tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Bill <bhal...@collaborativefusion.com>
Subject Re: ssl works on netscape but not explorer
Date Mon, 10 Feb 2003 14:18:47 GMT
Are you specifying ciphers in your ssl.conf?  If so one browser might
support the ciphers while the other doesnt.


On Mon, 2003-02-10 at 06:56, kieran wrote:
> Riddle me this kind folks
> 
> How could it be possible that my SSL configuration works on NetScape, but
> not Internet Explorer?
> 
> Internet Explorer and Netscape both work if I use
> 
> https://127.0.0.1:8433/bla
> 
> but only Netscape if I use the machines IP.
> 
> https://134.226.35.151:8443/bla
> 
> I.E returns access denied.
> 
> I suspect it may be something to do with the fact that I'm setting this up
> from behind a firewall/proxy server. I'm not sure. It's apache 2.0.44
> running with tomcat 4.1.18 on win2000. I enclose apach conf and server.xml
> 
> Thanks,
> 
> Kieran.
> 
> 
> **************************
> Heres my Apache conf
> **************************
> #
> # Based upon the NCSA server configuration files originally by Rob McCool.
> #
> # This is the main Apache server configuration file.  It contains the
> # configuration directives that give the server its instructions.
> # See <URL:http://httpd.apache.org/docs-2.0/> for detailed information about
> # the directives.
> #
> # Do NOT simply read the instructions in here without understanding
> # what they do.  They're here only as hints or reminders.  If you are unsure
> # consult the online docs. You have been warned.
> #
> # The configuration directives are grouped into three basic sections:
> #  1. Directives that control the operation of the Apache server process as
> a
> #     whole (the 'global environment').
> #  2. Directives that define the parameters of the 'main' or 'default'
> server,
> #     which responds to requests that aren't handled by a virtual host.
> #     These directives also provide default values for the settings
> #     of all virtual hosts.
> #  3. Settings for virtual hosts, which allow Web requests to be sent to
> #     different IP addresses or hostnames and have them handled by the
> #     same Apache server process.
> #
> # Configuration and logfile names: If the filenames you specify for many
> # of the server's control files begin with "/" (or "drive:/" for Win32), the
> # server will use that explicit path.  If the filenames do *not* begin
> # with "/", the value of ServerRoot is prepended -- so "logs/foo.log"
> # with ServerRoot set to "C:/Program Files/Apache Group/Apache2" will be
> interpreted by the
> # server as "C:/Program Files/Apache Group/Apache2/logs/foo.log".
> #
> # NOTE: Where filenames are specified, you must use forward slashes
> # instead of backslashes (e.g., "c:/apache" instead of "c:\apache").
> # If a drive letter is omitted, the drive on which Apache.exe is located
> # will be used by default.  It is recommended that you always supply
> # an explicit drive letter in absolute paths, however, to avoid
> # confusion.
> #
> 
> ### Section 1: Global Environment
> #
> # The directives in this section affect the overall operation of Apache,
> # such as the number of concurrent requests it can handle or where it
> # can find its configuration files.
> #
> 
> #
> # ServerRoot: The top of the directory tree under which the server's
> # configuration, error, and log files are kept.
> #
> # NOTE!  If you intend to place this on an NFS (or otherwise network)
> # mounted filesystem then please read the LockFile documentation (available
> # at <URL:http://httpd.apache.org/docs-2.0/mod/mpm_common.html#lockfile>);
> # you will save yourself a lot of trouble.
> #
> # Do NOT add a slash at the end of the directory path.
> #
> ServerRoot "C:/Program Files/Apache Group/Apache2"
> 
> #
> # ScoreBoardFile: File used to store internal server process information.
> # If unspecified (the default), the scoreboard will be stored in an
> # anonymous shared memory segment, and will be unavailable to third-party
> # applications.
> # If specified, ensure that no two invocations of Apache share the same
> # scoreboard file. The scoreboard file MUST BE STORED ON A LOCAL DISK.
> #
> #ScoreBoardFile logs/apache_runtime_status
> 
> #
> # PidFile: The file in which the server should record its process
> # identification number when it starts.
> #
> PidFile logs/httpd.pid
> 
> #
> # Timeout: The number of seconds before receives and sends time out.
> #
> Timeout 300
> 
> #
> # KeepAlive: Whether or not to allow persistent connections (more than
> # one request per connection). Set to "Off" to deactivate.
> #
> KeepAlive On
> 
> #
> # MaxKeepAliveRequests: The maximum number of requests to allow
> # during a persistent connection. Set to 0 to allow an unlimited amount.
> # We recommend you leave this number high, for maximum performance.
> #
> MaxKeepAliveRequests 100
> 
> #
> # KeepAliveTimeout: Number of seconds to wait for the next request from the
> # same client on the same connection.
> #
> KeepAliveTimeout 15
> 
> ##
> ## Server-Pool Size Regulation (MPM specific)
> ##
> 
> # WinNT MPM
> # ThreadsPerChild: constant number of worker threads in the server process
> # MaxRequestsPerChild: maximum  number of requests a server process serves
> <IfModule mpm_winnt.c>
> ThreadsPerChild 250
> MaxRequestsPerChild  0
> </IfModule>
> 
> #
> # Listen: Allows you to bind Apache to specific IP addresses and/or
> # ports, instead of the default. See also the <VirtualHost>
> # directive.
