Don't assume your SSL session or connection hasn't been invalidated just
because you aren't asked to choose a certificate from your browser certs when
you log in again. In our system (Tomcat 5.5.33), I know that our HTTP session
and Single Sign-on session are invalidated upon logout, and we see
thanks mark,
if i understand you correct, it is simply NOT possible to invalidate
the SSLSession of which i can get the id with
request.getAttribute("javax.servlet.request.ssl_session")
(it works with this key in 6.0.32)
wkr turnguard
- Original Message -
From: "Mark Thomas"
To: "Tomca
On 06/09/2011 22:42, Jürgen Jakobitsch wrote:
> apparently there is one, i can get it's id with
> request.getAttribute("javax.servlet.request.ssl_session")
That is a Tomcat bug it should be javax.servlet.request.ssl_session_id
> in tomcat7 there's the possibility to use SSLSessionManager to inva
i should make myself clearer, i guess...
i'm trying to close a SSL connection, in case someone wants to use another
certificate
for a webpage that uses client-cert as authentication method.
i know how to close a session, tanks. what i dont't know, how to invalidate a
SSLSession.
apparently ther
Greetings from Stockholm, this is Baran Topal.
As i was drinking my Guiness, i find your question interesting :)
Here you go:
<%
HttpSession s = request.getSession(false);
if (s != null) s.invalidate();
%>
Inform me whether this is working or not :)
Regards.
On 6 sep 2011, at 22:09, Chema wr
Hi All,
I am trying to setup JNDI mapping for oracle JDBC Connection Pooling with
Tomcat 6.0.29. This is giving me following error
javax.naming.NameNotFoundException: Name dynic is not bound in this Context
org.apache.naming.NamingContext.lookup(NamingContext.java:770)
org
> how can access the SSLSession in a jsp or a servlet
> to be able to invalidate it.
Sorry, but
is there any difference between to invalidate a HTTP Session and a SSLSession ?
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.
hi, i'm pretty sure, this question
has been asked a thouthand times, but
i didn't find an answer :
how can access the SSLSession in a jsp or a servlet
to be able to invalidate it.
any pointer really appreciated
wkr www.turnguard.com/turnguard
--
| Jürgen Jakobitsch,
| Software Developer
| Seman
Hi Chris,
>
> It seems dangerous to allow the client to specify the file name. All
> kinds of bad things can happen such as specifying special file names
> (does "PRN" still work in win32? through Java?) or overwriting files
> from other clients.
>
> I would highly recommend that some portion of
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ole,
On 9/3/2011 8:05 PM, Ole Ersoy wrote:
> Anyone know if the the keys for the various
> javax.servlet.http.Part headers are available as constants
> anywhere? I'd like to do something like:
>
> part.getHeader(Part.FILENAME);...instead of
> part.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Adam,
On 9/3/2011 5:36 PM, Adam Posner wrote:
> I am hoping someone can help with this. Tomcat 6.0.28 keeps giving
> me, saying 'Servlet Front Controller is not available'
Since your servlet is called FrontController (no space), the above
message is
There seems to be no reason for the bind exception. There was no other app
running.
It still started up though
On Tue, Sep 6, 2011 at 3:22 PM, Adam Posner wrote:
> ep 6, 2011 3:10:54 PM org.apache.catalina.core.AprLifecycleListener init
> INFO: The APR based Apache Tomcat Native library whic
ep 6, 2011 3:10:54 PM org.apache.catalina.core.AprLifecycleListener init
INFO: The APR based Apache Tomcat Native library which allows optimal
performance in production environments was not found on the
java.library.path:
/usr/lib/jvm/java-6-openjdk/jre/lib/amd64/server:/usr/lib/jvm/java-6-openjdk/
It couldnt c find the struts servlet, thats the only thing in web.xml if
youre using struts. There was nothing specific in the logs, or startupo
which was normal
On Sun, Sep 4, 2011 at 4:48 PM, Pid wrote:
> On 03/09/2011 22:36, Adam Posner wrote:
> > Posner to users
> > show details 8:16 PM (2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rakesh,
On 9/6/2011 7:39 AM, rakesh k wrote:
> Can you brief me on that which part my configuration is insane.
The configurations you are posting do not match your own assertions
about your configuration.
To wit: you think you have an AJP processor,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Konstantin,
On 9/3/2011 11:51 AM, Konstantin Preißer wrote:
> What I usually do to get the filename is:
>
> Part uploadPart = request.getPart("uploadfield"); // get the Part
> String contDispoHeader =
> uploadPart.getHeader("Content-Disposition"); /
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ole,
On 9/6/2011 11:03 AM, Ole Ersoy wrote:
> Described in this article:
> http://www.ibm.com/developerworks/web/library/wa-aj-dwr/?ca=dgr-lnxw06AjaxDWR
>
> I could just go back to commons file upload, but thought I'd look
> around to see if anythin
Thanks guys!
Ole
On 09/03/2011 10:51 AM, Konstantin Preißer wrote:
Hi,
-Original Message-
From: Jonathan Soons [mailto:jso...@juilliard.edu]
Sent: Saturday, September 03, 2011 2:24 PM
To: Ole Ersoy; Tomcat Users List
Subject: RE: Servlet 3.0 File Upload
You need to add a line in in y
Hi Andre,
I'm looking for something like this:
pfu.setProgressListener(new FileUploadProgressListener());
Described in this article:
http://www.ibm.com/developerworks/web/library/wa-aj-dwr/?ca=dgr-lnxw06AjaxDWR
I could just go back to commons file upload, but thought I'd look around to see
if
Hi Christopher Schultz
Thanks for replying back to my question.
can you brief me on that which part my configuration is insane.
and can you please let me what are the things do you require from me, so
that it can help you out where the configurations are disorder.
so that i can provide you the
Hi Konstantin Kolinko
Thanks for replying back.
we are using *httpd-2.2.3-43 (*Apache HTTPD) version, we are not using
mod_jk . we are using mod_proxy
and please find the apache httpd configuration we use
*ProxyPass / http://localhost:8082 route=msf1*
Regards
Rakesh
On Thu, Aug 25, 2011 at 9
21 matches
Mail list logo
