svn commit: r1646750 - in /tomcat/tc8.0.x/trunk: ./ java/org/apache/catalina/ha/authenticator/ClusterSingleSignOn.java webapps/docs/config/cluster-valve.xml

Fri, 19 Dec 2014 06:50:51 -0800 

Author: markt
Date: Fri Dec 19 14:50:05 2014
New Revision: 1646750

URL: http://svn.apache.org/r1646750
Log:
kfujino review of  BZ 57338 fix. Add configuration options for mapSendOptions 
and terminateOnStartFailure. Document the configuration options.

Modified:
    tomcat/tc8.0.x/trunk/   (props changed)
    
tomcat/tc8.0.x/trunk/java/org/apache/catalina/ha/authenticator/ClusterSingleSignOn.java
    tomcat/tc8.0.x/trunk/webapps/docs/config/cluster-valve.xml

Propchange: tomcat/tc8.0.x/trunk/
------------------------------------------------------------------------------
--- svn:mergeinfo (original)
+++ svn:mergeinfo Fri Dec 19 14:50:05 2014
@@ -1 +1 @@
-/tomcat/trunk:1636524,1637156,1637176,1637188,1637331,1637684,1637695,1638720-1638725,1639653,1640010,1640083-1640084,1640088,1640275,1640322,1640347,1640361,1640365,1640403,1640410,1640652,1640655-1640658,1640688,1640700-1640883,1640903,1640976,1640978,1641000,1641026,1641038-1641039,1641051-1641052,1641058,1641064,1641300,1641369,1641374,1641380,1641486,1641634,1641656-1641692,1641704,1641707-1641718,1641720-1641722,1641735,1641981,1642233,1642280,1642554,1642564,1642595,1642606,1642668,1642679,1642697,1642699,1642766,1643002,1643045,1643054-1643055,1643066,1643121,1643128,1643206,1643209-1643210,1643216,1643249,1643270,1643283,1643309-1643310,1643323,1643365-1643366,1643370-1643371,1643465,1643474,1643536,1643570,1643634,1643649,1643651,1643654,1643675,1643731,1643733-1643734,1643761,1643766,1643814,1643937,1643963,1644017,1644169,1644201-1644203,1644321,1644323,1644516,1644523,1644529,1644535,1644730,1644768,1644784-1644785,1644790,1644793,1644815,1644884,1644886,1644890,1644892
 
,1644910,1644924,1644929-1644930,1644935,1644989,1645011,1645247,1645355,1645357-1645358,1645455,1645465,1645469,1645471,1645473,1645475,1645486-1645488,1645626,1645641,1645685,1645743,1645763,1645951-1645953,1645955,1646098-1646106,1646178,1646220,1646302,1646304,1646420,1646470-1646471
+/tomcat/trunk:1636524,1637156,1637176,1637188,1637331,1637684,1637695,1638720-1638725,1639653,1640010,1640083-1640084,1640088,1640275,1640322,1640347,1640361,1640365,1640403,1640410,1640652,1640655-1640658,1640688,1640700-1640883,1640903,1640976,1640978,1641000,1641026,1641038-1641039,1641051-1641052,1641058,1641064,1641300,1641369,1641374,1641380,1641486,1641634,1641656-1641692,1641704,1641707-1641718,1641720-1641722,1641735,1641981,1642233,1642280,1642554,1642564,1642595,1642606,1642668,1642679,1642697,1642699,1642766,1643002,1643045,1643054-1643055,1643066,1643121,1643128,1643206,1643209-1643210,1643216,1643249,1643270,1643283,1643309-1643310,1643323,1643365-1643366,1643370-1643371,1643465,1643474,1643536,1643570,1643634,1643649,1643651,1643654,1643675,1643731,1643733-1643734,1643761,1643766,1643814,1643937,1643963,1644017,1644169,1644201-1644203,1644321,1644323,1644516,1644523,1644529,1644535,1644730,1644768,1644784-1644785,1644790,1644793,1644815,1644884,1644886,1644890,1644892
 
,1644910,1644924,1644929-1644930,1644935,1644989,1645011,1645247,1645355,1645357-1645358,1645455,1645465,1645469,1645471,1645473,1645475,1645486-1645488,1645626,1645641,1645685,1645743,1645763,1645951-1645953,1645955,1646098-1646106,1646178,1646220,1646302,1646304,1646420,1646470-1646471,1646476

Modified: 
tomcat/tc8.0.x/trunk/java/org/apache/catalina/ha/authenticator/ClusterSingleSignOn.java
URL: 
http://svn.apache.org/viewvc/tomcat/tc8.0.x/trunk/java/org/apache/catalina/ha/authenticator/ClusterSingleSignOn.java?rev=1646750&r1=1646749&r2=1646750&view=diff
==============================================================================
--- 
tomcat/tc8.0.x/trunk/java/org/apache/catalina/ha/authenticator/ClusterSingleSignOn.java
 (original)
+++ 
tomcat/tc8.0.x/trunk/java/org/apache/catalina/ha/authenticator/ClusterSingleSignOn.java
 Fri Dec 19 14:50:05 2014
@@ -23,8 +23,10 @@ import org.apache.catalina.Host;
 import org.apache.catalina.LifecycleException;
 import org.apache.catalina.authenticator.SingleSignOn;
 import org.apache.catalina.authenticator.SingleSignOnEntry;
+import org.apache.catalina.authenticator.SingleSignOnSessionKey;
 import org.apache.catalina.ha.CatalinaCluster;
 import org.apache.catalina.ha.ClusterValve;
+import org.apache.catalina.tribes.Channel;
 import org.apache.catalina.tribes.tipis.AbstractReplicatedMap.MapOwner;
 import org.apache.catalina.tribes.tipis.ReplicatedMap;
 import org.apache.tomcat.util.ExceptionUtils;
@@ -70,6 +72,26 @@ public class ClusterSingleSignOn extends
     }
 