> #
> # Change this to Listen on specific IP addresses as shown below to
> # prevent Apache from glomming onto all bound IP addresses (0.0.0.0)
> #
> #Listen 12.34.56.78:80
> Listen 134.226.35.151:80
> #Listen 134.226.35.151:8443
> #Listen 134.226.35.151
> #Listen 80
> #Listen 8443
> 
> #
> # Dynamic Shared Object (DSO) Support
> #
> # To be able to use the functionality of a module which was built as a DSO
> you
> # have to place corresponding `LoadModule' lines at this location so the
> # directives contained in it are actually available _before_ they are used.
> # Statically compiled modules (those listed by `httpd -l') do not need
> # to be loaded here.
> #
> # Example:
> # LoadModule foo_module modules/mod_foo.so
> #
> LoadModule access_module modules/mod_access.so
> LoadModule actions_module modules/mod_actions.so
> LoadModule alias_module modules/mod_alias.so
> LoadModule asis_module modules/mod_asis.so
> LoadModule auth_module modules/mod_auth.so
> #LoadModule auth_anon_module modules/mod_auth_anon.so
> #LoadModule auth_dbm_module modules/mod_auth_dbm.so
> #LoadModule auth_digest_module modules/mod_auth_digest.so
> LoadModule autoindex_module modules/mod_autoindex.so
> #LoadModule cern_meta_module modules/mod_cern_meta.so
> LoadModule cgi_module modules/mod_cgi.so
> #LoadModule dav_module modules/mod_dav.so
> #LoadModule dav_fs_module modules/mod_dav_fs.so
> LoadModule dir_module modules/mod_dir.so
> LoadModule env_module modules/mod_env.so
> #LoadModule expires_module modules/mod_expires.so
> #LoadModule file_cache_module modules/mod_file_cache.so
> #LoadModule headers_module modules/mod_headers.so
> LoadModule imap_module modules/mod_imap.so
> LoadModule include_module modules/mod_include.so
> #LoadModule info_module modules/mod_info.so
> LoadModule isapi_module modules/mod_isapi.so
> LoadModule log_config_module modules/mod_log_config.so
> LoadModule mime_module modules/mod_mime.so
> #LoadModule mime_magic_module modules/mod_mime_magic.so
> #LoadModule proxy_module modules/mod_proxy.so
> #LoadModule proxy_connect_module modules/mod_proxy_connect.so
> #LoadModule proxy_http_module modules/mod_proxy_http.so
> #LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
> LoadModule negotiation_module modules/mod_negotiation.so
> #LoadModule rewrite_module modules/mod_rewrite.so
> LoadModule setenvif_module modules/mod_setenvif.so
> #LoadModule speling_module modules/mod_speling.so
> #LoadModule status_module modules/mod_status.so
> #LoadModule unique_id_module modules/mod_unique_id.so
> LoadModule userdir_module modules/mod_userdir.so
> #LoadModule usertrack_module modules/mod_usertrack.so
> #LoadModule vhost_alias_module modules/mod_vhost_alias.so
> #LoadModule ssl_module modules/mod_ssl.so
> LoadModule jk_module modules/mod_jk-2.0.43.dll
> LoadModule php4_module c:/php/sapi/php4apache2.dll
> AddType application/x-httpd-php .php
> #
> # ExtendedStatus controls whether Apache will generate "full" status
> # information (ExtendedStatus On) or just basic information (ExtendedStatus
> # Off) when the "server-status" handler is called. The default is Off.
> #
> #ExtendedStatus On
> 
> ### Section 2: 'Main' server configuration
> #
> # The directives in this section set up the values used by the 'main'
> # server, which responds to any requests that aren't handled by a
> # <VirtualHost> definition.  These values also provide defaults for
> # any <VirtualHost> containers you may define later in the file.
> #
> # All of these directives may appear inside <VirtualHost> containers,
> # in which case these default settings will be overridden for the
> # virtual host being defined.
> #
> 
> #
> # ServerAdmin: Your address, where problems with the server should be
> # e-mailed.  This address appears on some server-generated pages, such
> # as error documents.  e.g. admin@your-domain.com
> #
> ServerAdmin kieran.mcnally@cs.tcd.ie
> 
> #
> # ServerName gives the name and port that the server uses to identify
> itself.
> # This can often be determined automatically, but we recommend you specify
> # it explicitly to prevent problems during startup.
> #
> # If this is not set to valid DNS name for your host, server-generated
> # redirections will not work.  See also the UseCanonicalName directive.
> #
> # If your host doesn't have a registered DNS name, enter its IP address
> here.
> # You will have to access it by its address anyway, and this will make
> # redirections work in a sensible way.
> #
> ServerName 134.226.35.151
> 
> #
> # UseCanonicalName: Determines how Apache constructs self-referencing
> # URLs and the SERVER_NAME and SERVER_PORT variables.
> # When set "Off", Apache will use the Hostname and Port supplied
> # by the client.  When set "On", Apache will use the value of the
> # ServerName directive.
> #
> UseCanonicalName Off
> 
> #
> # DocumentRoot: The directory out of which you will serve your
> # documents. By default, all requests are taken from this directory, but
> # symbolic links and aliases may be used to point to other locations.
> #
> DocumentRoot "C:/Program Files/Apache Group/Apache2/htdocs"
> 
> #
> # Each directory to which Apache has access can be configured with respect
> # to which services and features are allowed and/or disabled in that
> # directory (and its subdirectories).
> #
> # First, we configure the "default" to be a very restrictive set of
> # features.
