Gerald, On 6/21/2016 11:03 AM, Miller, Gerald wrote: > I'm seeing errors from attempts to append uncorrected paths (e.g., > C:\out\) and corrected ones (e.g., ~/out/) onto some arbitrary path. > Assuming a relative path in a case like this makes about as much > sense as using relative branching in non-relocatable code. I've > wasted hours trying to get rid of errors in catalina.2016-06-21.log, > and after I got fed up with the ridiculous assumption that the > directory within Tomcat would also be accessed by the web services > developed in an entirely separate directory hierarchy, that's when I > decided to cut out the asinine duplication once and for all and > define one central absolute path. So much for that idea. It's > complaining tha > /home/iaadmin/IA/apache-tomcat-8.0.24/~/out/servicetlsstore.jks isn't > found! (Yes, I also have to deal with the fact that the equivalence > of servicetlsstore.jks and ServiceTlsStore.jks in Windows is used so > carelessly that converting to Ubuntu is a nightmare.
I just played with this using Apache Tomcat 8.0.36, JRE 1.8.0_92, and Windows 7 64 bit. I followed the fine documentation here: http://tomcat.apache.org/tomcat-8.0-doc/ssl-howto.html Here is my server.xml connector configuration: <Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol" maxThreads="150" SSLEnabled="true" scheme="https" secure="true" keystoreFile="${user.home}/Apache/apache-tomcat-8.0.36/conf/keystore.jks" keystorePass="changeit" clientAuth="false" sslProtocol="TLS" /> (sorry for the word wrap). Please note that I've moved and renamed the keystore file from the defaults as generated by the keytool utility. This works fine, tastes great. Since I install Tomcat in the same place (for development) regardless of platform, I then copied the keystore file and Connector configuration to my 64 bit CentOS 6.8 system running the same version of Tomcat and Java. This works fine, tastes great. OK, so I changed the ports on the CentOS system since I already run a production Tomcat on that system with the default ports. I also had to open up the firewall on that system. Without seeing your Connector configuration, we have no idea what is going on. Actually I do, but I'm not going to use Pid's crystal ball at this junction (for reasons - see below). We had to intuit your Tomcat version (please upgrade). We don't know your Java version (please provide). As an aside, we're all volunteers on this mailing list. We use Tomcat because it's an awesome platform maintained by awesome, responsive, and talented people. Vitriol, while certainly understandable after spending hours working on a problem, is not the best way to win friends, influence enemies, nor get volunteers to respond to questions. . . . just my two cents /mde/
signature.asc
Description: OpenPGP digital signature
