, once the form
is POSTed and authentication is successful, the original request whatever it
may have been, should be replayed. Right?
On Friday, October 07, 2011 16:07:20 Nicholas Sushkin wrote:
> Before being forwarded to login page, the request is saved and only then
> turned into GET,
, Charles R wrote:
> I'm confused. If you turn a PUT into a GET, it would seem that the request
> will likely be badly mishandled once the login process is complete and the
> original request is sent on to the target servlet/JSP. Am I missing
> something?
>
> - Chuck
--
N
On Friday, October 07, 2011 10:13:00 Christopher Schultz wrote:
> Since you're just hacking, try setting the request method to "GET"
> when you detect a PUT request that requires authentication.
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations
Open Finance
aining that it's
> read-only. When you make the DefaultServlet read-write you tell the
> DefaultServlet to accept uploads, and you'll probably end up
> overwriting your login form with the request entity (oops).
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operati
Sushkin wrote:
> Ok, traced the 403 to DefaultServlet being readonly, which is somehow
> relevant during login form forward.
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations
Open Finance - Secure, Accurate, Industrial Strength Aggregation
<http://www.openfi
wasn't immediately obvious.
forwardToLoginPage is called in all cases, but there is some difference in the
way dispatcher processes the forward.
Thanks.
On Thursday, September 29, 2011 17:04:27 Christopher Schultz wrote:
> Nicholas,
>
> On 9/29/2011 3:37 PM, Nicholas Sushkin wrote:
&
https://issues.apache.org/bugzilla/show_bug.cgi?id=51940
I left all the flags at their default settings.
Thanks!
On Saturday, October 01, 2011 07:20:21 Mark Thomas wrote:
> On 30/09/2011 17:09, Nicholas Sushkin wrote:
> > Mark, Chris, thanks for the review.
> >
> >
>
7;d have no objection so the proposed change.
>
> Mark
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations
Open Finance - Secure, Accurate, Industrial Strength Aggregation
<http://www.openfinance.com>
smime.p7s
Description: S/MIME cryptographic signature
or something like that
> would make more sense when clients can expect to send data without
> being challenged a-priori for credentials.
>
> Another workaround would just be to use POST.
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations
Open Finance - Se
saved.getMethod()) ||
"PUT".equalsIgnoreCase(saved.getMethod())
) {
[1]
http://svn.apache.org/viewvc/tomcat/tc6.0.x/trunk/java/org/apache/catalina/authenticator/FormAuthenticator.java?view=markup#l450
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operation
I don't think the default pool has any glaring leaks. However, your db may.
I have ran into cases when Oracle would run out of PGA memory, which cleared
with tomcat restart.
It may help to use connection validation feature of tomcat's new pool to
close connections that ran out of memory.
Don't kn
On Sunday, March 06, 2011 07:45:19 הילה wrote:
> Hey,
> i'd glad to get you help with something :]
> I tried to put
> org.apache.tomcat.jdbc.pool.DataSourceFactory
> but after restarting tomcat, i get the error
> could not load resource factory class
> why is that?
> how can I define my applicatio
-propertyfile myinstance.properties dist"
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations
Open Finance Aggregation eXchange <http://www.aggex.com>
smime.p7s
Description: S/MIME cryptographic signature
lication context, then this simply means you
> forgot to call DataSource.close on the connection pool when your web
> application is stopped.
>
> best
> Filip
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations
Open Finance Aggregation eXchange <http://www.aggex.com>
smime.p7s
Description: S/MIME cryptographic signature
[/…]
appears to have started a thread named [[Pool-Cleaner]:Tomcat Connection
Pool[19-2018147830]] but has failed to stop it. This is very likely to create
a memory leak.
Thanks.
ps. Also, thanks for offering to open a Bugzilla enhancement request for
setting password via JMX.
--
Nicholas Sushkin
rity implications of being able to set the password is, but I think
it's safe, since the JMX connection can be authenticated and secured.
Thanks
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations
Open Finance Aggregation eXchange <http://www.aggex.com>
smime.p7s
De
e same URL?