> #
> <Directory />
>     Options FollowSymLinks
>     AllowOverride None
> </Directory>
> 
> #
> # Note that from this point forward you must specifically allow
> # particular features to be enabled - so if something's not working as
> # you might expect, make sure that you have specifically enabled it
> # below.
> #
> 
> #
> # This should be changed to whatever you set DocumentRoot to.
> #
> <Directory "C:/Program Files/Apache Group/Apache2/htdocs">
> 
> #
> # Possible values for the Options directive are "None", "All",
> # or any combination of:
> #   Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
> #
> # Note that "MultiViews" must be named *explicitly* --- "Options All"
> # doesn't give it to you.
> #
> # The Options directive is both complicated and important.  Please see
> # http://httpd.apache.org/docs-2.0/mod/core.html#options
> # for more information.
> #
>     Options Indexes FollowSymLinks
> 
> #
> # AllowOverride controls what directives may be placed in .htaccess files.
> # It can be "All", "None", or any combination of the keywords:
> #   Options FileInfo AuthConfig Limit
> #
>     AllowOverride None
> 
> #
> # Controls who can get stuff from this server.
> #
>     Order allow,deny
>     Allow from all
> 
> </Directory>
> 
> #
> # UserDir: The name of the directory that is appended onto a user's home
> # directory if a ~user request is received.  Be especially careful to use
> # proper, forward slashes here.  On Windows NT, "Personal/My Website"
> # is a more appropriate choice.
> #
> UserDir "My Documents/My Website"
> 
> #
> # Control access to UserDir directories.  The following is an example
> # for a site where these directories are restricted to read-only.
> #
> # You must correct the path for the root to match your system's configured
> # user directory location, e.g. "C:/WinNT/profiles/*/My Documents/My
> Website"
> # or whichever, as appropriate.
> #
> #<Directory "C:/Documents and Settings/*/My Documents/My Website">
> #    AllowOverride FileInfo AuthConfig Limit
> #    Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
> #    <Limit GET POST OPTIONS PROPFIND>
> #        Order allow,deny
> #        Allow from all
> #    </Limit>
> #    <LimitExcept GET POST OPTIONS PROPFIND>
> #        Order deny,allow
> #        Deny from all
> #    </LimitExcept>
> #</Directory>
> 
> #
> # DirectoryIndex: sets the file that Apache will serve if a directory
> # is requested.
> #
> # The index.html.var file (a type-map) is used to deliver content-
> # negotiated documents.  The MultiViews Option can be used for the
> # same purpose, but it is much slower.
> #
> DirectoryIndex index.html index.html.var
> 
> #
> # AccessFileName: The name of the file to look for in each directory
> # for additional configuration directives.  See also the AllowOverride
> # directive.
> #
> AccessFileName .htaccess
> 
> #
> # The following lines prevent .htaccess and .htpasswd files from being
> # viewed by Web clients.
> #
> <Files ~ "^\.ht">
>     Order allow,deny
>     Deny from all
> </Files>
> 
> #
> # TypesConfig describes where the mime.types file (or equivalent) is
> # to be found.
> #
> TypesConfig conf/mime.types
> 
> #
> # DefaultType is the default MIME type the server will use for a document
> # if it cannot otherwise determine one, such as from filename extensions.
> # If your server contains mostly text or HTML documents, "text/plain" is
> # a good value.  If most of your content is binary, such as applications
> # or images, you may want to use "application/octet-stream" instead to
> # keep browsers from trying to display binary files as though they are
> # text.
> #
> DefaultType text/plain
> 
> #
> # The mod_mime_magic module allows the server to use various hints from the
> # contents of the file itself to determine its type.  The MIMEMagicFile
> # directive tells the module where the hint definitions are located.
> #
> <IfModule mod_mime_magic.c>
>     MIMEMagicFile conf/magic
> </IfModule>
> 
> #
> # HostnameLookups: Log the names of clients or just their IP addresses
> # e.g., www.apache.org (on) or 204.62.129.132 (off).
> # The default is off because it'd be overall better for the net if people
> # had to knowingly turn this feature on, since enabling it means that
> # each client request will result in AT LEAST one lookup request to the
> # nameserver.
> #
> HostnameLookups Off
> 
> #
> # EnableMMAP: Control whether memory-mapping is used to deliver
> # files (assuming that the underlying OS supports it).
> # The default is on; turn this off if you serve from NFS-mounted
> # filesystems.  On some systems, turning it off (regardless of
> # filesystem) can improve performance; for details, please see
> # http://httpd.apache.org/docs-2.0/mod/core.html#enablemmap
> #
> #EnableMMAP off
> 
> #
> # EnableSendfile: Control whether the sendfile kernel support is
> # used  to deliver files (assuming that the OS supports it).
> # The default is on; turn this off if you serve from NFS-mounted
> # filesystems.  Please see
> # http://httpd.apache.org/docs-2.0/mod/core.html#enablesendfile
> #
> #EnableSendfile off
> 
> #
> # ErrorLog: The location of the error log file.
> # If you do not specify an ErrorLog directive within a <VirtualHost>
> # container, error messages relating to that virtual host will be
> # logged here.  If you *do* define an error logfile for a <VirtualHost>
> # container, that host's errors will be logged there and not here.
> #
> ErrorLog logs/error.log
> 
> #
> # LogLevel: Control the number of messages logged to the error.log.
> # Possible values include: debug, info, notice, warn, error, crit,
> # alert, emerg.
