Hi Chris Thanks for your replies. I am somewhat new to Tomcat, only been using it for 1 year, so some of the technical details are new to me.
> Is it possible that you are not using URL-based session ids, and that your > browser has cookies disabled via a policy? I will need to check URL-based session ids. How do I check? Also, my browser does not have cookies disabled. > Is the browser or the server (or both) on Windows 2012? The server is on Win 2012. It works OK when both the browser and server are the same 2012 VM. I don't know if it works when both client and server are both Win 2012 but different machines. I will be able to check that soon. It does not work with different client OS version and box than the server, but that may simply be coincidence. > Try using a protocol sniffer to see if the browser is sending a session id to > the server, and if the server is responding with a session id either before > or after login. Wow, that sounds intimidating - never done that before. :-) -- Cris Berneburg, Lead Software Engineer CACI, IRMA Project, 703-679-5313 -----Original Message----- From: Christopher Schultz [mailto:ch...@christopherschultz.net] Sent: Thursday, December 11, 2014 1:35 PM To: Tomcat Users List Subject: Re: tomcat on windows 2012 weirdness -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cris, On 12/11/14 12:41 PM, Christopher Schultz wrote: > Cris, > > On 12/11/14 11:28 AM, Cris Berneburg - US wrote: >> I'm having trouble with my JSP web app using Tomcat 6 and 7 on >> Windows Server 2012. > >> The issue is that no matter what file I request in the browser URL, >> it always returns the app welcome file, that is, the login page. Even >> when requesting an image. The one exception is that after logging >> in, the main menu page appears, but none of the graphics or CSS files >> load. Clicking on the app links, it just brings up the welcome page >> again. Checking the Tomcat log files, I see that Tomcat is returning >> the welcome page instead of the files requested in the main menu >> page. > >> Using the Tomcat manager, I see that my application has a ridiculous >> number of sessions, instead of just one. I interpret that for every >> single file requested, a new Tomcat session is being generated and >> possibly invalidated. > >> FYI, using the same setup on Windows Server 2003 and 2008 works fine. >> Opening the same firewall ports on all three OS's has been done. Even >> disabling the firewall on 2012 does not affect the issue in any way. >> And to make things even weirder, accessing the application from a >> browser on the server itself using localhost works fine! > >> I wonder if there is some mystery setting somewhere that is crippling >> the app. Got any suggestions? Please help. Thanks! > > Check two quick things: > > 1. Do you have any security-constraints in WEB-INF/web.xml? If so, do > they all make sense, and can users actually access those resources > once logged-in (or at all)? > > 2. Do you have any servlets in WEB-INF/web.xml mapped to "/" other > than the DefaultServlet (which should be configured by default so you > shouldn't have to configure it yourself)? After re-reading your post, it's pretty clear that my initial questions will be worthless and not help you. Is it possible that you are not using URL-based session ids, and that your browser has cookies disabled via a policy? Is the browser or the server (or both) on Windows 2012? Try using a protocol sniffer to see if the browser is sending a session id to the server, and if the server is responding with a session id either before or after login. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJUiePTAAoJEBzwKT+lPKRYORoP/iCMTFyLmWf6SCBbQX4HH7A+ zGFqVw95Iaf2Kd2xwMqy6xA8SLpVhtr/TezyJQQHTCg3pMgx9NS9kFZPV4QACEVF iM6QGk0xnzEo5v4SBTgj9dp/aIF3eYQV0P6kkLGlEm7Zgno/nIHHRL3hYQAj+Lj9 f7czP1nEx2+OyoVtVedV1LxyvuohtUJto5/c1cslwl3+GhCYNqqAcFchdRjDp/KI qt9IWvkC3OfS+asTfxJ23BITAHXnTDOemeIYZ9yRolVfbYzI8+JtNMDjMB69hQgS yy45//MI38p50dW2+qxNk41R113I3rL7fvAV7lKJh6Eaxr/R0oxUgEj1cSv34s5X x30feYSxmpVBveCgb4pmiGoZ/DmEhb53qHDs5EbPE3LkjkN9nAN1A9mGscwMETBC SqF1ECgJz8H95hOOf/g45CZSyB+5fQ1VHoTGQQya6WBVYrvfl+tRxCMw2bP2/I2L 2Owl4IYOGZxqjkMHzX5ubRYqE2TLXo3pgTNKYRaR6fJhlR04gAZqdnAXCES67VD0 WSFqSQcMZYuzZvCAJ87YOiCLbvF48uV2BEOUTmxp92f1i1o3qoAqrmOZVtP1d+Gu rxXHYjd0sw0jV27VWpoWc0KVsLP/ZXxKrjU2h8OE0vr5MHeZkPyj6YKs9BISV8An 30qBjkuotwNX319XEmtz =zyqf -----END PGP SIGNATURE-----