Crypto Randomly Not Getting Initialized

I am running Tomcat 9.0.56 in multiple AWS EC2 instances with Amazon Linux2 in a production environment.  A couple of years ago, we started getting weird errors that the "Crypto Mechanism" failed to initialize.  Through a lot of trial and error, and reasons I don't quite remember, we put a 2-mi

[ANN] Apache Tomcat 10.1.10 available

The Apache Tomcat team announces the immediate availability of Apache Tomcat 10.1.110. Apache Tomcat 10 is an open source software implementation of the Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language, Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations specificat

Re: How to implement a cluster with static membership when the StaticMembershipService does not exist in tomcat 8.5?

But then why do both of them exist in later tomcat versions? *StaticMembershipInterceptor *is not deprecated. In tomcat 9 (example - https://people.apache.org/~markt/dev/server-static-cluster-example.xml), only StaticMembershipService seems to be used. Do they serve different purposes? Is there som

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

On Tue, Jun 13, 2023 at 1:26 AM Mark Thomas wrote: > Try https://people.apache.org/~markt/dev/cluster-test.war instead. > > Mark > Sure, I will give that a try. But is there some issue with the *carts.jsp *example? Or is it not meant for this purpose?

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

Try https://people.apache.org/~markt/dev/cluster-test.war instead. Mark On 12/06/2023 20:13, Manak Bisht wrote: Thank you for the clarification. Sorry, it took me a while to understand your point. I have successfully changed the cluster settings, For node with http port 8090 ```

Re: Informal CIS Benchmark question

On 12/06/2023 19:13, jonmcalexan...@wellsfargo.com.INVALID wrote: I'm asking because we are doing a review of our base settings. We are using the CIS Benchmarks as a verification. One of these states to set matadata-complete to true. We have never used this setting in the past and I am worried

[ANN] Apache Tomcat 8.5.90 available

The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.5.90. Apache Tomcat 8 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and JASPIC technologies. Apache Tomcat 8.5.90 is a bugfix and fea

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

Thank you for the clarification. Sorry, it took me a while to understand your point. I have successfully changed the cluster settings, For node with http port 8090 ```

Informal CIS Benchmark question

I'm asking because we are doing a review of our base settings. We are using the CIS Benchmarks as a verification. One of these states to set matadata-complete to true. We have never used this setting in the past and I am worried about potential application breakage causing outages if we suddenly

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

Again, you are mixing HTTP ports and cluster ports. They must be different. On 12/06/2023 17:22, Manak Bisht wrote: Node 1: Cluster listening on 8090 Node 2: Cluster listening on 8190 12-Jun-2023 14:18:17.719 INFO [main] org.apache.coy

Re: Is it possible to use the PersistentManager with the DeltaManager?

On 12/06/2023 16:59, Manak Bisht wrote: I am using the DeltaManager to support non-sticky sessions. Every node has a copy of the session information, therefore, there's no issues with this setup in a live application. However, sometimes, in a new build, there are changes which require downtime on

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

Thanks for the response! I did follow this example https://people.apache.org/~markt/dev/server-static-cluster-example.xml. The only difference being that I am using tomcat 8.5 so I am using the StaticMembershipInterceptor instead. In my second email, I have followed this configuration, however I en

Re: Tomcat 9 data source configuration error

On 12/06/2023 16:52, Ying Jin wrote: BTW, the ojdbc6_g.jar has been put in the Tomcat9.0.75/lib folder as well as in the project's WEB-INF/lib folder. Don't do that. Put it *only* in $CATALINA_BASE/lib On Mon, Jun 12, 2023 at 10:41 AM Ying Jin > wrote: Mark,

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

On 12/06/2023 16:44, Manak Bisht wrote: I am not sure if the receiver port should be the same or different from the localmember port. However, changing that to 4001 for node with localmember at 8090 and to 4002 for node with localmember at 8190, I am encountering the following error - You are m

Re: Get Client Certificate Information

On 12/06/2023 12:00, Timothy Ward wrote: Changing the CGI Servlet may be the easiest route, but if I wanted to use it as intended, I'm guessing I would use the original Java code that you sent below? X509Certificate[] certs = (X509Certificate[])getHttpServletRequest().getAttribute("jakarta.servl

Re: Re-Cannot upload an image file from a deployed JSP page in Tomcat 10

Lauri, On 6/10/23 03:18, Lauri wrote: Hi, Thanks for all the tips. It is solved. I managed to create such a working page in Tomcat 9 (without any specific configuration). I just deployed that same page in Tomcat 10(also without any specific configuration), and it works. For the rest, I will wa

Is it possible to use the PersistentManager with the DeltaManager?

