-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Ellen,
On 2/25/20 12:55, Ellen Meiselman wrote: > Sorry - no, the quotes were not there except for a 5 minute test of > a hopeless theory that they might be needed. Right now there is no > secret at all in the workers.properties, and in the > ajp connector, i have secretRequired ="false". Workers.properties: > worker.worker1.type=ajp13 worker.worker1.host=127.0.0.1 > worker.worker1.port=8009 > > Server.xml: <Connector protocol="AJP/1.3" address="127.0.0.1" > port="8009" secretRequired="false" redirectPort="8443" /> Hmm. I think we've all been operating under the assumption that the "secret" (by whatever name) was the source of the problem. It appears that was incorrect. Have a look at Jon's question about file permissions. Was this a configuration that had been working until recently, or is this a new configuration that you haven't (yet) been able to get working ? Any reason not to use HTTP(S) for your protocol instead of AJP? - -chris > On Tue, Feb 25, 2020 at 12:35 PM Christopher Schultz < > ch...@christopherschultz.net> wrote: > > Ellen, > > On 2/25/20 12:06, Ellen Meiselman wrote: >>>> Yes, everything is on the same server. >>>> >>>> workers.properties: # Set properties for worker1 (ajp13) >>>> worker.worker1.type=ajp13 worker.worker1.host=127.0.0.1 >>>> worker.worker1.port=8009 worker.worker1.secret="mySecret". > > Just so there is no confusion: your "mySecret" should have neither > quotes nor the trailing period. > > Are those literally in your ISS config file? > > -chris > >>>> On Tue, Feb 25, 2020 at 11:27 AM >>>> <jonmcalexan...@wellsfargo.com.invalid> wrote: >>>> >>>>> -----Original Message----- From: Ellen Meiselman >>>>> <elle...@gmail.com> Sent: Tuesday, February 25, 2020 10:01 >>>>> AM To: Tomcat Users List <users@tomcat.apache.org> Subject: >>>>> Re: At wits end: Difficulties with IIS ISAPI connector and >>>>> Tomcat >>>>> >>>>>> Hi, >>>>> >>>>>> I've been testing, and so far, there is no change in the >>>>>> behavior. I am >>>>> still getting the same tomcat->based 403 error. >>>>> >>>>>> Based on what you said above... >>>>>> >>>>>> secretRequired="true" (which is the default, so it can >>>>>> be removed) secret="xxxxxxx" >>>>> >>>>> >>>>>> ...I removed secretRequired="true" and left secret. So >>>>>> the connector >>>>> definition now looks like this: >>>>>> <Connector protocol="AJP/1.3" address="127.0.0.1" >>>>>> port="8009" secret="mySecret" redirectPort="8443" /> >>>>> >>>>> <SNIP> >>>>> >>>>> I'm assuming that your web-front-end is on the same server >>>>> as your Tomcat instance, based on you having the address >>>>> set to 127.0.0.1, correct? What do you have in your >>>>> workers.properties file? >>>>> >>>> >> >> --------------------------------------------------------------------- >> >> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org >> For additional commands, e-mail: users-h...@tomcat.apache.org >> >> > -----BEGIN PGP SIGNATURE----- Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/ iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAl5VYQQACgkQHPApP6U8 pFgLuw/8Dheh8K4XrQpcktN1BK0A9pKCeWg44uWfU9RgCgWZg4b4VSjIaftE4Bv0 WF8Vt6WhnzjIDp6XKgaH69KXIwIZrXVbmWbkjkYlTtMAgrqKrvX/fd5XdTP4lJYX /gG6Zl2dqJeBGwg9maZgBLdQVXDRF3WnHVEvVfbnMl1UKxqNmVPdjODAhDCjzTqv h6kMPSDTqAdEW1Na7UF+4JgpI5owAoP4oXoy3YCpCi18jYwu3axHwse62hBi/UwR vWiQ8nQuV+6NcZ00A/K8d9OMpg+nheFbWJBTerxzDfHHelCbm17id7Em+XlOZ3aW QPYmWx1ERcNbyf8cpSEXeRFNJ4IhYE/QZJVw541WNzveKRJzEVuActTC735fmgd/ QOt9ECsu+0wXRgR09FNhUChcoCbxQbOqqvkvdwa87DA1pevEBP6j7emG0YDx2YTC UKRjnk1OkajimSWRtsbnRoB2vdSF7tRurcNaveybIpkHn1xtcH76v7MvCTp1da4G zPkVNn9e65cscN4K0HbtHd8Won+AlHBVZWe2iZ19XrCHsebFVwdz3CwaLBHIF3XN O67SBp9Kdxof3Mt3SaDNrHYyOrmsWjSL3IKx5SSN48kNlEnk1acIFrHzmbIUD3n5 IIVZk3HwvNqwkTH4f5UasVOUsO0i3+1JAe7f7Cft6RsuBOchRxM= =qIFw -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
