D (and possibly B)
In the case of B - instead of commenting out - wrap a filter around it
that has default behavior of not being enabled.
So it would look like this:
boolean allowTextInterface = false;
init(FilterConfig) {
String s=System.getProperty("manager.allowTextInterface");
allowTex
On 05/07/2010 08:03 AM, Rainer Jung wrote:
On 07.05.2010 14:23, Konstantin Kolinko wrote:
2010/5/7 Rainer Jung:
On 07.05.2010 11:00, Konstantin Kolinko wrote:
2010/5/7 Rainer Jung:
I'm wondering why the PCKS Token
Poller thread was captured by the leak prevention. Since we know the
code,
it
I'm trying to decide the best way to back-port the configuration of this
to the (Host) Manager app in Tomcat 5 & 6.
The requirements are:
- not to break anything that currently works
- enable CSRF for the HTML interface
- the same user cannot have access to the HTML and text interfaces for
the
Author: markt
Date: Fri May 7 17:38:03 2010
New Revision: 942157
URL: http://svn.apache.org/viewvc?rev=942157&view=rev
Log:
Add a simple CSRF prevention filter. It has been tested with the Tomcat 6
manager app and a back-port proposal will follow shortly.
Added:
tomcat/trunk/java/org/apache
https://issues.apache.org/bugzilla/show_bug.cgi?id=48600
--- Comment #12 from Philippe Prados 2010-05-07 11:11:28 EDT
---
Do you do something to optimize the code ?
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
--- You are receiving this mail because: ---
On 07.05.2010 14:23, Konstantin Kolinko wrote:
2010/5/7 Rainer Jung:
On 07.05.2010 11:00, Konstantin Kolinko wrote:
2010/5/7 Rainer Jung:
I'm wondering why the PCKS Token
Poller thread was captured by the leak prevention. Since we know the
code,
it was because its context class loader was eq
2010/5/7 Rainer Jung :
> On 07.05.2010 11:00, Konstantin Kolinko wrote:
>>
>> 2010/5/7 Rainer Jung:
>>>
>>> I'm wondering why the PCKS Token
>>> Poller thread was captured by the leak prevention. Since we know the
>>> code,
>>> it was because its context class loader was equal to the
>>> WebappClas
On 07.05.2010 11:00, Konstantin Kolinko wrote:
2010/5/7 Rainer Jung:
I'm wondering why the PCKS Token
Poller thread was captured by the leak prevention. Since we know the code,
it was because its context class loader was equal to the WebappClassLoader
of /manager. That's what I don't understand.
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Tomcat Wiki" for change
notification.
The "PoweredBy" page has been changed by DavidGhedini.
http://wiki.apache.org/tomcat/PoweredBy?action=diff&rev1=257&rev2=258
--
=== Ap
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Tomcat Wiki" for change
notification.
The "PoweredBy" page has been changed by DavidGhedini.
http://wiki.apache.org/tomcat/PoweredBy?action=diff&rev1=256&rev2=257
--
<>
2010/5/7 Rainer Jung :
> I'm wondering why the PCKS Token
> Poller thread was captured by the leak prevention. Since we know the code,
> it was because its context class loader was equal to the WebappClassLoader
> of /manager. That's what I don't understand. See my original post.
>
TCCL is inherit
11 matches
Mail list logo
