent: Monday, 14 June 2010 9:58 AM
To: Tomcat Users List
Subject: Re: Setting scheme on catalina Requests
On 13/06/2010 23:40, Matthew Peterson wrote:
I still don't understand why the catalina.Request object doesn't implement
the convenience method setScheme(String) for this...
Try searching
This application might help. Doesn't matter what versions you have. Takes a
bit to get setup though.
http://www.splunk.com/
From: Caldarale, Charles R [chuck.caldar...@unisys.com]
Sent: Tuesday, November 17, 2009 7:23 AM
To: Tomcat Users List
Subject:
]
Sent: Saturday, May 30, 2009 2:46 PM
To: Tomcat Users List
Subject: Re: jk Status not showing errors
On 29.05.2009 22:50, Matthew Laird wrote:
Good afternoon,
I've been trying to get the jkstatus component of mod_jk running, and
I'm not quite sure what I'm doing wrong in trying to have it report
. worker=prod_se2 failed
You should be able to trace where your config is problematic.
Kind regards / Met vriendelijke groet,
Lawrence Lamprecht
-Original Message-
From: Matthew Laird [mailto:lai...@sfu.ca]
Sent: Tuesday, June 02, 2009 8:53 PM
To: Tomcat Users List
Subject: Re: jk Status
Rainer Jung wrote:
Assuming that you did refresh the jkstatus display: what is your test
client? The fact that you see OK/IDLE, but all requests go to the other
node indicates, that you are using requests with associated session, so
the balancer is not allowed to send them to the other node
Good afternoon,
I've been trying to get the jkstatus component of mod_jk running, and
I'm not quite sure what I'm doing wrong in trying to have it report dead
Tomcat instances.
I have two tomcat instances setup in a load balancer, as a test I've
taken down one of them. However the jkstatus
Hey guys. Just recently, I've started to have this problem with Tomcat not
shutting down if the server has handled lots of traffic. Our test servers,
which have very small amount of traffic, shut down fine. I have to manually
kill the Tomcat process. If I run it in the foreground, ctr-c
Where to begin? Tomcat is not unstable. If you have been editing
setclaspath.sh then you should probably start with a fresh tomcat install. You
don't have to edit that file and who knows what else has been changed. Go
download tomcat (don't use the Ubuntu version). Untar it. Don't copy your
enabled multi-threaded GC. But that doesn't give much
improvement since the threads responding the web requests are still all
on the same core.
I'm not sure how to convince the Tomcat/Java container to spread its
threads among the cores.
Thanks.
--
Matthew Laird
Lead Software Developer
From the OS, no.
From Tomcat, as far as I understand you can only do 2GB per Tomcat
instance. Please correct me if I'm wrong.
Jim Cox wrote:
On Thu, Oct 16, 2008 at 10:30 PM, Matthew Laird [EMAIL PROTECTED] wrote:
[...lines snipped...]
We have an in-house application running on Tomcat 5.5
Caldarale, Charles R wrote:
The only time I began to see the other cores actually start being used is when I
enabled multi-threaded GC. But that doesn't give much improvement since the threads
responding the web requests are still all on the same core.
The most likely cause is internal
Hello,
I have recently ported a tomcat-based application from using IIS 5.1 to
using IIS 6.0, and I am seeing an interesting change in the IIS
configuration that I hoped someone could explain.
I have an application where I want a subset of the URLs to go through
Basic Authentication and
Caldarale, Charles R wrote:
From: Matthew Thomas Broadhead [mailto:[EMAIL PROTECTED]
Subject: server mapping behaviour when directory structure
mirrors mappings
servlet-mapping
servlet-nameSales/servlet-name
url-pattern/sales/url-pattern
/servlet-mapping
If you look
Rainer Jung-3 wrote:
Which version of JK are you using? Assuming you are using 1.2.25, could
you please provide
- information about your platform, versions and configuration
- the JK log using log level debug, and containing the full startup of
apache and one request/response, where
Recently upgraded Tomcat from version 4.1.31 to 6.0.14.
In my webapp I mapped servlets to paths without extensions
e.g.
servlet-mapping
servlet-nameSales/servlet-name
url-pattern/sales/url-pattern
/servlet-mapping
Then in the root of the webapp there is a directory with the same
Recently upgraded Tomcat from version 4.1.31 to 6.0.14.
In my web.xml
- index.htm is set as the welcome file
- index.htm is mapped to a servlet which produces html
and there is a blank index.htm in the root of the webapp.
This worked fine for 4.1.31 on port 8080 and through AJP1.3 connector.
On
You could run both apps under the same domain but still on different hosts,
such that:
app1 is at mydomain.com
app2 is at mydomain.com/app2
If you run tomcat behind apache httpd this is pretty simple to set up (via
mod_proxy_ajp or mod_jk or ... )
For sub.mydomain.com you need to make a DNS
, but I was hoping there is something
akin to serverinfo's stripped down display.
Any thoughts are appreciated!
-Matthew
Hi all,
I have a JSP that calls some code that requires permissions that
aren't in the default grant block in catalina.policy. Even though those
permissions are granted to the code that is being called, I'm getting
access exceptions when the JSP is loaded. I believe this is because the
JSP
on tomcat, thanks!
Mark Thomas wrote:
Matthew Kerle wrote:
let me know if I read that right...
