Trying to make a PCI-DSS compliant installation. It looks like this filter
does everything that Apache can do with config files, so I'll leave it out.
Kevin Huntly
Email: kmhun...@gmail.com
Cell: 716/424
On 13/04/2023 23:03, Kevin Huntly wrote:
Hello,
With this filter enabled in Tomcat's web.xml:
httpHeaderSecurity
org.apache.catalina.filters.HttpHeaderSecurityFilter
true
My sessions are being immediately lost. If I comment out the filter,
everythis is fine.
Hello,
With this filter enabled in Tomcat's web.xml:
httpHeaderSecurity
org.apache.catalina.filters.HttpHeaderSecurityFilter
true
My sessions are being immediately lost. If I comment out the filter,
everythis is fine. What does this filter actually do, and
t;>> supplied by Tomcat in an identically named JAR. Sometime during
> >>> java/Tomcat
> >>> startup these libraries are being loaded in a different order
> >>> depending
> >>> on
> >>> the tomcat version. The order is reliably different
e libraries are being loaded in a different order
depending
on
the tomcat version. The order is reliably different and reproducible.
Kudos for tracking this down.
The conclusion is that Tomcat indeed implements Filter lifecycle
annotation
processing but it does not run when those annotations are
> java/Tomcat
> > startup these libraries are being loaded in a different order depending
> > on
> > the tomcat version. The order is reliably different and reproducible.
>
> Kudos for tracking this down.
>
> > The conclusion is that Tomcat indeed implements Filte
named JAR. Sometime during
java/Tomcat
startup these libraries are being loaded in a different order depending
on
the tomcat version. The order is reliably different and reproducible.
Kudos for tracking this down.
The conclusion is that Tomcat indeed implements Filter lifecycle
annotation
proc
> -Ursprüngliche Nachricht-
> Von: Cherio
> Gesendet: Dienstag, 5. April 2022 17:17
> An: Tomcat Users List
> Betreff: Re: PostConstruct annotation in a filter since version 9.0.60
>
> I did ran the diffs between versions. With my naked eye I didn't spot
>
at
startup these libraries are being loaded in a different order depending on
the tomcat version. The order is reliably different and reproducible.
The conclusion is that Tomcat indeed implements Filter lifecycle annotation
processing but it does not run when those annotations are loaded from the
a
te the problem, but this is not likely:
> https://github.com/apache/tomcat/compare/9.0.59...9.0.60
> No relevant changes, so Tomcat's annotation scanning behavior won't change.
>
> The DefaultInstanceManager is used, it seems it wasn't used before
> then. Since y
;s annotation scanning behavior won't change.
The DefaultInstanceManager is used, it seems it wasn't used before
then. Since you're using Spring, maybe the problem could come from
there ?
>
> The code that adds the filter is super simple:
>
> FilterRegistration.Dynamic f
.org/dist/tomcat/tomcat-$MAJOR_VER/v$VER/bin/apache-tomcat-$VER.tar.gz
>
> BTW @PostConstruct doesn't have to do with dependency injection. It is
> about lifecycle processing.
>
> The change in behavior was narrowed down to switching versions from 9.0.59
> to 9.0.60.
>
>
down to switching versions from 9.0.59
to 9.0.60.
The code that adds the filter is super simple:
FilterRegistration.Dynamic filterName =
servletContext.addFilter(FILTER_NAME, filterObject);
sessionContextFilter.addMappingForUrlPatterns(EnumSet.of(DispatcherType.REQUEST),
true, "/*");
e can match it to
source code and see at what step in the startup sequence it happened.
2. You say that it is a javax.servlet.Filter and it is coded so that
Tomcat will not be able to create an instance of that class - proper
creation of an instance of that filter must be done by Spring, so t
Fax: 0049 (0)30 / 6 29 33 29 6
Handy: 0049 (0)176 / 87 521 576
Handy: 0049 (0)176 / 47 876 303
Gesendet: Freitag, 01. April 2022 um 23:02 Uhr
Von: "Cherio"
An: users@tomcat.apache.org
Betreff: PostConstruct annotation in a filter since version 9.0.60
I observed an announced change i
I observed an announced change in behavior in version 9.0.60 (and later).