Something like (not tested)
^http$
127.0.0.1
/(.*)
https://%{server-name}/$1
Configure
--
Nicholas Sushkin, Senior Software Engineer, Manager of IT Operations
Open Finance Aggregation eXchange <http://www.aggex.com>
smime.p7s
Description: S/MIME cryptographic signature
you mean he wasn't?! Oh, I should've ignored all his posts! ;)
--
Nicholas Sushkin
smime.p7s
Description: S/MIME cryptographic signature
On Wednesday, September 15, 2010 17:20:58 Christopher Schultz wrote:
> We've had servers (dev/demo/production) that don't require reboots
> for years: usually just for a rare kernel upgrade.
> NB: Tomcat stays up as long as the machine does, too :)
You don't redeploy ap
ased-webservers-su
> ch-as-tomcat-using-keytool/
>
> http://www.networksolutions.com/support/installation-for-java-based-webs
> ervers-such-as-tomcat-using-keytool/
>
>
> Miguel
--
Nicholas Sushkin, Senior Software Engineer
http://www.aggex.com http://www.wealthinformationexchange.com
smime.p7s
Description: S/MIME cryptographic signature
Unload)
{
try
{
DriverManager.deregisterDriver(driver);
servletContext.log("Deregistered driver: " + driver);
}
catch (SQLException ex)
{
servletContext.log("Unable to deregister driver: " + driver
o VeriSign's SGC/EV cert, but it costs 1/4 as
| much.
|
| Does anyone have any experience with Comodo? Specifically, has anyone
| run across any customers whose browsers do not trust Comodo as a CA?
|
--
Nicholas Sushkin, Senior Software Engineer
http://www.openfinance.com http://www.wealthinformationexchange.com
smime.p7s
Description: S/MIME cryptographic signature
ll
> 2) try to attach to a running instance
>[...]
--
Nicholas Sushkin, Senior Software Engineer
http://www.openfinance.com http://www.wealthinformationexchange.com
smime.p7s
Description: S/MIME cryptographic signature
rew
> exception
> java.sql.SQLException: ORA-00936: missing expression
--
Nicholas Sushkin, Senior Software Engineer
http://www.openfinance.com http://www.wealthinformationexchange.com
smime.p7s
Description: S/MIME cryptographic signature
ou login successfully.
Tomcat does not know where to redirect you.
--
Nicholas Sushkin, Senior Software Engineer
http://www.openfinance.com http://www.wealthinformationexchange.com
smime.p7s
Description: S/MIME cryptographic signature
m/ofc/tomcat/
Although I don't claim that my code is worthy of emulating ;)
On Wednesday 10 October 2007, quanxin zhu wrote:
> Hi, Everyone,
>
> Where could I find the document of how to write a custom realm?
>
>Many Thanks!
>
>
> zhu
--
Nicholas Sush
r to use Tomcat/Axis
> > or the Jboss product line. Any idea?
>
> Do you need EJBs? If you do, then you'll need JBoss.
>
> If you don't need EJBs, I would recommend not using a full EJB server.
>
> -chris
--
Nicholas Sushkin, Senior
= request.getRequestURL().toString();
requestPath =
(requestPath == null)
? ""
: requestPath.substring(0, requestPath.lastIndexOf('/'));
response.setHeader("Cache-Control", "public");
1.0+
On Sunday 22 April 2007 07:59, Johnny Kewl wrote:
> This mailing list is a magic technology, just wondering if anyone knows
> what its running on.
>
> Is it Tomcat and James?
>
> thx
Headers show:
"Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm"
http://www.ezm
one can turn off header information (tomcat/5.0.25,
> coyote/1.1)?
--
Nicholas Sushkin, Senior Software Engineer
http://www.openfinance.com http://www.wealthinformationexchange.com
smime.p7s
Description: S/MIME cryptographic signature
not by far the only user of this
machine, my entire company depends on it :)
Besides, I have no idea how to renice a process on a modern iSeries so
that it runs unimaginably slow...
Greetings, Lucas
-------
--
Nicholas Sushkin, Senior Software
ndorsed. Which does not fit into our 'drop-in'
> deployment plan.
