Unfortunately, the fundamentally bad security scheme is how the JS API
specification is implemented in Tomcat (when using form-based
authentication).
When processing a form-based authetication request under HTTPS, Tomcat
retains the session ID allocated under HTTP.
We have tried invalidating the
Hi All,
I have a basic doubt on precompilation .I am doing precompilation using the
scripts(jspc.sh) .
Its giving the Exception in thread "main" java.lang.NoClassDefFoundError:
org/apache/tools/ant/util/FileUtils
at org.apache.jasper.JspC.resolveFile(JspC.java:1395)
at org.apache.jasper.JspC.setU
Hi Rainer,
really good idea to fix the worker logging
++1...
=== Peter
Rainer Jung schrieb:
Hi,
thanks for the feedback. Good info!
fredk2 schrieb:
issue 1:
With mod_jk 1.2.15 i set my jk log level:
JkLogFile logs/mod_jk.log
#JkLogLevel info
JkRequestLogFormat "%w
Eclipse 3.2 and
java version "1.5.0_06"
Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_06-b05)
Java HotSpot(TM) Client VM (build 1.5.0_06-b05, mixed mode)
regards
--
View this message in context:
http://www.nabble.com/Hot-code-replace-tf2078792.html#a5738944
Sent from the Tom
Hello Dies,
the working directory would be fine, but my images need to be accessible
via a url(which is not the case if they are located inside the temp dir)
In fact when an image is generated, I push the url inside the client
browser, the new url automatically replaces the previous one in a
st
Hello Romain,
Is there no way you can use the temporary working directory
(javax.servlet.context.tempdir)?
I don't know what "pushing inside a client browser" means, but as you
mentioned the files are temporary, this sounds like the place to put them..
Also, you won't need to worry about mainta
Mikolaj Rydzewski wrote:
Romain Quilici wrote:
My pb is more to write in a given directory(must be accessible with a
url), than to read.
And I would prefer this directory to be located in my webapp.
Use directory outside webapp and then map it with alias, or some kind
of dispatcher servlet/fil
Hello,
I have configured a SimpleServletFilter to act as my authentication
filter, i want it to do certain things after the authentication has failed.
My application is being authenticated using a TOMCAT JDBC Realm. The
authentication scheme is BASIC.
I noticed that the filter is b
Gregor Schneider wrote:
> Hi Mark,
>
> something really, really strange is happening here: As you suggested, I've
> subclassed org.apache.catalina.authenticator.FormAuthenticator, patched the
> Authenticators.properties in catalina.jar, however, my own Authenticator is
> not being used.
> I tho
It's a fundamentally bad security scheme to use the session-ID as the
identifier for your users. Might be straight forward, but architecturally a
bad choice if you *really* want a secure area.
Kim :-)
On 8/9/06, Tomas Hulek <[EMAIL PROTECTED]> wrote:
The default Tomcat installation is prone t
Ulath wrote:
i am trying to use eclipse with tomcat (myeclipse plugin) but when i change
one of my class (JSF backing beans) i get Hot code replace failed - Scheme
change not implemented error, so i need to restart tomcat each time
what could i do to enable hot code replacement?
What IDE
Tomas Hulek wrote:
> The default Tomcat installation is prone to session hijacking. I would
> appreciate help how to fix it.
This is a more general http problem with a well known solution. Do
everything over https.
Mark
-
To sta
On 8/9/06, Kohn, Robert M. <[EMAIL PROTECTED]> wrote:
I have two web apps that are identical except for their root directory
(and entry in server.xml).
Is there any way of determining from within a servlet which one is
actually running?
ServletContext.getServletContextName() should do it, eh?
hari168 wrote:
I am using Tomcat 5.5 , Apache 1.3.27 and Mod_JK 1.2.15..
Connectivity is failing with following error message in mod_jk.log file
[error] jk_init::mod_jk.c (2039): Initializing
shm:${APACHE_HOME}/logs/jk-runtime-status errno=13
Please any one suggest, how i can dig this issue..
Dear Friends,
I have two web apps that are identical except for their root directory
(and entry in server.xml).
Is there any way of determining from within a servlet which one is
actually running?
Or, alternatively, is there a way of retrieving values from the
section of server.xml for the corre
I would say you don't need a book. The tomcat reference and usage docs
are excellent, and then you have a gazillion tutorials online
Filip
M. Goodell wrote:
Hello,
Are there any text books / reference information about Tomcat on the maket that are considered to be the must haves ??? Yea
I am using Tomcat 5.5 , Apache 1.3.27 and Mod_JK 1.2.15..
Connectivity is failing with following error message in mod_jk.log file
[error] jk_init::mod_jk.c (2039): Initializing
shm:${APACHE_HOME}/logs/jk-runtime-status errno=13
Please any one suggest, how i can dig this issue..