My application has a Spring class loaded as a javax.servlet.Filter. It has
a method annotated with a PostConstruct annotation. Up until Tomcat 9.0.59
the annotation was handled by Spring. Starting with Tomcat 9.0.60 behavior
have access to the
engine, service, etc. I could make it a configurable setting of the
Filter, with "Catalina" being the default. Is there any other way to
get the service name from within a running Tomcat?
Via the servletcontext? You should be able to work up the contect ->
Ho
could make it a configurable setting of the
Filter, with "Catalina" being the default. Is there any other way to get
the service name from within a running Tomcat?
Via the servletcontext? You should be able to work up the contect ->
Host ->
Mark,
On 1/14/22 02:51, Mark Thomas wrote:
On 13/01/2022 21:31, Christopher Schultz wrote:
All,
Does anyone know if it's possible and/or convenient to fetch the
jvmRoute from a servlet filter?
I'd like to write a Filter that puts some information like this into
the respon
On 13/01/2022 21:31, Christopher Schultz wrote:
All,
Does anyone know if it's possible and/or convenient to fetch the
jvmRoute from a servlet filter?
I'd like to write a Filter that puts some information like this into the
response headers:
X-App-Server-IP: 10.0.0.1
X-
All,
Does anyone know if it's possible and/or convenient to fetch the
jvmRoute from a servlet filter?
I'd like to write a Filter that puts some information like this into the
response headers:
X-App-Server-IP: 10.0.0.1
X-App-Server-Route: jvmRoute
Is it possible t
All,
When building a filter chain to execute for a request, the spec says
that the ordering is "as declared in the deployment descriptor". These
is an example in the spec language but I wanted to be absolutely sure I
understand this.
The ordering of the elements in web.xml is no
- Context [/xx] startup failed due to
>> previous errors 2020-10-09T13:04:40.251213700-07:00[America/Los_Angeles]
>>
>> Sometimes, shutting down Tomcat and restarting is enough, or shutting down
>> and waiting a few minutes and restarting works.
>> I'm us
ue to
> previous errors 2020-10-09T13:04:40.251213700-07:00[America/Los_Angeles]
>
> Sometimes, shutting down Tomcat and restarting is enough, or shutting down
> and waiting a few minutes and restarting works.
> I'm using 8.5.5 on Windows when I see this.
Have you looked at th
Hi-
I have a servlet that loads when Tomcat is started. It's loaded from xml:
There isn't anything special about this particular one, but I've noticed that
Tomcat fails to load it sporadically with:
2020-10-09 13:04:40,250 [org.apache.catalina.core.StandardContext startInternal
] SEVERE
atchers which
implement the optimal strategy for a particular value would be a good
way to do this.
A single matcher could be used for really simple values and maybe a
MultipleMatcher could be used for multiple different value-checks.
Something like that will likely lead to the highest-performing filter
r really simple values and maybe a
MultipleMatcher could be used for multiple different value-checks.
Something like that will likely lead to the highest-performing filter
processing.
-chris
-
To unsubscribe, e-mail: users-
Any comments on that? Is it worth preparing a PR?
Hi there,
I'd like to contribute a CORS filter enhancement, making it accept both
wildcard-based and 'regular expression'-based expressions for its
allowed origins list.
I know this from a project based on Jetty, which has support for, at
least, simple wildcard matching
I'm trying to configure the header x-frame-options in tomcat8
web.xml:
httpHeaderSecurity
org.apache.catalina.filters.HttpHeaderSecurityFilter
true
antiClickJackingOption
SAMEORIGIN
httpHeaderSecurity
/*
REQUEST
Te
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Gilbert,
On 4/25/20 08:47, Gilbert Soucy wrote:
> Hello,
>
> I am new to tomcat and I need to filter the URLs to accept all
> clients for part of a URL and reject for all clients another part
> of this URL.