>
> Is it possible to either configure the WAR deployment to add the jar
> to the $CATALINA_HOME/server/endorsed directory without user/admin
> intervention?
>
> Regards,
>
> --R
27;t know which url I have to invoke it
>
>
> The URL is formed like this:
> service:jmx:rmi://localhost/jndi/rmi://localhost:/connec
>tor_
>
>
> Which , and do I have to
> choose ?
--
Nicholas Sushkin, Senior Software Engineer
http://www.openfinance.com http://www.wea
;s safer and cleaner to use c:url.
I prefer the XML syntax,
Log out
Log Out
but you can do
">Log Out
--
Nicholas Sushkin, Senior Software Engineer
http://www.openfinance.com http://www.wealthinformationexchange.com
smime.p7s
Description: S/MIME cryptographic signature
On Thursday 22 March 2007 16:57, you wrote:
> I am working on some plugins and templates for Nagios and Cacti to
> monitor JVM on our tomcat servers
It looks like MX4J project has a JMX over HTTP and HTTPS connector.
http://mx4j.sourceforge.net/docs/ch05.html
--
Nicholas Sushkin,
tname:8080/manager/jmxproxy/?qry=*%3Atype%3DMemoryPool%2Cname%
> 3DCode%20Cache%2C*
--
Nicholas Sushkin, Senior Software Engineer
Open Finance
smime.p7s
Description: S/MIME cryptographic signature
Yoav,
Any plans to integrate the patch?
I just noticed there is a bug and a patch to implement operations in
JMXProxy. The bug is
http://issues.apache.org/bugzilla/show_bug.cgi?id=38216
Thank you.
On Wednesday 21 March 2007 13:14, Nicholas Sushkin wrote:
> Hi,
>
> Can I inv
Hi,
Can I invoke mbean operations using JMX Proxy?
I am reading "Using JMX Proxy Servlet" Section of
http://tomcat.apache.org/tomcat-5.5-doc/manager-howto.html, but it only
mentions reading and setting mbean attributes.
Thank you
--
Nicholas Sushkin, Senior Software Engineer
Op
i.ldap.LdapCtx.(LdapCtx.java:287)
> at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
> ...
--
Nicholas Sushkin, Senior Software Engineer
Open Finance, Chelsea Piers Pier 62 Suite 316, New York NY 10011
Tel +1 646 723 2790 Fax +1 646 723 2789 [EMAIL PROTECTED]
smime.p7s
Description: S/MIME cryptographic signature
&', not as '&'.
On Wednesday 14 February 2007 12:38, Christopher Schultz wrote:
> If you put & into an XML file, it gets treated as a single '&'. If
> you want '&', you gotta say '&'.
--
Nicholas Sushkin, Senior Sof
static instances.
The way I understand it, each time you redeploy, Tomcat will reload your
classes and as the result, create another set of instances of your
singletons. See the description of the problem and some workarounds in
http://wiki.apache.org/tomcat/OutOfMemory
--
Nicholas Sushkin, Seni
has a manager role, try something
like this:
http://${deploy.host}:
${deploy.port}/manager"/>
--
Nicholas Sushkin, Senior Software Engineer
Open Finance
-
To start a n
.org/developer-howto.html
--
Nicholas Sushkin, Senior Software Engineer
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
t all jsps using
*.jsp
>
> protected
> /protected/*.jsp
>
--
Nicholas Sushkin, Senior Software Engineer
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscrib
Dataset Protected Area
/DatasetSecureServlet
DELETE
GET
POST
PUT
User
Sorry if I am repeating something you already know.
--
Nicholas Sushkin
--
o the /) and the code works
> fine.
You probably want to have something like
""
So that it generates
instead of your code, which generates
--
Nicholas Sushkin, Senior Software Engineer
Open Finance
-
To
o summarize the response by apache
developer Remy Maucherat [EMAIL PROTECTED], since none of the discussions on
the user mailing list were answered conclusively. Hopefully a note can be
added to the deployer reference manual.
--
Nicholas Sushkin, Senior Software Engineer
Open Finance, Chelse
47 matches
Mail list logo