> #
> LogLevel warn
> 
> #
> # The following directives define some format nicknames for use with
> # a CustomLog directive (see below).
> #
> LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\""
> combined
> LogFormat "%h %l %u %t \"%r\" %>s %b" common
> LogFormat "%{Referer}i -> %U" referer
> LogFormat "%{User-agent}i" agent
> 
> # You need to enable mod_logio.c to use %I and %O
> #LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I
> %O" combinedio
> 
> #
> # The location and format of the access logfile (Common Logfile Format).
> # If you do not define any access logfiles within a <VirtualHost>
> # container, they will be logged here.  Contrariwise, if you *do*
> # define per-<VirtualHost> access logfiles, transactions will be
> # logged therein and *not* in this file.
> #
> CustomLog logs/access.log common
> 
> #
> # If you would like to have agent and referer logfiles, uncomment the
> # following directives.
> #
> #CustomLog logs/referer.log referer
> #CustomLog logs/agent.log agent
> 
> #
> # If you prefer a single logfile with access, agent, and referer information
> # (Combined Logfile Format) you can use the following directive.
> #
> #CustomLog logs/access.log combined
> 
> #
> # ServerTokens
> # This directive configures what you return as the Server HTTP response
> # Header. The default is 'Full' which sends information about the OS-Type
> # and compiled in modules.
> # Set to one of:  Full | OS | Minor | Minimal | Major | Prod
> # where Full conveys the most information, and Prod the least.
> #
> ServerTokens Full
> 
> #
> # Optionally add a line containing the server version and virtual host
> # name to server-generated pages (internal error documents, FTP directory
> # listings, mod_status and mod_info output etc., but not CGI generated
> # documents or custom error documents).
> # Set to "EMail" to also include a mailto: link to the ServerAdmin.
> # Set to one of:  On | Off | EMail
> #
> ServerSignature On
> 
> #
> # Aliases: Add here as many aliases as you need (with no limit). The format
> is
> # Alias fakename realname
> #
> # Note that if you include a trailing / on fakename then the server will
> # require it to be present in the URL.  So "/icons" isn't aliased in this
> # example, only "/icons/".  If the fakename is slash-terminated, then the
> # realname must also be slash terminated, and if the fakename omits the
> # trailing slash, the realname must also omit it.
> #
> # We include the /icons/ alias for FancyIndexed directory listings.  If you
> # do not use FancyIndexing, you may comment this out.
> #
> Alias /icons/ "C:/Program Files/Apache Group/Apache2/icons/"
> 
> <Directory "C:/Program Files/Apache Group/Apache2/icons">
>     Options Indexes MultiViews
>     AllowOverride None
>     Order allow,deny
>     Allow from all
> </Directory>
> 
> #
> # This should be changed to the ServerRoot/manual/.  The alias provides
> # the manual, even if you choose to move your DocumentRoot.  You may comment
> # this out if you do not care for the documentation.
> #
> Alias /manual "C:/Program Files/Apache Group/Apache2/manual"
> 
> <Directory "C:/Program Files/Apache Group/Apache2/manual">
>     Options Indexes FollowSymLinks MultiViews IncludesNoExec
>     AddOutputFilter Includes html
>     AllowOverride None
>     Order allow,deny
>     Allow from all
> </Directory>
> 
> #
> # ScriptAlias: This controls which directories contain server scripts.
> # ScriptAliases are essentially the same as Aliases, except that
> # documents in the realname directory are treated as applications and
> # run by the server when requested rather than as documents sent to the
> client.
> # The same rules about trailing "/" apply to ScriptAlias directives as to
> # Alias.
> #
> ScriptAlias /cgi-bin/ "C:/Program Files/Apache Group/Apache2/cgi-bin/"
> 
> #
> # "C:/Program Files/Apache Group/Apache2/cgi-bin" should be changed to
> whatever your ScriptAliased
> # CGI directory exists, if you have that configured.
> #
> <Directory "C:/Program Files/Apache Group/Apache2/cgi-bin">
>     AllowOverride None
>     Options None
>     Order allow,deny
>     Allow from all
> </Directory>
> 
> #
> # Redirect allows you to tell clients about documents which used to exist in
> # your server's namespace, but do not anymore. This allows you to tell the
> # clients where to look for the relocated document.
> # Example:
> # Redirect permanent /foo http://www.example.com/bar
> 
> #
> # Directives controlling the display of server-generated directory listings.
> #
> 
> #
> # IndexOptions: Controls the appearance of server-generated directory
> # listings.
> #
> IndexOptions FancyIndexing VersionSort
> 
> #
> # AddIcon* directives tell the server which icon to show for different
> # files or filename extensions.  These are only displayed for
> # FancyIndexed directories.
> #
> AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip
> 
> AddIconByType (TXT,/icons/text.gif) text/*
> AddIconByType (IMG,/icons/image2.gif) image/*
> AddIconByType (SND,/icons/sound2.gif) audio/*
> AddIconByType (VID,/icons/movie.gif) video/*
> 
> AddIcon /icons/binary.gif .bin .exe
> AddIcon /icons/binhex.gif .hqx
> AddIcon /icons/tar.gif .tar
> AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
> AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
> AddIcon /icons/a.gif .ps .ai .eps
> AddIcon /icons/layout.gif .html .shtml .htm .pdf
> AddIcon /icons/text.gif .txt
> AddIcon /icons/c.gif .c
> AddIcon /icons/p.gif .pl .py
> AddIcon /icons/f.gif .for
> AddIcon /icons/dvi.gif .dvi
> AddIcon /icons/uuencoded.gif .uu
> AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
> AddIcon /icons/tex.gif .tex
> AddIcon /icons/bomb.gif core
> 
> AddIcon /icons/back.gif ..