>
> In details, I w
Hi Gilbert,
maybe you have more luck with the security-constraint in tomcat.
kindly
Frank
Am Samstag, den 25.04.2020, 08:47 -0400 schrieb Gilbert Soucy:
> Hello,
>
> I am new to tomcat and I need to filter the URLs to accept all
> clients for
> part of a URL and reject for all
Hello,
I am new to tomcat and I need to filter the URLs to accept all clients for
part of a URL and reject for all clients another part of this URL.
In details, I want:
/abc/def/xyz/* : accepts all
/abc/def/*: reject if URL does not match /abc/def/xyz*
I found that the
Hello Masber,
In order to get accurate answers it would be helpful if you could provide
details like:
- Platform details: OS, jdk/jre, apache-tomcat version...
- "I went through documentation" which one? perhaps
https://tomcat.apache.org/tomcat-9.0-doc/config/filter.html#CORS_Filter
- "my web cli
Dear Apache Tomcat community,
I am learning Tomcat and would like to create a crosfilter, I went through the
documentation and added the code suggested but my web client still complains.
This is the content of my web.xml file:
Archetype Created Web Application
jersey-se
[FID 23621]
> >
> > Apache Software Foundation reports this in annou...@tomcat.apache.org
> > <https://lists.apache.org/list.html?annou...@tomcat.apache.org>:
> >
> > CVE-2018-8014 Insecure defaults for CORS filter
> >
> > and the only mitigation is
rior To 8.5.32
> [FID 23621]
>
> Apache Software Foundation reports this in annou...@tomcat.apache.org
> <https://lists.apache.org/list.html?annou...@tomcat.apache.org>:
>
> CVE-2018-8014 Insecure defaults for CORS filter
>
> and the only mitigation is to "Conf
...@tomcat.apache.org
<https://lists.apache.org/list.html?annou...@tomcat.apache.org>:
CVE-2018-8014 Insecure defaults for CORS filter
and the only mitigation is to "Configure the filter appropriately for your
environment"
My question is:
What if you don't have a CORS filter configured anywh
CVE-2018-8014 Insecure defaults for CORS filter
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat 9.0.0.M1 to 9.0.8
Apache Tomcat 8.5.0 to 8.5.31
Apache Tomcat 8.0.0.RC1 to 8.0.52
Apache Tomcat 7.0.41 to 7.0.88
Description:
The defaults settings for the CORS
Hi all,
in production I'm still running Ubuntu 14.04 LTS Server which provides
Tomcat 7.0.52, which doesn't contain the filter for HttpHeaderSecurity
yet[1]. Some of my customers on the other hand use Windows and run
newer versions of Tomcat which already support that filter. To
On Mon, Jan 29, 2018 at 9:27 AM, Mark Thomas wrote:
>
> On 29/01/18 17:19, Robert J. Carr wrote:
> > I have a Filter that uses the output stream from the response of the
> > servlet in the chain. In order to do this I create a custom response
> > wrapper that has a cust
On 29/01/18 17:19, Robert J. Carr wrote:
> I have a Filter that uses the output stream from the response of the
> servlet in the chain. In order to do this I create a custom response
> wrapper that has a custom servlet output stream.
>
> This works fine, but in moving to a ne
I have a Filter that uses the output stream from the response of the
servlet in the chain. In order to do this I create a custom response
wrapper that has a custom servlet output stream.
This works fine, but in moving to a newer Java EE API there have been a
couple new (abstract) methods added
On Sun, Aug 28, 2016 at 5:07 AM Mark Thomas wrote:
> On 28 August 2016 02:33:00 BST, "John D. Ament"
> wrote:
> >Hi,
> >
> >I have this pretty straight forward case of starting an instance of
> >tomcat
> >and bringing in a filter.
>
>
>
On 28 August 2016 02:33:00 BST, "John D. Ament" wrote:
>Hi,
>
>I have this pretty straight forward case of starting an instance of
>tomcat
>and bringing in a filter.
>When starting this up (Just running in a plain JUnit test), the
>container
>is running ho
Hi,
I have this pretty straight forward case of starting an instance of tomcat
and bringing in a filter.