--
View this
Thanks David. I will give it a try.
-Original Message-
From: David Smith [mailto:[EMAIL PROTECTED]
Sent: Wednesday, August 09, 2006 11:24 AM
To: Tomcat Users List
Subject: Re: How to call beforeSessionDestroyed of SessionListener
There is also a lesser known interface
javax.servlet.http
There is also a lesser known interface
javax.servlet.http.HttpSessionActivationListener which appears to handle
the condition you are after.
--David
Umesh Kudtarkar wrote:
Anyone with other suggestions ?
-Original Message-
From: Umesh Kudtarkar [mailto:[EMAIL PROTECTED]
Sent: Monda
Hi Mark,
something really, really strange is happening here: As you suggested, I've
subclassed org.apache.catalina.authenticator.FormAuthenticator, patched the
Authenticators.properties in catalina.jar, however, my own Authenticator is
not being used.
Strange though, since if I delete my jar wher
Pid,
I'm sure this is a stupid question but...what? I don't follow.
I can store the object in a database? I'm limited to SQL Server.
Does that matter?
On 8/9/06, Pid <[EMAIL PROTECTED]> wrote:
put it in a database?
0 8 wrote:
> Hello,
>
> I currently have a JSP application under Tomcat that
Anyone with other suggestions ?
-Original Message-
From: Umesh Kudtarkar [mailto:[EMAIL PROTECTED]
Sent: Monday, August 07, 2006 2:23 PM
To: Tomcat Users List
Subject: RE: Re: How to call beforeSessionDestroyed of SessionListener
Hi Moises,
Actually I am not trying to call it. I am hopin
I did, but then I get more than I get one object created for each application.
I literally just stumbled a mention of a "crossContext" setting in
Tomcat, but I'm still trying to figure out if that will help here.
On 8/9/06, Ryan O'Hara <[EMAIL PROTECTED]> wrote:
> How can I create a single obje
How can I create a single object when Tomcat starts up and access that
object from multiple web apps?
Thanks,
Matt
Have you added listener and listener-class tags in each applications'
web.xml?
Ryan
-
To start a new topic,
check jndi ressources
On 8/9/06, Pid <[EMAIL PROTECTED]> wrote:
put it in a database?
0 8 wrote:
> Hello,
>
> I currently have a JSP application under Tomcat that uses an object
> created when Tomcat starts up. The object is created using a class
> that implements ServletContextListener and I
put it in a database?
0 8 wrote:
> Hello,
>
> I currently have a JSP application under Tomcat that uses an object
> created when Tomcat starts up. The object is created using a class
> that implements ServletContextListener and I can call the object from
> my JSPs. All is well.
>
> Originally,
Hello,
I currently have a JSP application under Tomcat that uses an object
created when Tomcat starts up. The object is created using a class
that implements ServletContextListener and I can call the object from
my JSPs. All is well.
Originally, I thought I could have one of these objects per
Hi Rainer:
Many thanks for your answers (and fast!).
"Why do you expect a 404 in case Tomcat is down? If the request matches
mod_jk JkMount config, it should try to send to tomcat and the result
would be some 50X? "
What I meant to say was that when previously you might have had a missing
jsp
Hi,
Artur schrieb:
>> - does it happen in times, when you get errors in the mod_jk-log? Does
>> it happen at all times, or do you have peaks at special times?
>>
>> I can't figure it out, when this happens, but there isn't any special
>> moment I can observe.
>> It happens randomly. There isn't
Hi,
thanks for the feedback. Good info!
fredk2 schrieb:
> issue 1:
>
>
> With mod_jk 1.2.15 i set my jk log level:
>
> JkLogFile logs/mod_jk.log
> #JkLogLevel info
> JkRequestLogFormat "%w %V %U %s %T %B %H %m"
>
> While switching to 1.2.18 I read in the fine manual that t
There are a lot of issues here, mostly having to do
with how you've structured your virtual hosts.
However, I think the following should get you up and
running quickly.
In your VirtualHost directive, add the following line:
DirectoryIndex index.html index.html.var login.jsp
That should bring up
hy ,
I think that your problem is on the client side. session is maintained
through cookies (well you know what i mean server discriminates
session based on cookies and stores data somowhere on server) and your
client will never send cookie to different server (in some cases maybe
it will work bu
Hello,
I'm trying to install a web- app under domain name.
I've managed to the point where i get the url
www.mydomain.com/webapp out of the tomcat webapp directory.
My problem is that every other domain on the server now also points to
the webapp directory.
How can I solve this?
Ive put mount rema
You can't place a jsp in /usr/local/tomcat/webapps. Tomcat does not
make that location available to the client.