> AddIcon /icons/hand.right.gif README
> AddIcon /icons/folder.gif ^^DIRECTORY^^
> AddIcon /icons/blank.gif ^^BLANKICON^^
> 
> #
> # DefaultIcon is which icon to show for files which do not have an icon
> # explicitly set.
> #
> DefaultIcon /icons/unknown.gif
> 
> #
> # AddDescription allows you to place a short description after a file in
> # server-generated indexes.  These are only displayed for FancyIndexed
> # directories.
> # Format: AddDescription "description" filename
> #
> #AddDescription "GZIP compressed document" .gz
> #AddDescription "tar archive" .tar
> #AddDescription "GZIP compressed tar archive" .tgz
> 
> #
> # ReadmeName is the name of the README file the server will look for by
> # default, and append to directory listings.
> #
> # HeaderName is the name of a file which should be prepended to
> # directory indexes.
> ReadmeName README.html
> HeaderName HEADER.html
> 
> #
> # IndexIgnore is a set of filenames which directory indexing should ignore
> # and not include in the listing.  Shell-style wildcarding is permitted.
> #
> IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t
> 
> #
> # AddEncoding allows you to have certain browsers (Mosaic/X 2.1+) uncompress
> # information on the fly. Note: Not all browsers support this.
> # Despite the name similarity, the following Add* directives have nothing
> # to do with the FancyIndexing customization directives above.
> #
> AddEncoding x-compress Z
> AddEncoding x-gzip gz tgz
> 
> #
> # DefaultLanguage and AddLanguage allows you to specify the language of
> # a document. You can then use content negotiation to give a browser a
> # file in a language the user can understand.
> #
> # Specify a default language. This means that all data
> # going out without a specific language tag (see below) will
> # be marked with this one. You probably do NOT want to set
> # this unless you are sure it is correct for all cases.
> #
> # * It is generally better to not mark a page as
> # * being a certain language than marking it with the wrong
> # * language!
> #
> # DefaultLanguage nl
> #
> # Note 1: The suffix does not have to be the same as the language
> # keyword --- those with documents in Polish (whose net-standard
> # language code is pl) may wish to use "AddLanguage pl .po" to
> # avoid the ambiguity with the common suffix for perl scripts.
> #
> # Note 2: The example entries below illustrate that in some cases
> # the two character 'Language' abbreviation is not identical to
> # the two character 'Country' code for its country,
> # E.g. 'Danmark/dk' versus 'Danish/da'.
> #
> # Note 3: In the case of 'ltz' we violate the RFC by using a three char
> # specifier. There is 'work in progress' to fix this and get
> # the reference data for rfc1766 cleaned up.
> #
> # Danish (da) - Dutch (nl) - English (en) - Estonian (et)
> # French (fr) - German (de) - Greek-Modern (el)
> # Italian (it) - Norwegian (no) - Norwegian Nynorsk (nn) - Korean (ko)
> # Portugese (pt) - Luxembourgeois* (ltz)
> # Spanish (es) - Swedish (sv) - Catalan (ca) - Czech(cz)
> # Polish (pl) - Brazilian Portuguese (pt-br) - Japanese (ja)
> # Russian (ru) - Croatian (hr)
> #
> AddLanguage da .dk
> AddLanguage nl .nl
> AddLanguage en .en
> AddLanguage et .et
> AddLanguage fr .fr
> AddLanguage de .de
> AddLanguage he .he
> AddLanguage el .el
> AddLanguage it .it
> AddLanguage ja .ja
> AddLanguage pl .po
> AddLanguage ko .ko
> AddLanguage pt .pt
> AddLanguage nn .nn
> AddLanguage no .no
> AddLanguage pt-br .pt-br
> AddLanguage ltz .ltz
> AddLanguage ca .ca
> AddLanguage es .es
> AddLanguage sv .se
> AddLanguage cz .cz
> AddLanguage ru .ru
> AddLanguage tw .tw
> AddLanguage zh-tw .tw
> AddLanguage hr .hr
> 
> #
> # LanguagePriority allows you to give precedence to some languages
> # in case of a tie during content negotiation.
> #
> # Just list the languages in decreasing order of preference. We have
> # more or less alphabetized them here. You probably want to change this.
> #
> LanguagePriority en da nl et fr de el it ja ko no pl pt pt-br ltz ca es sv
> tw
> 
> #
> # ForceLanguagePriority allows you to serve a result page rather than
> # MULTIPLE CHOICES (Prefer) [in case of a tie] or NOT ACCEPTABLE (Fallback)
> # [in case no accepted languages matched the available variants]
> #
> ForceLanguagePriority Prefer Fallback
> 
> #
> # Specify a default charset for all pages sent out. This is
> # always a good idea and opens the door for future internationalisation
> # of your web site, should you ever want it. Specifying it as
> # a default does little harm; as the standard dictates that a page
> # is in iso-8859-1 (latin1) unless specified otherwise i.e. you
> # are merely stating the obvious. There are also some security
> # reasons in browsers, related to javascript and URL parsing
> # which encourage you to always set a default char set.
> #
> AddDefaultCharset ISO-8859-1
> 
> #
> # Commonly used filename extensions to character sets. You probably
> # want to avoid clashes with the language extensions, unless you
> # are good at carefully testing your setup after each change.