Tomcat tomcat = new Tomcat();
tomcat.setPort(8080);
File base = new File(".");
Context ctx = tomcat.addContext("", base.getAbsolutePat
Hi,
We are facing a problem in tomcat cors filter. Below is the filter
configurations added in web.xml for cors request processing.
CorsFilter
org.apache.catalina.filters.CorsFilter
cors.allowed.origins
*
cors.allowed.methods
GET,POST,HEAD,OPTIONS,PUT
ress/host filter so that request to
one of the ports (12345) are allowed only via localhost ? And requests to
other port (54321) are allowed from everywhere.
Or do I need to configure multiple service elements for this type of
requirement ?
It is possible to filter by port number,
2016-07-07 12:57 GMT+03:00 Amit Pande :
> Hello all,
>
>
> In my server.xml, within in single Service element,
>
> I have two HTTP connectors defined listening on two different ports (12345
> & 54321 for example).
>
> It is possible to apply the remote address/host
istening on two different ports
(12345
& 54321 for example).
It is possible to apply the remote address/host filter so that request
to
one of the ports (12345) are allowed only via localhost ? And requests
to
other port (54321) are allowed from everywhere.
You do not indicate your Tomcat vers
all,
>>
>>
>> In my server.xml, within in single Service element,
>>
>> I have two HTTP connectors defined listening on two different ports
>>(12345
>> & 54321 for example).
>>
>> It is possible to apply the remote address/host filter so that
On 07.07.2016 11:57, Amit Pande wrote:
Hello all,
In my server.xml, within in single Service element,
I have two HTTP connectors defined listening on two different ports (12345
& 54321 for example).
It is possible to apply the remote address/host filter so that request to
one of the p
Hello all,
In my server.xml, within in single Service element,
I have two HTTP connectors defined listening on two different ports (12345
& 54321 for example).
It is possible to apply the remote address/host filter so that request to
one of the ports (12345) are allowed only via local
Thanks Andrè.
the login page indeed has nothing inside, i just want to activate the
filter, because inside the filter there is the logic to authenticate the
user;
Anyway i really appreciate your suggestion.
Francesco
2016-05-15 14:09 GMT+02:00 André Warnier (tomcat) :
> On 15.05.2016 13
On 15.05.2016 13:58, Francesco Viscomi wrote:
Hi all,
I've declared a filter in web.xm as:
ShibbolethHeaderReaderFilter
ShibbolethHeaderReaderFilter
IdPC
it.loset.idpcp.ri.filters.ShibbolethHeaderReaderFilte
Hi all,
I've declared a filter in web.xm as:
ShibbolethHeaderReaderFilter
ShibbolethHeaderReaderFilter
IdPC
it.loset.idpcp.ri.filters.ShibbolethHeaderReaderFilterIdpc
configurationFile
resources/shibboleth-spp-confi
Hi,
2016-05-05 13:58 GMT+03:00 Ruan van Tonder :
>
> Good day
>
> We are running Apache Tomcat 7.0.64 on Windows Server 2012 R2. Currently
we have an issue where an application page which we are using is being
framed by another and due to the default settings in the HTTP header
securi
Good day
We are running Apache Tomcat 7.0.64 on Windows Server 2012 R2. Currently we
have an issue where an application page which we are using is being framed by
another and due to the default settings in the HTTP header security filter is
not being allowed to be displayed in Internet
snip
> Unfortunately, it looks like Tomcat doesn't support setting the response
> code for the redirect. That sounds like it would be a nice thing to be
> able to configure. Care to file a bug?
