glenn 02/03/20 04:33:01
Modified: webapps/tomcat-docs/config host.xml
Log:
Add the Host deployXML attribute. If false, Context config XML files
found in the Host's appBase are not deployed. Default is true.
When Catalina deploys an application in runs with the security
policy settings of the server. In a virtual web hosting environment
this could allow the virtual host outside of its security sandbox.
Revision Changes Path
1.12 +9 -0 jakarta-tomcat-4.0/webapps/tomcat-docs/config/host.xml
Index: host.xml
===================================================================
RCS file: /home/cvs/jakarta-tomcat-4.0/webapps/tomcat-docs/config/host.xml,v
retrieving revision 1.11
retrieving revision 1.12
diff -u -r1.11 -r1.12
--- host.xml 5 Mar 2002 01:55:03 -0000 1.11
+++ host.xml 20 Mar 2002 12:33:01 -0000 1.12
@@ -115,6 +115,15 @@
debugging detail level is zero (0).</p>
</attribute>
+ <attribute name="deployXML" required="false">
+ <p>Set to <code>false</code> if you want to disable deploying
+ applications using a Context XML config file. Applications are
+ deployed with the security permissions of catalina, for security
+ this may need to be set to <code>false</code> if untrusted users
+ can manage web applications. The flag's value defaults to
+ <code>true</code>.</p>
+ </attribute>
+
<attribute name="errorReportValveClass" required="false">
<p>Java class name of the error reporting valve which will be used
by this Host. The responsability of this valve is to output error
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
