I want to redirect user to / with a query parameter to indicate that
session has timed out.
On Fri, Mar 14, 2014 at 4:01 PM, Leo Donahue wrote:
> >On Fri, Mar 14, 2014 at 3:48 PM, Akash Jain >wrote:
> >Leo,
>
> >If any request comes after session timeout interval ... why would it go
> into err
>On Fri, Mar 14, 2014 at 3:48 PM, Akash Jain wrote:
>Leo,
>If any request comes after session timeout interval ... why would it go
into error ?
Perhaps because the request/response that was created with a session is no
longer valid after the session timeout. What other option would you have
if n
Leo,
If any request comes after session timeout interval ... why would it go
into error ?
I want to keep the session timeout and error scenarios different.
On Fri, Mar 14, 2014 at 3:34 PM, Leo Donahue wrote:
> On Fri, Mar 14, 2014 at 3:04 PM, Akash Jain
> wrote:
>
> > I have following confi
On Fri, Mar 14, 2014 at 3:04 PM, Akash Jain wrote:
> I have following configuration in `web.xml` in tomcat 7. I am wondering if
> I can add any configurable parameter here, so that if user tries to do any
> operation post 30 minutes, I redirect the user to our home page.
>
>
> 30
I have following configuration in `web.xml` in tomcat 7. I am wondering if
I can add any configurable parameter here, so that if user tries to do any
operation post 30 minutes, I redirect the user to our home page.
30
mydomain.mycompany.com
I think I prefer to stay with Tomcat users list. Problem with SO is that
they close the questions without the second thought.Its becoming more of
kind of dictatorship. Too generic , close it and too easy, flame the poster
altitude.
Again I don't have any issues with SO and I did receive lot of as
2014-03-14 15:37 GMT+04:00 Zboron Lukas :
> Hi,
> I have several custom jspx tags with dynamic attributes that worked well up
> to Tomcat 7.0.47, but they do not work properly on Tomcat 7.0.52. Same
> problems occur also when using Spring form tags (I suspect that other
> libraries would have same
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Joesph,
On 3/14/14, 12:38 PM, Joesph Bleau wrote:
> It's refreshing to see people who still care about user-list
> communities. They seem to foster the kind of individuals I enjoy
> communicating with, but are sadly dwindling.
Come meet some of us
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Konstantin,
On 3/14/14, 11:28 AM, Konstantin Kolinko wrote:
> 2014-03-14 19:04 GMT+04:00 Christopher Schultz
> :
>> Joseph,
>>
>> On 3/14/14, 9:49 AM, Joesph Bleau wrote:
>>> I should also mention that after some very simple testing I
>>> was able
Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Makilaj,
On 3/14/14, 8:32 AM, Mikolaj Rydzewski wrote:
On 14.03.2014 13:25, André Warnier wrote:
Not a direct answer to your question, but this subject comes up
so often that maybe a generic explanation may help.
[..
Chris,
I'm afraid I was also a bit guilty of this very recently, but I'll accept
your welcome also. :-)
It's refreshing to see people who still care about user-list communities.
They seem to foster the kind of individuals I enjoy communicating with, but
are sadly dwindling.
Cheers
On Fri, Mar
Would anybody be surprised if I mentioned that we're running an outdated of
tomcat? Thanks for the tip. I'm going to remove Spring's session fixation
prevention strategy, and also remove the custom valve I had written and
upgrade to a version unaffected by this and test. This is going to
alleviate
2014-03-14 18:35 GMT+04:00 Mark Thomas :
> On 14/03/2014 11:57, Konstantin Kolinko wrote:
>> 2014-03-14 15:37 GMT+04:00 Zboron Lukas :
>>> Hi,
>>> I have several custom jspx tags with dynamic attributes that worked well up
>>> to Tomcat 7.0.47, but they do not work properly on Tomcat 7.0.52. Same
>
On Fri, Mar 14, 2014 at 8:02 AM, Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Leo,
>
> On 3/14/14, 10:58 AM, Leo Donahue wrote:
> > On Fri, Mar 14, 2014 at 6:10 AM, Christopher Schultz <
> > ch...@christopherschultz.net> wrote:
2014-03-14 19:04 GMT+04:00 Christopher Schultz :
> Joseph,
>
> On 3/14/14, 9:49 AM, Joesph Bleau wrote:
>> I should also mention that after some very simple testing I was
>> able to confirm that (of course) Tomcat is notifying my application
>> when the session is invalidated in a valve. I'm still
> Date: Fri, 14 Mar 2014 08:36:08 -0400
> From: ch...@christopherschultz.net
> To: users@tomcat.apache.org
> Subject: Re: HttpServletRequest Tomcat 5.5.29 to 7.0.52
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Seema,
>
> On 3/14/14, 7:53 AM, Seema Patel wrote:
> > I have upgraded
On 2014-03-14 3:59 PM, Christopher Schultz wrote:
Don't worry: I wasn't trying to single you out. There are lots of
people who do it.