Done
Bug 59399 - Tomcat doesn't support setting the response code for http
-> https redirect
> You co
On 29 April 2016 at 19:49, Christopher Schultz
wrote:
> Lyallex,
>
> On 4/29/16 12:50 AM, Lyallex wrote:
>> On 28 April 2016 at 23:04, Christopher Schultz
>> wrote:
snip
> 1. You want to redirect requests to hostnames not on your whitelist to
> HTTPS (url-rewrite)
> 2. You want to redirect every
Lyallex,
On 4/29/16 12:50 AM, Lyallex wrote:
> On 28 April 2016 at 23:04, Christopher Schultz
> wrote:
> Lyallex,
>
> On 4/28/16 1:12 PM, Lyallex wrote:
>>>> apache-tomcat-7.0.42 jdk1.8.0_77 CentOS Linux 7.2.1511
>>>> urlrewritefilter-4.0.3.jar
>>&
On 29 April 2016 at 14:57, André Warnier (tomcat) wrote:
> On 29.04.2016 12:52, Lyallex wrote:
>>
>> On 29 April 2016 at 08:44, André Warnier (tomcat) wrote:
>>>
>>> On 29.04.2016 08:59, Lyallex wrote:
The problem is despite setting the to-type to permanent-redirect I'm
>>
On 29.04.2016 12:52, Lyallex wrote:
On 29 April 2016 at 08:44, André Warnier (tomcat) wrote:
On 29.04.2016 08:59, Lyallex wrote:
The problem is despite setting the to-type to permanent-redirect I'm
actually getting a 302 temporary-redirect.
I know this is probably off topic but if anyone h
On 29 April 2016 at 08:44, André Warnier (tomcat) wrote:
> On 29.04.2016 08:59, Lyallex wrote:
>>
>> The problem is despite setting the to-type to permanent-redirect I'm
actually getting a 302 temporary-redirect.
I know this is probably off topic but if anyone has any experienc
On 29.04.2016 08:59, Lyallex wrote:
The problem is despite setting the to-type to permanent-redirect I'm
actually getting a 302 temporary-redirect.
I know this is probably off topic but if anyone has any experience of
this I'd be gratefull to hear how you solved it
If this was Apache httpd,
e to reply.
Unfortunately, rather than solving the problem it *is* the problem (as
far as I can figure out anyway)
If I take the rewrite filter out of the picture the configuration I
have is as follows
web.xml
/*
CONFIDENTIAL
server.xml
On 28 April 2016 at 23:04, Christopher Schultz
wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Lyallex,
>
> On 4/28/16 1:12 PM, Lyallex wrote:
>> apache-tomcat-7.0.42 jdk1.8.0_77 CentOS Linux 7.2.1511
>> urlrewritefilter-4.0.3.jar
>>
>&
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lyallex,
On 4/28/16 1:12 PM, Lyallex wrote:
> apache-tomcat-7.0.42 jdk1.8.0_77 CentOS Linux 7.2.1511
> urlrewritefilter-4.0.3.jar
>
> I'm using the rewrite filter from http://tuckey.org/urlrewrite/
>
> I have a rule, it
filter-4.0.3.jar
>
> I'm using the rewrite filter from http://tuckey.org/urlrewrite/
>
> I have a rule, it's supposed to 301 perm-redirect from http to https
>
>
>seo redirect
>^www.example.com
>^localhost
>^/(.*)
>
apache-tomcat-7.0.42
jdk1.8.0_77
CentOS Linux 7.2.1511
urlrewritefilter-4.0.3.jar
I'm using the rewrite filter from http://tuckey.org/urlrewrite/
I have a rule, it's supposed to 301 perm-redirect from http to https
seo redirect
^www.example.com
> On Feb 26, 2016, at 3:40 PM, Christopher Schultz
> wrote:
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Jose,
>
> On 2/26/16 7:08 AM, Jose María Zaragoza wrote:
>> 2016-02-26 9:08 GMT+01:00 RICHARD DOUST :
>>> My question is, why doesn't it work, or, how can I debug it?
>>
>> Are
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jose,
On 2/26/16 7:08 AM, Jose María Zaragoza wrote:
> 2016-02-26 9:08 GMT+01:00 RICHARD DOUST :
>> My question is, why doesn't it work, or, how can I debug it?
>
> Are you tested to allow to all origins (default option) ? Only for
> testing purpose
2016-02-26 9:08 GMT+01:00 RICHARD DOUST :
> My question is, why doesn't it work, or, how can I debug it?
Are you tested to allow to all origins (default option) ? Only for
testing purpose, I mean:
cors.allowed.origins
*
At first sight, your settings should work, but ...
