Return-Path: 
 <dev-return-15531-apmail-geronimo-dev-archive=geronimo.apache.org@geronimo.apache.org>
Delivered-To: apmail-geronimo-dev-archive@www.apache.org
Received: (qmail 31449 invoked from network); 10 Aug 2005 19:47:01 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur.apache.org with SMTP; 10 Aug 2005 19:47:01 -0000
Received: (qmail 61083 invoked by uid 500); 10 Aug 2005 19:46:57 -0000
Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org
Received: (qmail 61037 invoked by uid 500); 10 Aug 2005 19:46:57 -0000
Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm
Precedence: bulk
list-help: <mailto:dev-help@geronimo.apache.org>
list-unsubscribe: <mailto:dev-unsubscribe@geronimo.apache.org>
List-Post: <mailto:dev@geronimo.apache.org>
Reply-To: dev@geronimo.apache.org
List-Id: <dev.geronimo.apache.org>
Delivered-To: mailing list dev@geronimo.apache.org
Received: (qmail 61024 invoked by uid 99); 10 Aug 2005 19:46:56 -0000
Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 10 Aug 2005 12:46:56 -0700
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_HELO_PASS,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (asf.osuosl.org: domain of jgenender@savoirtech.com
 designates 209.181.65.237 as permitted sender)
Received: from [209.181.65.237] (HELO sun.savoirtech.com) (209.181.65.237)
    by apache.org (qpsmtpd/0.29) with SMTP; Wed, 10 Aug 2005 12:47:15 -0700
Received: from [206.197.197.10] ([206.197.197.10])
	by sun.savoirtech.com (8.12.11/8.12.11) with ESMTP id j7AJkoAd018149
	for <dev@geronimo.apache.org>; Wed, 10 Aug 2005 13:46:51 -0600
Message-ID: <42FA59AC.70904@savoirtech.com>
Date: Wed, 10 Aug 2005 13:46:52 -0600
From: Jeff Genender <jgenender@savoirtech.com>
User-Agent: Mozilla Thunderbird 1.0.2 (Macintosh/20050317)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: dev@geronimo.apache.org
Subject: Did we jump the gun on the console?
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam-Checker-Version: SpamAssassin 3.0.3 (2005-04-27) on sun.savoirtech.com
X-Virus-Scanned: clamd / ClamAV version 0.74, clamav-milter version 0.74a
	on sun.savoirtech.com
X-Virus-Status: Clean
X-Virus-Checked: Checked by ClamAV on apache.org
X-Old-Spam-Status: No,
 score=-105.5 required=5.6 tests=ALL_TRUSTED,AWL,BAYES_00,
	USER_IN_WHITELIST autolearn=ham version=3.0.3
X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N

When we moved the console out to the main build and had it launch 
automatically, I found some major issues.

It does not work with Tomcat.

Upon initial launch, Tomcat complains about the fact that there are 
servlet mappings in the console's web.xml that don't have any servlets.

Upon further investigation, sure enough, the following servlet mappings 
are invalid in the console-standard web.xml:

DerbyUsers
DerbyGroups
CertManager

This meant that Jetty was not being compliant and testing for this, so I 
opened GERONIMO-872.

Second, we ended up with a security issue where the references realm is 
not matching the application name.  I discussed this in a previous 
thread...and that I believe we need to follow the standard according to 
Sun on how we name our realms according to application name (See 
http://java.sun.com/j2se/1.4.2/docs/guide/security/jaas/tutorials/LoginConfigFile.html).

In the mean time I hacked up the Tomcat that if it sees a 
security-realm-name and it does not have an ancestor named this way, it 
will create a TomcatJAASRealm adapter and name it appropriately.  I have 
not checked it in...yet...I would like to hear from others on this. 
This is a big discussion and we need to make some decisions.  IMHO, this 
is a hack...and we need to look at the root of the problem.

Now to the main issue...

I implore the entire team, that before moving any main web based 
component into G from sandbox, that it is tested on *both* Jetty and 
Tomcat.  This was clearly not tested and it has some nasty bugaboos in 
it, including, but not limited to hard coded Jetty references in the 
console code. See the following for details:

ObjectNameConstants.java
AJP13ConnectorPortlet.java
HttpConnectorPortlet.java
HttpsConnectorPortlet.java
WebManagerPortlet.java

IMHO, this should never have left sandbox until these issues were worked 
out.  As it stands...Tomcat spews when deploying the console.

I blame myself as I had the opportunity to -1 the move, but I did not 
take the time to try it myself.  I would just appreciate it if we could 
all make this part of our process when we play with web based code and 
test both containers.

I can use some help in fixing this up.

Thanks...and sorry for the frustrated tone.

Jeff