I am using the DeltaManager to support non-sticky sessions. Every node has a copy of the session information, therefore, there's no issues with this setup in a live application. However, sometimes, in a new build, there are changes which require downtime on all nodes (certain db changes for example

Re: Tomcat 9 data source configuration error

BTW, the ojdbc6_g.jar has been put in the Tomcat9.0.75/lib folder as well as in the project's WEB-INF/lib folder. On Mon, Jun 12, 2023 at 10:41 AM Ying Jin wrote: > Mark, > > Thanks for your reply! Please see below for the details. BTW, I removed > the database connection info. for security reas

Re: isGraalAvailable error

Blake, On 6/9/23 21:33, Blake McBride wrote: I should add that in the stack trace I am seeing: loadClass:862 GroovyClassLoader (groovy.lang) loadClass:973 GroovyClassLoader (groovy.lang) loadClass:960 GroovyClassLoader(groovy.lang) loadClass:593, GroovyClassLoader$InnerLoader (groovy.lang) Ca

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

I am not sure if the receiver port should be the same or different from the localmember port. However, changing that to 4001 for node with localmember at 8090 and to 4002 for node with localmember at 8190, I am encountering the following error - ``` 12-Jun-2023 15:00:29.885 INFO [main] org.apache.c

Re: Tomcat 9 data source configuration error

Mark, Thanks for your reply! Please see below for the details. BTW, I removed the database connection info. for security reasons. The same data source configuration and jdbc driver "ojdbc6_g" works in the Weblogic 14 server. web.xml: project datasource jdbc/ariesDS javax.sql.DataSource Con

Re: Get Client Certificate Information

Changing the CGI Servlet may be the easiest route, but if I wanted to use it as intended, I'm guessing I would use the original Java code that you sent below? X509Certificate[] certs = (X509Certificate[])getHttpServletRequest().getAttribute("jakarta.servlet.request.X509Certificate"); I would jus

Re: Get Client Certificate Information

If you decide to go the route of modifying Tomcat's CGI servlet, this is probably where you'll want to add the TLS info: https://github.com/apache/tomcat/blob/main/java/org/apache/catalina/servlets/CGIServlet.java#L771 You should be able to copy the source of Tomcat's CGI servlet, modify as re

Re: Get Client Certificate Information

I'm converting an application from using Oracle Http Server which is a version of Apache so I was just trying to keep the code close to the same. It is going to use Tomcat and ORDS. We've got ORDS working and are just setting up Tomcat to do the SSL stuff we needed to do. I was using the SSLOpti

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

On Mon, Jun 12, 2023 at 1:50 PM Mark Thomas wrote: > On 10/06/2023 18:11, Manak Bisht wrote: > > I am trying to run the carts example (*/examples/jsp/sessions/carts.jsp*) > > with two nodes, on ports 8090 and 8190. The nodes are working fine > > individually. However, I am trying to create a clus

Re: How to implement a cluster with static membership when the StaticMembershipService does not exist in tomcat 8.5?

On 12/06/2023 07:33, Manak Bisht wrote: I am trying to implement a cluster with static members in tomcat 8. However, according to the documentation, StaticMembershipService only exists in tomcat 9

Re: Get Client Certificate Information

The information you are looking for is not made available via Tomcat's standard CGI servlet. You would need to extend it and add the certificate information as an additional environment variable (or variables). Do you need to use CGI? It is fairly unusual to see CGI mention on this list these

Re: Tomcat 9 data source configuration error

On 11/06/2023 19:33, Ying Jin wrote: Hello, We have an old java servlet web application which uses the "ojdbc6_g" jar as Oracle jdbc driver and it works in Weblogic 14 server. Recently, we need to try to see if this application can be deployed to Tomcat or not. The JDBC data source has been con

Re: Error "Unable to send message through cluster sender" in a cluster with static members using delta manager

On 10/06/2023 18:11, Manak Bisht wrote: I am trying to run the carts example (*/examples/jsp/sessions/carts.jsp*) with two nodes, on ports 8090 and 8190. The nodes are working fine individually. However, I am trying to create a cluster with static members (without multicast), but I keep encounter

Re: Setting security response headers when Valve returns error..

On 09/06/2023 19:34, Amit Pande wrote: Hello, Wanted some inputs on setting HSTS (or other response headers) when returning error from a valve. The server.xml has the valve "org.apache.catalina.valves.RemoteAddrValve" configured with a deny status of HTTP 404. Also, the Tomcat's web.xml has