You originally had a ecommerce webapp with a login.jsp file you wanted
to access at the top level. I recommended you rename the webapp
'ecommerce' to 'ROOT' and reconfigure apache
So, What must I change in my configuration files. I want that I access to
192.168.1.2 appear my login.jsp. I'm very stressed. I have a feeling I do
all right. I understant it.
my login.jsp is located in /usr/local/tomcat/webapps/login.jsp
--
View this message in context:
http://www.nabble.com
hi,
i am trying to use eclipse with tomcat (myeclipse plugin) but when i change
one of my class (JSF backing beans) i get Hot code replace failed - Scheme
change not implemented error, so i need to restart tomcat each time
what could i do to enable hot code replacement?
regards...
--
Vie
Thanks It works now. I have a syntax error in tags too!
--
View this message in context:
http://www.nabble.com/How-to-define-a-local-TLD-in-web.xml-%28DRY-principle%21%21%21%29-tf2077762.html#a5725676
Sent from the Tomcat - User forum at Nabble.com.
I'm trying to build the APR dll under Windows XP.
I unpacked them in directories
apr
apr-iconv
apr-util
I started the aprutil.dsw file and was able to build
apr-1.lib without a hitch.
But building libapriconv.dll I'm getting undefined symbols:
Linking...
Creating library Debug/libapriconv-1.
The default Tomcat installation is prone to session hijacking. I would
appreciate help how to fix it.
The problem is that the session-id generated under HTTP (eg. for any JSF
page) is caried over to authenticated confidential pages under HTTPS.
Thus the session ID can be easily sniffed under HTTP
Does anybody have experience setting up the workers.properties file to
serve mmbase through apache?
--
D. Salemink
Zomerdijkstraat 1-11079WX Amsterdam
+31207726869 +31651611510
Nieuwe media cursussen http://www.klikstudio.net
Webdesign en hosting http://www.klikstudio.nl
I've a main website hosting domain "domain.com". There are links on this
page that point to response servers, which is a subdomain "rs.domain.com".
The problem is that when a user signs in on the "domain.com" and clicks
on any link his session is not available on "rs.domain.com".
I see that th
Hi,
I have a filter (for /*) in which I'm caching something in the
session. Here is a piece of code:
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) {
HttpServletRequest req = (HttpServletRequest) request;
HttpSession session = req.getSess
It's a difference of path. To Apache, the ecommerce webapp is the root
of your site, but Tomcat does not see it that way. Tomcat only
recognizes the ROOT webapp as the document root. Rename the ecommerce
webapp to ROOT (notice the all caps), deleting the original ROOT
directory under webapps
The taglib-location element is relative to the context as in
/WEB-INF/tld/myfaces_core.tld
--David
Ach wrote:
I entered below section in my web.xml because of not repeating
<%@ taglib=blaBla in each jsf page:
http://java.sun.com/jsf/core
/tld/myfaces_core.tld
http://
Hello,
mmm, I've compiled and linked and configured mod_jk with Apache 2.0
correctly, but I doesn't work correctly. Mmm, if I access to
http://192.168.1.2 explorer continues show me the code of my JSP, but if I
access to http://192.168.1.2/ecommerce/login.jsp it shows me correctly the
JSP forma
I entered below section in my web.xml because of not repeating
<%@ taglib=blaBla in each jsf page:
http://java.sun.com/jsf/core
/tld/myfaces_core.tld
http://java.sun.com/jsf/html
/tld/myfaces_html.tld
http://myfaces.apache.org/tomahawk
/tld/t
Romain Quilici wrote:
My pb is more to write in a given directory(must be accessible with a
url), than to read.
And I would prefer this directory to be located in my webapp.
Use directory outside webapp and then map it with alias, or some kind of
dispatcher servlet/filter.
It'll help you to r
Mikolaj Rydzewski wrote:
Romain Quilici wrote:
However, Tomcat creates automatically a directory under webapps to
contain war file contents, so I am wondering if Tomcat is using the
newly generated directory to load the application(1st case) or
the war file (2nd case).
In the first case contex
Romain Quilici wrote:
However, Tomcat creates automatically a directory under webapps to
contain war file contents, so I am wondering if Tomcat is using the
newly generated directory to load the application(1st case) or
the war file (2nd case).
In the first case context.getRealPath("/") should
Hi,
Im trying to deploy a Mbean in a web app. When I create the MBean, the next
exception is throwed:
javax.management.ReflectionException: null nested exception is
java.lang.ClassNotFoundException:
es.tid.puzzle.framework.jmx.agente.ControladorServicios
java.lang.ClassNotFoundException:
es.
50 matches
Mail list logo