Now that you're here, I hope you continue to consider yourself a
member of the community and remain a mailing list contributor. You can
learn a lot from reading o
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Joseph,
On 3/14/14, 9:49 AM, Joesph Bleau wrote:
> I should also mention that after some very simple testing I was
> able to confirm that (of course) Tomcat is notifying my application
> when the session is invalidated in a valve. I'm still fairly n
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Leo,
On 3/14/14, 10:58 AM, Leo Donahue wrote:
> On Fri, Mar 14, 2014 at 6:10 AM, Christopher Schultz <
> ch...@christopherschultz.net> wrote:
>
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA256
>>
>> All,
>>
>> I'm finding a lot of questions la
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Léa,
On 3/14/14, 10:33 AM, Léa Massiot wrote:
> I'm sorry I posted the same message on "StackOverflow" and
> "Tomcat-Users". It's not something I usually do.
Don't worry: I wasn't trying to single you out. There are lots of
people who do it.
Now
On Fri, Mar 14, 2014 at 6:10 AM, Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> All,
>
> I'm finding a lot of questions lately posted simultaneously to both
> tomcat-user and to StackOverflow. How does the Tomcat community feel
>
On 14/03/2014 11:57, Konstantin Kolinko wrote:
> 2014-03-14 15:37 GMT+04:00 Zboron Lukas :
>> Hi,
>> I have several custom jspx tags with dynamic attributes that worked well up
>> to Tomcat 7.0.47, but they do not work properly on Tomcat 7.0.52. Same
>> problems occur also when using Spring form ta
Hello Christopher,
I'm sorry I posted the same message on "StackOverflow" and
"Tomcat-Users". It's not something I usually do.
When I post on two different forums, which happens sometimes, I do not
write the same message nor the same title.
For example:
http://www.linuxquestions.org/questions/l
On 2014-03-14 12:45 PM, André Warnier wrote:
Lmhelp1 wrote:
On 2014-03-13 11:57 AM, André Warnier wrote:
Yes, I cannot really think off-hand of any serious problem that this may
cause.
Basically, it all depends on the context.
If this is a one-off thing that you are doing, on your personal webs
On Fri, Mar 14, 2014 at 2:12 AM, wrote:
> Hello,
>
> thanks for your reply. It doesn't make any difference.
>
> I don't understand how the authenticated user receive permissions for one
> of these roles:
>
>
>
>
>
>
>
That is a UserDatabaseRealm: org.
I should also mention that after some very simple testing I was able to
confirm that (of course) Tomcat is notifying my application when the
session is invalidated in a valve. I'm still fairly new to this entire
stack, so forgive my ignorance. :-)
Cheers.
On Fri, Mar 14, 2014 at 9:46 AM, Joesph
It's possible (read: likely) that we're doing something incorrectly, but
we're using Spring and it was already attempting to provide session
fixation within the application by invalidating sessions upon
authentication. However, it appears that tomcat was providing us with the
same session ID for ou
On Fri, Mar 14, 2014 at 01:31:06PM +, Mark Thomas wrote:
> While something that is effectively cross-posting is annoying for
> those us subscribed to this list and who use stack overflow I can
> understand folks wanting to seek help from a range of different places.
I'm reminded of the repairm
I don't think I've ever had to ask a question on SO because there's
nearly always someone else who has already asked my question and it's
easy to search. So my tendency is to let Google fish in SO (and the
rest of the world) for my question, rummage a bit, and then try to
find an ML for the produc
On 14/03/2014 13:10, Christopher Schultz wrote:
> All,
>
> I'm finding a lot of questions lately posted simultaneously to
> both tomcat-user and to StackOverflow. How does the Tomcat
> community feel about that? I'm wondering whether I (as a member of
> said community) should be encouraging SO use
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Makilaj,
On 3/14/14, 8:32 AM, Mikolaj Rydzewski wrote:
> On 14.03.2014 13:25, André Warnier wrote:
>
>> Not a direct answer to your question, but this subject comes up
>> so often that maybe a generic explanation may help.
> [...]
