On 21/07/2016 18:07, Nick Klose wrote:
> Hi Mark,
>
> I only need access from one remote machine, but I couldn't get a valve
> working properly for the IP I'm connecting from so I decided to open access
> from anywhere until I get the Manager App working.
>
> The file's at at /opt/tomcat8-dev/conf/context.xml. I've not made any
> changes to server.xml.
That is the default context.xml that applies to every web application.
You should be editing the Manager context.xml file that will be in
webapps/manager/META-INF/context.xml
Don't forget to restore conf/content.xml to its original form.
Mark
>
> I tried modifying context.xml to look like this, but nothing seems to have
> changed:
>
> <?xml version="1.0" encoding="UTF-8"?>
> <Context>
>
> <WatchedResource>WEB-INF/web.xml</WatchedResource>
>
>
> <WatchedResource>${catalina.base}/conf/web.xml</WatchedResource>
> <Manager pathname="" />
> </Context>
>
> Thanks,
> Nick Klose
>
> On Thu, Jul 21, 2016 at 12:20 AM, Mark Thomas <ma...@apache.org> wrote:
>
>> On 20/07/2016 23:11, Nick Klose wrote:
>>> Hello,
>>>
>>> I have recently set up Tomcat 8.5.4 on Ubuntu 14.04. I have the default
>>> page showing on port 8080, but when I click on the Manager App button I
>>> immediately get "403 Access Denied" and am not prompted to enter a
>> username
>>> or password. I have set up roles and a user in conf/tomcat-users.xml in
>> my
>>> Tomcat install directory (which I have named /opt/tomcat8-dev). Here's
>> what
>>> that file looks like:
>>>
>>> <tomcat-users xmlns="http://tomcat.apache.org/xml";
>>> xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
>>> xsi:schemaLocation="http://tomcat.apache.org/xml tomcat-users.xsd"
>>> version="1.0">
>>> <role rolename="admin"/>
>>> <role rolename="admin-gui"/>
>>> <role rolename="manager"/>
>>> <role rolename="manager-gui"/>
>>>
>>> <user username="admin" password="[redacted]"
>>> roles="admin,admin-gui,manager,manager-gui"/>
>>> </tomcat-users>
>>>
>>> The server I'm running it on is a remote VM without a window manager,
>>> however I installed elinks (a command-line web browser) and tested the
>>> Manager App and it worked fine there; I was asked for credentials, and
>> was
>>> able to view the app using the username/password I specified. However,
>> this
>>> is obviously not an ideal solution.
>>>
>>> I have tried modifying context.xml as specified in the documentation. I
>>> have enabled privileged mode and added a valve allowing any IP to connect
>>> (specified using a regex). Here's what my context.xml file looks like
>>> currently:
>>>
>>> <?xml version="1.0" encoding="UTF-8"?>
>>> <Context privileged="true" antiResourceLocking="false"
>>> docBase="${catalina.home}/webapps/manager">
>>>
>>> <Valve className="org.apache.catalina.valves.RemoteAddrValve"
>> allow="^.*$"
>>> />
>>>
>>> <WatchedResource>WEB-INF/web.xml</WatchedResource>
>>>
>>>
>>> <WatchedResource>${catalina.base}/conf/web.xml</WatchedResource>
>>> <Manager pathname="" />
>>> </Context>
>>>
>>> Any suggestions for how I can fix this issue?
>>
>> If you want to allow access from everywhere (not recommended) just
>> remove / comment out the Valve.
>>
>> Where is the context.xml file located?
>>
>> Unless you have changed the default settings in server.xml for the
>> default Host, you should not need to specify a docBase in context.xml.
>>
>> Mark
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
>> For additional commands, e-mail: users-h...@tomcat.apache.org
>>
>>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