> # See ftp://ftp.isi.edu/in-notes/iana/assignments/character-sets for
> # the official list of charset names and their respective RFCs
> #
> AddCharset ISO-8859-1  .iso8859-1 .latin1
> AddCharset ISO-8859-2  .iso8859-2 .latin2 .cen
> AddCharset ISO-8859-3  .iso8859-3 .latin3
> AddCharset ISO-8859-4  .iso8859-4 .latin4
> AddCharset ISO-8859-5  .iso8859-5 .latin5 .cyr .iso-ru
> AddCharset ISO-8859-6  .iso8859-6 .latin6 .arb
> AddCharset ISO-8859-7  .iso8859-7 .latin7 .grk
> AddCharset ISO-8859-8  .iso8859-8 .latin8 .heb
> AddCharset ISO-8859-9  .iso8859-9 .latin9 .trk
> AddCharset ISO-2022-JP .iso2022-jp .jis
> AddCharset ISO-2022-KR .iso2022-kr .kis
> AddCharset ISO-2022-CN .iso2022-cn .cis
> AddCharset Big5        .Big5       .big5
> # For russian, more than one charset is used (depends on client, mostly):
> AddCharset WINDOWS-1251 .cp-1251   .win-1251
> AddCharset CP866       .cp866
> AddCharset KOI8-r      .koi8-r .koi8-ru
> AddCharset KOI8-ru     .koi8-uk .ua
> AddCharset ISO-10646-UCS-2 .ucs2
> AddCharset ISO-10646-UCS-4 .ucs4
> AddCharset UTF-8       .utf8
> 
> # The set below does not map to a specific (iso) standard
> # but works on a fairly wide range of browsers. Note that
> # capitalization actually matters (it should not, but it
> # does for some browsers).
> #
> # See ftp://ftp.isi.edu/in-notes/iana/assignments/character-sets
> # for a list of sorts. But browsers support few.
> #
> AddCharset GB2312      .gb2312 .gb
> AddCharset utf-7       .utf7
> AddCharset utf-8       .utf8
> AddCharset big5        .big5 .b5
> AddCharset EUC-TW      .euc-tw
> AddCharset EUC-JP      .euc-jp
> AddCharset EUC-KR      .euc-kr
> AddCharset shift_jis   .sjis
> 
> #
> # AddType allows you to add to or override the MIME configuration
> # file mime.types for specific file types.
> #
> AddType application/x-tar .tgz
> AddType image/x-icon .ico
> 
> #
> # AddHandler allows you to map certain file extensions to "handlers":
> # actions unrelated to filetype. These can be either built into the server
> # or added with the Action directive (see below)
> #
> # To use CGI scripts outside of ScriptAliased directories:
> # (You will also need to add "ExecCGI" to the "Options" directive.)
> #
> #AddHandler cgi-script .cgi
> 
> #
> # For files that include their own HTTP headers:
> #
> #AddHandler send-as-is asis
> 
> #
> # For server-parsed imagemap files:
> #
> #AddHandler imap-file map
> 
> #
> # For type maps (negotiated resources):
> # (This is enabled by default to allow the Apache "It Worked" page
> #  to be distributed in multiple languages.)
> #
> AddHandler type-map var
> 
> #
> # Filters allow you to process content before it is sent to the client.
> #
> # To parse .shtml files for server-side includes (SSI):
> # (You will also need to add "Includes" to the "Options" directive.)
> #
> #AddType text/html .shtml
> #AddOutputFilter INCLUDES .shtml
> 
> #
> # Action lets you define media types that will execute a script whenever
> # a matching file is called. This eliminates the need for repeated URL
> # pathnames for oft-used CGI file processors.
> # Format: Action media/type /cgi-script/location
> # Format: Action handler-name /cgi-script/location
> #
> 
> #
> # Customizable error responses come in three flavors:
> # 1) plain text 2) local redirects 3) external redirects
> #
> # Some examples:
> #ErrorDocument 500 "The server made a boo boo."
> #ErrorDocument 404 /missing.html
> #ErrorDocument 404 "/cgi-bin/missing_handler.pl"
> #ErrorDocument 402 http://www.example.com/subscription_info.html
> #
> 
> #
> # Putting this all together, we can internationalize error responses.
> #
> # We use Alias to redirect any /error/HTTP_<error>.html.var response to
> # our collection of by-error message multi-language collections.  We use
> # includes to substitute the appropriate text.
> #
> # You can modify the messages' appearance without changing any of the
> # default HTTP_<error>.html.var files by adding the line:
> #
> #   Alias /error/include/ "/your/include/path/"
> #
> # which allows you to create your own set of files by starting with the
> # @exp_errordir@/include/ files and copying them to /your/include/path/,
> # even on a per-VirtualHost basis.  The default include files will display
> # your Apache version number and your ServerAdmin email address regardless
> # of the setting of ServerSignature.
> #
> # The internationalized error documents require mod_alias, mod_include
> # and mod_negotiation.  To activate them, uncomment the following 30 lines.
