HI,
How can we make catalina.out and access logs ( AccessLogsValve) roll log
based on size instead of daily rolling ?
Thanks,
Akash
Hi,
I am trying to resolve session fixation issue with tomcat 7.0.52
We have a Spring MVC application running on it, and the Auth method is
provided by another application which writes cookie, and we use the cookie
value to check whether the user is valid or not.
My application URL patterns are
Hi,
i recently tried to migrate from tomcat 7.0.53 to 8.0.5
I did some StopWatch ( Spring class) tests to compare the performance
impact, and for same configurations, tomcat 8.0.5 showed its slightly slow
compared to 7.0.53
Did anyone else also experienced same ?
Thanks.
Akash
On Mon, Mar 24, 2014 at 1:37 PM, Konstantin Kolinko
wrote:
> 2014-03-25 0:24 GMT+04:00 Akash Jain :
> > Yes, it uses LinkedHashMap internally which is not thread safe.
> >
> http://tomcat.10.x6.nabble.com/CsrfPreventionFilter-LRU-cache-td2113069.html
> >
>
> A 3 y
On Mon, Mar 24, 2014 at 1:33 PM, Daniel Mikusa wrote:
> On Mar 24, 2014, at 4:24 PM, Akash Jain wrote:
>
> > Yes, it uses LinkedHashMap internally which is not thread safe.
> >
> http://tomcat.10.x6.nabble.com/CsrfPreventionFilter-LRU-cache-td2113069.html
>
> First,
Yes, it uses LinkedHashMap internally which is not thread safe.
http://tomcat.10.x6.nabble.com/CsrfPreventionFilter-LRU-cache-td2113069.html
On Mon, Mar 24, 2014 at 1:09 PM, Daniel Mikusa wrote:
> On Mar 24, 2014, at 3:49 PM, Akash Jain wrote:
>
> > How can I prevent CSRF prot
LEASE/reference/htmlsingle/#csrf
>
>
> On Mon, Mar 24, 2014 at 3:49 PM, Akash Jain
> wrote:
>
> > How can I prevent CSRF protection using Tomcat 7 ?
> >
> > I have heard that tomcat 7 provides CSRF filter
> >
> >
> http://tomcat.apache.org/tomcat-7.
How can I prevent CSRF protection using Tomcat 7 ?
I have heard that tomcat 7 provides CSRF filter
http://tomcat.apache.org/tomcat-7.0-doc/api/org/apache/catalina/filters/CsrfPreventionFilter.html
But is it thread safe ?
Or shall we do a custom protection in our spring 3 application ?
I want to redirect user to / with a query parameter to indicate that
session has timed out.
On Fri, Mar 14, 2014 at 4:01 PM, Leo Donahue wrote:
> >On Fri, Mar 14, 2014 at 3:48 PM, Akash Jain >wrote:
> >Leo,
>
> >If any request comes after session timeout interval ..
Leo,
If any request comes after session timeout interval ... why would it go
into error ?
I want to keep the session timeout and error scenarios different.
On Fri, Mar 14, 2014 at 3:34 PM, Leo Donahue wrote:
> On Fri, Mar 14, 2014 at 3:04 PM, Akash Jain
> wrote:
>
> > I
I have following configuration in `web.xml` in tomcat 7. I am wondering if
I can add any configurable parameter here, so that if user tries to do any
operation post 30 minutes, I redirect the user to our home page.
30
mydomain.mycompany.com
I am getting following error when trying to run tomcat in Mac osx 10.7.5 (
using jdk 1.7 )
Can anybody please guide as to what is wrong ?
r 14, 2014 12:04:59 AM org.apache.catalina.startup.HostConfig
deployDirectory
INFO: Deploying web application directory
/Users/myuser/Downloads/apache-tomcat-7
Christopher,
I have changed in server.xml. Below is the server.xml part -
WEB-INF/web.xml
As indicated above, I write JSESSIONID in "mycookie" cookie. Even after
restart, the JSESSIONID is not getting invalidated. Befo
Hi Violeta,
Its latest version ( 7.0.52 )
On Sun, Mar 9, 2014 at 10:28 PM, Violeta Georgieva wrote:
> Hi,
>
> На понеделник, 10 март 2014 г. Akash Jain
> написа:
> > As documented in
> >
>
> https://tomcat.apache.org/tomcat-5.5-doc/config/manager.html#Disable
As documented in
https://tomcat.apache.org/tomcat-5.5-doc/config/manager.html#Disable_Session_Persistence,
I added the following code piece to disable session persistence in
Tomcat
7.
After this change I can see that SESSIONS.ser is not getting created as
expected, but even after
kill -15
On Sun, Mar 2, 2014 at 4:42 AM, Mark Thomas wrote:
> On 01/03/2014 12:11, Akash Jain wrote:
> > On our linux boxes, we have multiple users who run tomcat.
> >
> > Currently we are using process kill commands to kill the respective
> user's
> > to
On our linux boxes, we have multiple users who run tomcat.
Currently we are using process kill commands to kill the respective user's
tomcat , instead of using shutdown.sh
Are there any downsides of using this approach ?
Thanks,
Akash
I have following configuration in my server.xml :
But still when I am checking for JS/CSS files in browser, the size returned
is not less.
Can anybody guide as to what I am missing here.
18 matches
Mail list logo