> I guess I'm going to
Hi.
On this list, it is preferred to not top-post, but respond in-line or below the previous
intervention.
Re : http://tomcat.apache.org/lists.html#tomcat-users -> important -> 6
It makes it easier to follow the conversation, and for people with small screens, to avoid
scrolling up and down all
There's no doubt in my mind that this is considered a cross-domain request. The
question is, why is it not being allowed given the configuration. The domain
that requested the original page (via http) is specifically set to be allowed
to access the site in a cross-domain scenario.
My question is
On 25.02.2016 22:59, RICHARD DOUST wrote:
Hi,
I’m running Tomcat 7.0. Can’t find the version.bat file, so I don’t know more
than that. It’s installed on a Windows computer running Windows Server 2003
DataCenter Edition. (How’s that for refusing to upgrade?) Anyway, it’s a
client’s box. I’m tr
Hi,
I’m running Tomcat 7.0. Can’t find the version.bat file, so I don’t know more
than that. It’s installed on a Windows computer running Windows Server 2003
DataCenter Edition. (How’s that for refusing to upgrade?) Anyway, it’s a
client’s box. I’m trying to migrate an application to JavaScript
Hi Andre,
As Mark stated earlier - With a context.xml file named TestApp#web.xml you have
a defined a new
web application with a context path of "/TestApp/web" and a docBase of
"C:\web"
This holds true here. Any filter inside “TestApp” would not be able to catch
t
xplanation : in and , the is *relative to
the webapp context*. In your case, because of the way you have configured this, the webapp
has a context of "/TestApp/web". Therefore, if you want the filter to apply to everything
under "/TestApp/web", you have to map it to "/
b.xml file in the Catalina/localhost folder.
This works fine with filters.
Regards,
Pradyut
> Subject: Re: servlet filter not working over virtual directories in tomcat
> To: users@tomcat.apache.org
> From: ma...@apache.org
> Date: Fri, 2
On 23/10/2015 03:39, Pradyut Bhattacharya wrote:
> Hi,
> I had configured virtual directories in glassfish3.x over which I could
> write filters.
> For an example I could access files at c:/web from
> http://localhost/TestApp/web over which I could also place a filter at my web
Hi,
I had configured virtual directories in glassfish3.x over which I could write
filters.
For an example I could access files at c:/web from http://localhost/TestApp/web
over which I could also place a filter at my web app's web/xml file with
dir_filter
/web/*
Unfortunately Tomca
Chrome 45.0.2454.101 m 64 bit
> > Windows 7 64 bit
> >
> > Trying to rewrite the entire request body in a filter using a http
> request
> > wrapper. Not entirely sure if this is the right approach or even
> possible
> > but researching similar examples it s
On 04/10/2015 19:03, Michael Greco wrote:
> First time post here.
>
> Using :
> Tomcat 8.0.26
> JDK1.8.0 update 51
> Apache MyFaces 2.2.8.
> Maven build of webapp war file
> Chrome 45.0.2454.101 m 64 bit
> Windows 7 64 bit
>
> Trying to rewrite the entire requ
bit
Thanks.
> Trying to rewrite the entire request body in a filter using a http
> request wrapper. Not entirely sure if this is the right approach
> or even possible but researching similar examples it seems this
> approach should work. Created a simple test case with a one page
&
file
>> Chrome 45.0.2454.101 m 64 bit
>> Windows 7 64 bit
>>
>> Trying to rewrite the entire request body in a filter using a http
>> request wrapper. Not entirely sure if this is the right approach or even
>> possible but researching similar examples it s
On Sun, Oct 4, 2015 at 2:03 PM, Michael Greco
wrote:
> First time post here.
>
> Using :
> Tomcat 8.0.26
> JDK1.8.0 update 51
> Apache MyFaces 2.2.8.
> Maven build of webapp war file
> Chrome 45.0.2454.101 m 64 bit
> Windows 7 64 bit
>
> Trying to rewrite th
hael Greco
wrote:
> First time post here.
>
> Using :
> Tomcat 8.0.26
> JDK1.8.0 update 51
> Apache MyFaces 2.2.8.