> 
> #    Alias /error/ "@exp_errordir@/"
> #
> #    <Directory "@exp_errordir@">
> #        AllowOverride None
> #        Options IncludesNoExec
> #        AddOutputFilter Includes html
> #        AddHandler type-map var
> #        Order allow,deny
> #        Allow from all
> #        LanguagePriority en de es fr it nl sv
> #        ForceLanguagePriority Prefer Fallback
> #    </Directory>
> #
> #    ErrorDocument 400 /error/HTTP_BAD_REQUEST.html.var
> #    ErrorDocument 401 /error/HTTP_UNAUTHORIZED.html.var
> #    ErrorDocument 403 /error/HTTP_FORBIDDEN.html.var
> #    ErrorDocument 404 /error/HTTP_NOT_FOUND.html.var
> #    ErrorDocument 405 /error/HTTP_METHOD_NOT_ALLOWED.html.var
> #    ErrorDocument 408 /error/HTTP_REQUEST_TIME_OUT.html.var
> #    ErrorDocument 410 /error/HTTP_GONE.html.var
> #    ErrorDocument 411 /error/HTTP_LENGTH_REQUIRED.html.var
> #    ErrorDocument 412 /error/HTTP_PRECONDITION_FAILED.html.var
> #    ErrorDocument 413 /error/HTTP_REQUEST_ENTITY_TOO_LARGE.html.var
> #    ErrorDocument 414 /error/HTTP_REQUEST_URI_TOO_LARGE.html.var
> #    ErrorDocument 415 /error/HTTP_SERVICE_UNAVAILABLE.html.var
> #    ErrorDocument 500 /error/HTTP_INTERNAL_SERVER_ERROR.html.var
> #    ErrorDocument 501 /error/HTTP_NOT_IMPLEMENTED.html.var
> #    ErrorDocument 502 /error/HTTP_BAD_GATEWAY.html.var
> #    ErrorDocument 503 /error/HTTP_SERVICE_UNAVAILABLE.html.var
> #    ErrorDocument 506 /error/HTTP_VARIANT_ALSO_VARIES.html.var
> 
> 
> 
> #
> # The following directives modify normal HTTP response behavior to
> # handle known problems with browser implementations.
> #
> BrowserMatch "Mozilla/2" nokeepalive
> BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
> BrowserMatch "RealPlayer 4\.0" force-response-1.0
> BrowserMatch "Java/1\.0" force-response-1.0
> BrowserMatch "JDK/1\.0" force-response-1.0
> 
> #
> # The following directive disables redirects on non-GET requests for
> # a directory that does not include the trailing slash.  This fixes a
> # problem with Microsoft WebFolders which does not appropriately handle
> # redirects for folders with DAV methods.
> # Same deal with Apple's DAV filesystem and Gnome VFS support for DAV.
> #
> BrowserMatch "Microsoft Data Access Internet Publishing Provider"
> redirect-carefully
> BrowserMatch "^WebDrive" redirect-carefully
> BrowserMatch "^WebDAVFS/1.[012]" redirect-carefully
> BrowserMatch "^gnome-vfs" redirect-carefully
> 
> #
> # Allow server status reports generated by mod_status,
> # with the URL of http://servername/server-status
> # Change the ".134.226.35.151" to match your domain to enable.
> #
> #<Location /server-status>
> #    SetHandler server-status
> #    Order deny,allow
> #    Deny from all
> #    Allow from .134.226.35.151
> #</Location>
> 
> #
> # Allow remote server configuration reports, with the URL of
> #  http://servername/server-info (requires that mod_info.c be loaded).
> # Change the ".134.226.35.151" to match your domain to enable.
> #
> #<Location /server-info>
> #    SetHandler server-info
> #    Order deny,allow
> #    Deny from all
> #    Allow from .134.226.35.151
> #</Location>
> 
> #
> # Proxy Server directives. Uncomment the following lines to
> # enable the proxy server:
> #
> #<IfModule mod_proxy.c>
> #ProxyRequests On
> #
> #<Proxy *>
> #    Order deny,allow
> #    Deny from all
> #    Allow from .example.com
> #</Proxy>
> 
> #
> # Enable/disable the handling of HTTP/1.1 "Via:" headers.
> # ("Full" adds the server version; "Block" removes all outgoing Via:
> headers)
> # Set to one of: Off | On | Full | Block
> #
> #ProxyVia On
> 
> #
> # To enable the cache as well, edit and uncomment the following lines:
> # (no cacheing without CacheRoot)
> #
> #CacheRoot "C:/Program Files/Apache Group/Apache2/proxy"
> #CacheSize 5
> #CacheGcInterval 4
> #CacheMaxExpire 24
> #CacheLastModifiedFactor 0.1
> #CacheDefaultExpire 1
> #NoCache a-domain.com another-domain.edu joes.garage-sale.com
> 
> #</IfModule>
> # End of proxy directives.
> 
> #
> # Bring in additional module-specific configurations
> #
> <IfModule mod_ssl.c>
>     Include conf/ssl.conf
> </IfModule>
> 
> 
> ### Section 3: Virtual Hosts
> #
> # VirtualHost: If you want to maintain multiple domains/hostnames on your
> # machine you can setup VirtualHost containers for them. Most configurations
> # use only name-based virtual hosts so the server doesn't need to worry
> about
> # IP addresses. This is indicated by the asterisks in the directives below.
> #
> # Please see the documentation at
> # <URL:http://httpd.apache.org/docs-2.0/vhosts/>
> # for further details before you try to setup virtual hosts.
> #
> # You may use the command line option '-S' to verify your virtual host
> # configuration.
> 
> #
> # Use name-based virtual hosting.
> #
> #NameVirtualHost *
> 
> #
> # VirtualHost example:
> # Almost any Apache directive may go into a VirtualHost container.
