Ask MetaFilter questions tagged with tomcat

Cruisecontrol and Tomcat on port 80?

nikkorizz — Mon, 08 Jun 2009 16:19:08 -0800

Server filter: How can I get Cruisecontrol and Tomcat on the same port? (Port 80?) By default, CruiseControl and Tomcat need to use different ports to run on the same computer. However, the way things are set up for my server, they don't need to run at the same time. So, is it possible to have them both on the same port, but only activated when the user types in a certain link? For example:

http://localhost --> Would lead to Tomcat
http://localhost/cruisecontrol --> Leads to the CruiseControl dashboard.

When CruiseControl is accessed, Tomcat wouldn't be active.

My goal is to get them both running on the same port, but switching off when needed. I was told that this is possible and that it had been done before, but I wasn't given any details. Does anyone have any insight or possible alternatives?

The future of client/server deployment?

nikkorizz — Tue, 02 Dec 2008 18:35:23 -0800

How are people deploying web applications with client/server interaction these days? After a failed attempt at getting a Java servlet up using Apache Tomcat, I'm looking to see what else is out there. Ideally, I'd like to stick with JAVA, but I suppose it's also in my best interest to pick up other popular languages if that's seems to be where the flow is going.

Tomcat was useful, but documentation on it was sparse and outdated, and troubleshooting just to get the thing working was a pretty hairy experience. What's a good alternative?

Bonus points to employees that actually use said alternative for their own job. I'm not too worried about ease or interface, just as long as it's a technology that is well documented, meaning more than 100 articles/posts made about it within the past year!

How do I pass a PHP session authenticated in IIS across to Jetty or Tomcat?

tra — Thu, 04 Sep 2008 13:37:34 -0800

I have users logging into XOOPS running on IIS, and have an instance of the Jetty JSP webserver configured to serve up Eclipse's Infocenter system. How can I set up security so that no users can view the Jetty-served content without being authenticated first in a XOOPS session off of IIS? I'm trying to tie certain web-based applications together here and I'm wondering if there's an easy way to achieve something.

At my company, we run IIS, PHP and MySQL which all serves up a XOOPS-driven website. One of our teams has provided the Eclipse Help system ("Infocenter") containing a stack of product documentation, all packaged up with the Jetty webserver. The way we received it from another team in our company, you run a batch file which installs Jetty as a Windows service, and when you run that service Jetty fires up and starts listening on a port that you can pre-choose in a properties file prior to creating the service. Going to your URL/port in a browser will connect to Jetty, which in turn serves up the Eclipse Infocenter content.

That's all well and good if you're happy to just send your browser to the Jetty/Infocenter URL but there's another dimension to this. I need to be able to secure access to the Jetty port so that only users who have pre-authenticated to XOOPS, hosted in IIS, will be allowed into the Infocenter/Jetty instance. And therein lies the rub: once authenticated to XOOPS the user has a golden key in the form of an authenticated session, but as soon as the browser is passed to Jetty, how can we set it up so that the user is forbidden from accessing any Jetty-served pages without the XOOPS golden key?

It's a convoluted situation here but let's just say that another non-IT team came up with this Infocenter idea - someone who "did this at his previous job" has suggested the idea, plenty of non-IT but senior-management people bought into it, he wrapped up everything in Jetty and gave it to us, and now he's on his way out of the company (probably so he can eventually leave a poo in the middle of some other company's carpet the size of the Pyramid of Giza for someone else to clean up) and doesn't have the time to work with us to fulfil the mess of other requirements we now have in taking this technology to the next level.

We have Tomcat serving other JSP content as well, which is doubly annoying in the scheme of things since, of course, it should be able to replace Jetty as the JSP serving system. Right now we're taking on a problem another team has created, and investigating how to make a WAR-file version of the Infocenter to be hosted under Tomcat, but our deadline for getting all of this resolved and implemented is the end of this month (9/2008). So, either in Jetty or in Tomcat, is there a way of securing these technologies so that only a user that has a valid PHP session generated within XOOPS and IIS is able to be passed thru to either a Tomcat or Jetty server containing the Eclipse Infocenter system? Our other Tomcat-hosted solution is our own code, provided to us by someone who's no longer with our company, so we can get our fingers dirty with that to an extent (and that's not something I'm asking to be solved here), but we think the solution to this Infocenter dilemma lies in some sort of custom thing we need to write which allows Jetty or Tomcat to act as a doorman, checking some sort of passed credential and disallowing browser access to content if that credential is not somehow "present" as the browser comes across. Like the concept of a referrer, but not as easily spoofable/hackable. Make sense? (frustratedly sips coffee)

None of those in my team are majorly experienced web programmers so we're running madly around the Internet trying to find solutions. Figured the hive mind could help. (crosses fingers and sips more coffee)

Oh, and to answer what might be everyone's next question - we aren't using Apache to serve XOOPS because IIS was on the machine we originally put it on and we felt there was no reason to since XOOPS runs perfectly fine under IIS.

Quoth the server, 404.

utsutsu — Fri, 01 Aug 2008 07:37:22 -0800

Apache and Tomcat strangeness... a page in my app throws a 404... but only when using SSL on a single server. I am having a very strange problem with one of my applications.

The skinny:

- The app is a Java JSP servlet web app running on a proprietary framework and tag library. It's something like a primitive and wonky version of Struts.

- The problem is that going to a certain page in the app gets a 404 but... ONLY on the test server and ONLY when SSL is used.

- It works fine on my machine locally, on another windows machine running tomcat, on our staging server which is solaris (just like the test box), and on the test box if I go to the HTTP address instead of HTTPS.

- Tomcat's catalina log give nothing strange.