> Maven build of webapp war file
> Chrome 45.0.2454.101 m 64 bit
> Windows 7 64 bit
>
> Trying to rewrite the entire request body in a filter using a
First time post here.
Using :
Tomcat 8.0.26
JDK1.8.0 update 51
Apache MyFaces 2.2.8.
Maven build of webapp war file
Chrome 45.0.2454.101 m 64 bit
Windows 7 64 bit
Trying to rewrite the entire request body in a filter using a http request
wrapper. Not entirely sure if this is the right approach
On 9/18/2015 1:57 PM, Caldarale, Charles R wrote:
From: George Sexton [mailto:geor...@mhsoftware.com]
Subject: Filter Mapping URL Pattern
I'm trying to add a filter mapping with the URL-Pattern
/*.css
Which, unfortunately, isn't allowed. You probably just need to remove the
lea
> From: George Sexton [mailto:geor...@mhsoftware.com]
> Subject: Filter Mapping URL Pattern
> I'm trying to add a filter mapping with the URL-Pattern
> /*.css
Which, unfortunately, isn't allowed. You probably just need to remove the
leading slash.
> Can som
I'm trying to add a filter mapping with the URL-Pattern
/*.css
and tomcat (7.0.63) is throwing an error on the deployment descriptor:
java.lang.IllegalArgumentException: Invalid filter mapping.
at
org.apache.catalina.core.StandardContext.validateFilterMap(StandardContext.java:
3136)
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Maatari,
On 7/23/15 10:49 AM, Maatari Daniel Okouya wrote:
> Hi,
>
> I am using TOMCAT 7, and I have enable the CORS FILTER as per the
> explanation on the official website:
> https://tomcat.apache.org/tomcat-7.0-doc/config/filter.
Hi,
I am using TOMCAT 7, and I have enable the CORS FILTER as per the explanation
on the official website:
https://tomcat.apache.org/tomcat-7.0-doc/config/filter.html#CORS_Filter
I use the actual configuration:
CorsFilter
org.apache.catalina.filters.CorsFilter
--
Maatari Daniel Okouya
Sent with Airmail
On July 23, 2015 at 10:49:19 AM, Maatari Daniel Okouya (okouy...@yahoo.fr)
wrote:
Hi,
I am using TOMCAT 7, and I have enable the CORS FILTER as per the explanation
on the official website:
https://tomcat.apache.org/tomcat-7.0-doc/config
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Eric,
On 7/14/15 6:24 PM, Eric Robinson wrote:
> Our canned tomcat application's web.xml file contains the following
> filter...
>
> SessionFilter
> servlet.BlahSession
>
> SessionFilter
> /*
>
>
>
Our canned tomcat application's web.xml file contains the following filter...
SessionFilter
servlet.BlahSession
SessionFilter
/*
Is there a way to make this filter not apply to requests that originate from
certain IP addresses?
--
Eric Robinson
tion 4.4)
indicating the SOAP processing error."
George
[1] http://www.w3.org/TR/2000/NOTE-SOAP-2508/#_Toc478383529
-Original Message-
From: André Warnier [mailto:a...@ice-sa.com]
Sent: Monday, June 29, 2015 8:56 AM
To: Tomcat Users List
Subject: Re: [OT] Re: Filter behaviour
Geo
st
Subject: [OT] Re: Filter behaviour
On Sat, Jun 27, 2015 at 8:37 AM, Konstantin Kolinko
wrote:
public void doFilter(ServletRequest request, ServletResponse
response,
FilterChain chain) throws IOException, ServletException
{
boolean iAmNotAuthorized = true;
if (iAmNot
For SOAP, you *MUST* send back 500 or 400 with your SOAP fault back.
[1] http://www.w3.org/TR/soap12-part2/#tabresstatereccodes
-Original Message-
From: Leo Donahue [mailto:donahu...@gmail.com]
Sent: Saturday, June 27, 2015 11:45 PM
To: Tomcat Users List
Subject: [OT] Re: Filter
1 - 100 of 841 matches
Mail list logo
