On 21/09/2020 20:20, David Magda wrote:
> Tomcat is operating at two levels: the operating system and the
> application.
>
> Using "-Duser.home" is useful for telling the application itself where
> to look for things, but less so for doing some operations at the OS layer.
>
> One example is for CI/CD infrastructure: if someone wants to use (say)
> Jenkins to deploy WAR files as they update code, and want to use SSH
> keys for getting into front-end Tomcat systems, where would they put the
> authorized_keys(5) file?
>
> SSHd looks for it in "${HOME}/.ssh/" by default, which would mean "/.ssh/".
That's a good point. Maybe we could use /var/lib/tomcat as the home
directory then.
Emmanuel Bourg