 
+    private int mapSendOptions =
+            Channel.SEND_OPTIONS_SYNCHRONIZED_ACK | 
Channel.SEND_OPTIONS_USE_ACK;
+    public int getMapSendOptions() {
+        return mapSendOptions;
+    }
+    public void setMapSendOptions(int mapSendOptions) {
+        this.mapSendOptions = mapSendOptions;
+    }
+
+
+    private boolean terminateOnStartFailure = false;
+    public boolean getTerminateOnStartFailure() {
+        return terminateOnStartFailure;
+    }
+
+    public void setTerminateOnStartFailure(boolean terminateOnStartFailure) {
+        this.terminateOnStartFailure = terminateOnStartFailure;
+    }
+
+
     // ---------------------------------------------------- SingleSignOn 
Methods
 
     @Override
@@ -120,11 +142,17 @@ public class ClusterSingleSignOn extends
 
             ClassLoader[] cls = new ClassLoader[] { 
this.getClass().getClassLoader() };
 
-            cache = new ReplicatedMap<>(this, cluster.getChannel(), rpcTimeout,
-                    cluster.getClusterName() + "-SSO-cache", cls);
-            reverse = new ReplicatedMap<>(this, cluster.getChannel(), 
rpcTimeout,
-                    cluster.getClusterName() + "-SSO-reverse", cls);
-
+            ReplicatedMap<String,SingleSignOnEntry> cache = new 
ReplicatedMap<>(
+                    this, cluster.getChannel(), rpcTimeout, 
cluster.getClusterName() + "-SSO-cache",
+                    cls, terminateOnStartFailure);
+            cache.setChannelSendOptions(mapSendOptions);
+            this.cache = cache;
+
+            ReplicatedMap<SingleSignOnSessionKey,String> reverse = new 
ReplicatedMap<>(
+                    this, cluster.getChannel(), rpcTimeout, 
cluster.getClusterName() + "-SSO-reverse",
+                    cls, terminateOnStartFailure);
+            reverse.setChannelSendOptions(mapSendOptions);
+            this.reverse = reverse;
         } catch (Throwable t) {
             ExceptionUtils.handleThrowable(t);
             throw new LifecycleException(

Modified: tomcat/tc8.0.x/trunk/webapps/docs/config/cluster-valve.xml
URL: 
http://svn.apache.org/viewvc/tomcat/tc8.0.x/trunk/webapps/docs/config/cluster-valve.xml?rev=1646750&r1=1646749&r2=1646750&view=diff
==============================================================================
--- tomcat/tc8.0.x/trunk/webapps/docs/config/cluster-valve.xml (original)
+++ tomcat/tc8.0.x/trunk/webapps/docs/config/cluster-valve.xml Fri Dec 19 
14:50:05 2014
@@ -122,6 +122,16 @@
         <p>Java class name of the implementation to use.  This MUST be set to
         
<strong>org.apache.catalina.ha.authenticator.ClusterSingleSignOn</strong>.</p>
       </attribute>
+      <attribute name="cookieDomain" required="false">
+        <p>Sets the host domain to be used for sso cookies.</p>
+      </attribute>
+      <attribute name="mapSendOptions" required="false">
+        <p>The Valve uses a replicated map. You can setup the flag for how this
+        map sends messages. The default value is <code>6</code> (synchronous).
+        Note that if you use asynchronous messaging it is possible for update
+        messages to be processed by the receiving node in a different order to
+        the order in which they were sent.</p>
+      </attribute>
       <attribute name="requireReauthentication" required="false">
         <p>Default false. Flag to determine whether each request needs to be
         reauthenticated to the security <strong>Realm</strong>. If "true", this
@@ -131,8 +141,20 @@
         requests based on the presence of a valid SSO cookie, without
         rechecking with the <strong>Realm</strong>.</p>
       </attribute>
-      <attribute name="cookieDomain" required="false">
-        <p>Sets the host domain to be used for sso cookies.</p>
+      <attribute name="rpcTimeout" required="false">
+        <p>The Valve uses a replicated map. This is the timeout for messages
+        that transfer state to/from the other nodes in the cluster. If not
+        specified, a default value of <code>15000</code> milliseconds is used.
+        </p>
+      </attribute>
+      <attribute name="terminateOnStartFailure" required="false">
+        <p>Set to <code>true</code> if you wish this Valve to fail if the
+        underlying replication fails to start. If the Valve fails, then the
+        associated container will fail to start. If you set this attribute to
+        false, and the underlying replications fails to start, the Valve will
+        start and it will attempt to join the cluster and start replication as
+        part of the heartbeat process. If not specified, the default value of
+        <code>false</code> is used.</p>
       </attribute>
     </attributes>
   </subsection>



---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to