- Apache's error log gives entries like the following:

[Thu Jul 31 10:37:53 2008] [error] [client 10.140.225.162] File does not exist: /usr/local/jakarta-tomcat-4.1.30/webapps/myapp/services, referer: https://mytestserver.ca/myapp/services/services.jsp?selServices=MyServices_f2

response when trying from Firefox:

Not Found

The requested URL /sao/services/changeRequestType was not found on this server.

Apache/2.0.49 (Unix) mod_jk/1.2.5 mod_ssl/2.0.49 OpenSSL/0.9.7d PHP/5.0.4 Server at mytestserver.ca Port 443

It looks to me like it is trying to find a /myapp/services/ folder? This folder of course does not exist. That URL ( /services/*) is mapped in my web.xml and has worked fine until now.

I do not have direct access to the servers in question, as I am only the developer. My knowledge of apache and tomcat configuration is very limited.

To my mind, the key question is why does it work on port 80, but not 443? Surely this must be a server config issue?

Any assistance is greatly appreciated and will save me from wasting more time spinning my wheels on this. I have googled to the best of my fu and have turned up nothing.

Splunking files on Windows boxes

ajp — Tue, 23 Oct 2007 06:04:21 -0800

Getting Splunk running on Solaris 5.8, with log files on Windows boxes. So I've installed Splunk on a Solaris 5.8 box, and now I need to get some data into it. We have a large amount of Windows servers, among other things, with Tomcat logs that I'd love to get into Splunk. People currently remote desktop onto the servers and peruse the logs in Notepad.... ugh!

How best to do this?

It seems that the most obvious way is to mount the Windows drives using SaMBa so Splunk considers them to be locally hosted files (albeit from another server).

Any other way? The less painful, the better.

Let's assume disk space and network bandwidth aren't an issue. I'm just new to Splunk and not too sure of my options. I did RTFM but can't see much specifically about this. I'm sure it's there, somewhere painfully obvious.

Stupid computers.....do what I want!

emptybowl — Thu, 29 Mar 2007 12:17:22 -0800

I asked an earlier question about using Apache to redirect a request to a Tomcat server running Jython. With your help I've gotten that running, but now I have a new problem. I need the hostname of the computer making the request to be available to the Jython scripts that are running, but the mod_rewrite changes REMOTE_ADDR to be name of the Apache server, not the hostname of the user. Is there some other way I can get this information?

How do I force HTTPS in Tomcat (through Apache and mod_jk)?

purephase — Wed, 13 Dec 2006 15:56:41 -0800

I'm at my wit's end. I've been trying to configure tomcat (through apache 2 using mod_jk) to automatically re-direct all traffic to HTTPS from HTTP. More boring technical details to follow. Specifically, I'm trying to get CAS working. Tomcat is successfully serving-up the pages over HTTP and HTTPS and the application is working as expected. However, since this particular servlet handles user authentication I would like Tomcat to force HTTPS for all requests.

I have tried using isSecure() through JSP to redirect users but it simply puts the requests into an endless loop. I have tried the following configuration in the web.xml file (see Lukas Bradleys' answer) and it does force a redirect, but it uses the server hostname as the URL and not the proxied URL to the server (which means it doesn't work externally).

I've tried changing the hostname on the server but it continues to use the initial hostname which leads me to believe that this value is somewhere in the Tomcat configuration, but I cannot locate it.

So, is there an easier way to do this? Or, does anyone know where to look to modify that hostname to use the URL for the proxied site? Any assistance would be appreciated.

Enabling Default Document for Tomcat / IIS (ISAPI Redirector) connector

kuperman — Fri, 30 Sep 2005 06:42:41 -0800

How can I configure index.jsp to be a default document in Tomcat using the IIS connector (ISAPI Redirector)? I've got the ISAPI redirector installed and working - for the most part. Specifiying the exact file (http://site/app/index.jsp) via the ISAPI redirector works. Going directly to Tomcat (http://site:8080/app/) works too. However, if I try:

http://site/app/

It does not work. Where do I fix this? I'm mostly a WebSphere guy and this stuff is pretty simple to fix with that in the WS plugin file... How about Tomcat?

What's the best Linux distribution for Tomcat?

esd — Mon, 01 Aug 2005 06:16:27 -0800

What's the best Linux distribution for deploying Tomcat applications? I'm part of a small company, and we have two x86 towers on which we would like to install a Linux distribution and Tomcat.

My first choice for that Linux distribution was Fedora Core, because of its relatively recent package versions and good GUI administration tools. Unfortunately, Fedora now seems to ship with gcj, which means we end up with a mess of packages compiled for gcj (from Fedora) and ones ready to rock on Sun's JVM (from everywhere else). To boot, the JPackage version of Tomcat isn't terribly up-to-date.

So, should we slog through the Fortress of Fedora, or is there a distribution out there that will make it easier and faster (and less frustrating) to get Sun's JDK + Tomcat up-and-running?

How to block IPs in Apache Tomcat?

furtive — Sat, 21 May 2005 12:31:24 -0800

Recently a wiki that I host has been defaced pretty badly by some Asian group. I'd like to block an ip address or a range of addresses from my web server. I'm running Jakarta Tomcat on a Windows XP Pro box but Google hasn't been able to tell me how to do this.

Listless Cat

arse_hat — Thu, 22 Jul 2004 21:52:50 -0800

More Cat Filter. I Was recently adopted by a small black tom cat. I had him neutered two days ago and he seems listless. More inside. Kitty was neutered, had his shots (rabies, fvr-cp-c, leukemia) and treated with Revolution for fleas. He is eating and pooping and his eyes are bright and clear and his coat is shiny and smooth but he just has no interest in anything but being held like a baby and sleeping. Is he just getting over the treatment? All Google tells me is that they recover quickly. I really do not want to subject him to another visit to the vet if it’s not needed, but how long is it until a neutered cat is back to his old self?