Bill Barker wrote:
When you have the log4j jar in WEB-INF/lib, the it ends up being used
by Tomcat for some of it's logging. As a result, it can cause memory
leaks and other weird errors
that..?)
- -chris
ps - nice web site, bet you're glad the kitchens done!
--
Matthew Kerle
IT Consultant
Canberra, Australia
Mobile: +61404 096 863
Email : [EMAIL PROTECTED]
Web : http://threebrightlights.blogspot.com/
-
To start a new
:
Someone have a case study wich compare Tomcat with others application
servers?
Thanks a lot
Andrew
--
Matthew Kerle IT Consultant Canberra, Australia Mobile: +61404 096 863
Email : [EMAIL PROTECTED] Web : http://threebrightlights.blogspot.com
-users.xml database --
ResourceLink name=users global=UserDatabase
type=org.apache.catalina.UserDatabase/
/Context
Matthew Kerle wrote:
Hi all
I'm developing a web service with xFire 1.2.3 / tomcat 5.5.23 / Java
1.6.0_01, and we need to authenticate access by client applications
/resource-env-ref
Matthew Kerle wrote:
(see below for message context)
Ok, I've decided on using Http Basic authentication for my web
service, and successfully configured tomcat to authenticate against
the tomcat-users.xml file to the point where I can access a valid
principal. But now I've got
...)
Gregor Schneider wrote:
InitialContext.lookup() gives you a simple object:
so change your code to
Context ic = new InitialContext();
Object o = ic.lookup(java:comp/env/users);
set a breakpoint and see, what type of object you're getting back.
hth
gregor
--
Matthew Kerle
IT Consultant
dirty hack and I'm amazed
that this is so hard...
Does anyone have any input on why this might be so, and/or a better
solution to convert the request principal to something I can get
rolenames out of?
thanks!
Matthew Kerle wrote:
//code
Object o = ic.lookup(java:comp/env/users
for [appname] database.
(From Oreilly JavaServer Pages, Bergsten, 2nd Ed., page 485)
/description
res-ref-namejdbc/oponline/res-ref-name
res-typejavax.sql.DataSource/res-type
res-authContainer/res-auth
/resource-ref
*** end web.xml ***
Thanks
Ian
--
Matthew Kerle
this!
Peter Crowther wrote:
From: Matthew Kerle [mailto:[EMAIL PROTECTED]
So what this is saying is that the *names* of the classes are
the same,
but the actual classes are different. this is crazy...
I suspect the two classes are being loaded by different classloaders - a
common and entertaining
for the class up the classloader
chain, returning the standard classloader's class. But I may be
misunderstanding Tomcat's classloaders.
- Peter
--
Matthew Kerle
IT Consultant
Canberra, Australia
Mobile: +61404 096 863
Email : [EMAIL PROTECTED]
Web : http
/lib directory?
If so, you'll need to figure out how to deploy the JAR in one place but
use it everywhere ($CATALINA_HOME/common/lib for TC 5.5 and, I think,
just $CATALINA_HOME/lib for TC 6.0).
- -chris
--
Matthew Kerle
IT Consultant
Canberra, Australia
Mobile: +61404 096 863
Email
a setup like that than pulling specific classes out of the distro
(which may change from version to version).
--
Matthew Kerle
IT Consultant
Canberra, Australia
Mobile: +61404 096 863
Email : [EMAIL PROTECTED]
Web : http://threebrightlights.blogspot.com
is so hard, far out.
thanks so much for your help Peter, I would've been totally stuck
without it!
Peter Crowther wrote:
From: Matthew Kerle [mailto:[EMAIL PROTECTED]
the MemoryUser class is in catalina.jar, which is in the server/lib
folder. would I be right in saying that web application
Chris!
Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matthew,
Why not just use the built-in authentication and authorization mechanism
instead of trying to use Tomcat's built-in classes to roll your own?
A more flexible option is to use securityfilter
(http
application has access to the server/lib jars.
doh...!
Peter Crowther wrote:
From: Matthew Kerle [mailto:[EMAIL PROTECTED]
the MemoryUser class is in catalina.jar, which is in the server/lib
folder. would I be right in saying that web application code
is barred
from loading any classes from
(IllegalAccessException e)
{
log.error(e.getLocalizedMessage(), e);
}
catch (InvocationTargetException e)
{
log.error(e.getLocalizedMessage(), e);
}
Ciao,
Mario
--
Matthew Kerle
IT Consultant
Canberra, Australia
Mobile: +61404 096
...
cheers!
--
Matthew Kerle
IT Consultant
Canberra, Australia
Mobile: +61404 096 863
Email : [EMAIL PROTECTED]
Web : http://threebrightlights.blogspot.com/
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e
PROTECTED]:
check this
http://evolutionnext.com/blog/2005/10/13/1129259088959.html
On 8/16/07, Matthew Kerle [EMAIL PROTECTED] wrote:
hmm, you have an interesting problem!
first thing I'd say is use this opportunity to upgrade to the
ojdbc14.jar, which is the latest oracle jdbc driver
now that sounds good! the only thing is I don't see how that maps to a
DataSource declaration, the Resource element in
GlobalNamingResources doesn't seem to allow the full range of
properties that you need to define a database connection, eg -
username/password/driverClassName/url etc...
1 - 100 of 150 matches
Mail list logo