>> So any attempt
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
All,
I'm finding a lot of questions lately posted simultaneously to both
tomcat-user and to StackOverflow. How does the Tomcat community feel
about that? I'm wondering whether I (as a member of said community)
should be encouraging SO users to post
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Joseph,
On 3/14/14, 5:59 AM, Joesph Bleau wrote:
> Right now we're running our application in Tomcat and using
> hazelcast to share information across our multiple instances. In an
> attempt to prevent session fixation I implemented a tomcat valve
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Seema,
On 3/14/14, 7:53 AM, Seema Patel wrote:
> I have upgraded my tomcat (5.5.29 to 7.0.52) and Java (1.5 to 1.7)
> for my struts servlet jsp application. I have also removed all
> JCIFS authentication from the WEB-INF/web.xml file and have tried
On 14.03.2014 13:25, André Warnier wrote:
Not a direct answer to your question, but this subject comes up so
often that maybe a generic explanation may help.
[...]
So any attempt at that point by the webapp (filters, servlet,
whatever) to modify the status or the headers will be met by a refus
Brendan Miller wrote:
I have a filter with doFilter method like this:
public void doFilter(ServletRequest request,
ServletResponse response,
FilterChain chain)
throws IOException, ServletException {
HttpServletRequest req = (H
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Clemens,
On 3/14/14, 3:33 AM, Clemens Wyss DEV wrote:
>> If you are starting a new thread to generate a PDF
> yes we do
>> but blocking the request-processing thread waiting for it to
>> complete
> no we don't
>
>> Okay, so this is your error hand
2014-03-14 12:11 GMT+04:00 Akash Jain :
> I am getting following error when trying to run tomcat in Mac osx 10.7.5 (
> using jdk 1.7 )
>
> Can anybody please guide as to what is wrong ?
>
> r 14, 2014 12:04:59 AM org.apache.catalina.startup.HostConfig
> deployDirectory
> INFO: Deploying web applica
2014-03-14 15:37 GMT+04:00 Zboron Lukas :
> Hi,
> I have several custom jspx tags with dynamic attributes that worked well up
> to Tomcat 7.0.47, but they do not work properly on Tomcat 7.0.52. Same
> problems occur also when using Spring form tags (I suspect that other
> libraries would have same
Hi,
I have upgraded my tomcat (5.5.29 to 7.0.52) and Java (1.5 to 1.7) for my
struts servlet jsp application.
I have also removed all JCIFS authentication from the WEB-INF/web.xml file and
have tried to do BASIC authentication through Tomcat and the AD (it
authenticates me, but not sure if I've
Lmhelp1 wrote:
On 2014-03-13 11:57 AM, André Warnier wrote:
Yes, I cannot really think off-hand of any serious problem that this may
cause.
Basically, it all depends on the context.
If this is a one-off thing that you are doing, on your personal website,
on a server on which there is no really c
Hi,
I have several custom jspx tags with dynamic attributes that worked well
up to Tomcat 7.0.47, but they do not work properly on Tomcat 7.0.52.
Same problems occur also when using Spring form tags (I suspect that
other libraries would have same problem, but I didn't test them).
sample (data
Hi all,
Right now we're running our application in Tomcat and using hazelcast to
share information across our multiple instances. In an attempt to prevent
session fixation I implemented a tomcat valve which invalidates sessions
when a user authenticates (or in this case, just visits the authentica
On 2014-03-13 12:03 PM, André Warnier wrote:
On 2014-03-12 11:49 PM, Neven Cvetkovic [via Tomcat] wrote:
How about setting up umask 002 on tomcat6 user? All newly created files
would be have 775 permission.
Yes, well, how shall I do that?
Personally, I don't think you should. The scary thin
On 2014-03-13 11:57 AM, André Warnier wrote:
Yes, I cannot really think off-hand of any serious problem that this may
cause.
Basically, it all depends on the context.
If this is a one-off thing that you are doing, on your personal website,
on a server on which there is no really critical informat
Hello,
thanks for your reply. It doesn't make any difference.
I don't understand how the authenticated user receive permissions for one of
these roles:
Best Regards,
Bjoern
-Ursprüngliche Nachricht-
Von: Leo Donahue [mailto:donahu...@gma
I am getting following error when trying to run tomcat in Mac osx 10.7.5 (
using jdk 1.7 )
Can anybody please guide as to what is wrong ?
r 14, 2014 12:04:59 AM org.apache.catalina.startup.HostConfig
deployDirectory
INFO: Deploying web application directory
/Users/myuser/Downloads/apache-tomcat-7
> If you are starting a new thread to generate a PDF
yes we do
>but blocking the request-processing thread waiting for it to complete
no we don't
>Okay, so this is your error handler checking the value of
>request.getRemoteAddr() and throwing an error because the IP
>address is not valid for tha
48 matches
Mail list logo