> # The first VirtualHost section is used for requests without a known
> # server name.
> #
> #<VirtualHost *>
> #    ServerAdmin webmaster@dummy-host.example.com
> #    DocumentRoot /www/docs/dummy-host.example.com
> #    ServerName dummy-host.example.com
> #    ErrorLog logs/dummy-host.example.com-error_log
> #    CustomLog logs/dummy-host.example.com-access_log common
> #</VirtualHost>
> 
> 
> 
> JkWorkersFile "c:\jakarta-tomcat-4.1.18\conf\jk\workers.properties"
> JkLogFile "c:\jakarta-tomcat-4.1.18\logs\mod_jk.log"
> Include "c:\jakarta-tomcat-4.1.18\conf\auto\mod_jk.conf"
> 
> 
> 
> 
> **********************************
> Heres my server.xml
> *********************************
> 
> <!-- Example Server Configuration File -->
> <!-- Note that component elements are nested corresponding to their
>      parent-child relationships with each other -->
> 
> <!-- A "Server" is a singleton element that represents the entire JVM,
>      which may contain one or more "Service" instances.  The Server
>      listens for a shutdown command on the indicated port.
> 
>      Note:  A "Server" is not itself a "Container", so you may not
>      define subcomponents such as "Valves" or "Loggers" at this level.
>  -->
> 
> <Server port="8005" shutdown="SHUTDOWN" debug="0">
> <Listener className="org.apache.ajp.tomcat4.config.ApacheConfig"
> modJk="c:/apache/Apache2/modules/mod_jk-2.0.43.dll"/>
> 
>   <!-- Comment these entries out to disable JMX MBeans support -->
>   <!-- You may also configure custom components (e.g. Valves/Realms) by
>        including your own mbean-descriptor file(s), and setting the
>        "descriptors" attribute to point to a ';' seperated list of paths
>        (in the ClassLoader sense) of files to add to the default list.
>        e.g. descriptors="/com/myfirm/mypackage/mbean-descriptor.xml"
>   -->
>   <Listener className="org.apache.catalina.mbeans.ServerLifecycleListener"
>             debug="0"/>
>   <Listener
> className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener"
>             debug="0"/>
> 
>   <!-- Global JNDI resources -->
>   <GlobalNamingResources>
> 
>     <!-- Test entry for demonstration purposes -->
>     <Environment name="simpleValue" type="java.lang.Integer" value="30"/>
> 
>     <!-- Editable user database that can also be used by
>          UserDatabaseRealm to authenticate users -->
>     <Resource name="UserDatabase" auth="Container"
>               type="org.apache.catalina.UserDatabase"
>        description="User database that can be updated and saved">
>     </Resource>
>     <ResourceParams name="UserDatabase">
>       <parameter>
>         <name>factory</name>
>         <value>org.apache.catalina.users.MemoryUserDatabaseFactory</value>
>       </parameter>
>       <parameter>
>         <name>pathname</name>
>         <value>conf/tomcat-users.xml</value>
>       </parameter>
>     </ResourceParams>
> 
>   </GlobalNamingResources>
> 
>   <!-- A "Service" is a collection of one or more "Connectors" that share
>        a single "Container" (and therefore the web applications visible
>        within that Container).  Normally, that Container is an "Engine",
>        but this is not required.
> 
>        Note:  A "Service" is not itself a "Container", so you may not
>        define subcomponents such as "Valves" or "Loggers" at this level.
>    -->
> 
>   <!-- Define the Tomcat Stand-Alone Service -->
>   <Service name="Tomcat-Standalone">
> 
>     <!-- A "Connector" represents an endpoint by which requests are received
>          and responses are returned.  Each Connector passes requests on to
> the
>          associated "Container" (normally an Engine) for processing.
> 
>          By default, a non-SSL HTTP/1.1 Connector is established on port
> 8080.
>          You can also enable an SSL HTTP/1.1 Connector on port 8443 by
>          following the instructions below and uncommenting the second
> Connector
>          entry.  SSL support requires the following steps (see the SSL
> Config
>          HOWTO in the Tomcat 4.0 documentation bundle for more detailed
>          instructions):
>          * Download and install JSSE 1.0.2 or later, and put the JAR files
>            into "$JAVA_HOME/jre/lib/ext".
>          * Execute:
>              %JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA
> (Windows)
>              $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA
> (Unix)
>            with a password value of "changeit" for both the certificate and
>            the keystore itself.
> 
>          By default, DNS lookups are enabled when a web application calls
>          request.getRemoteHost().  This can have an adverse impact on
>          performance, so you can disable it by setting the
>          "enableLookups" attribute to "false".  When DNS lookups are
> disabled,
>          request.getRemoteHost() will return the String version of the
>          IP address of the remote client.
>     -->
> 
>     <!-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080-->
>     <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
>                port="8080" minProcessors="5" maxProcessors="75"
>                enableLookups="true" redirectPort="8443"
>                acceptCount="100" debug="0" connectionTimeout="20000"
>                useURIValidationHack="false" disableUploadTimeout="true" />
>     <!-- Note : To disable connection timeouts, set connectionTimeout value
>      to -1 -->
> 
>     <!-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -->
> 
>     <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
>                port="8443" minProcessors="5" maxProcessors="75"
>                enableLookups="true"
> 	       acceptCount="100" debug="0" scheme="https" secure="true"
>                useURIValidationHack="false" disableUploadTimeout="true">
>       <Factory
> className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory"
>                clientAuth="false" protocol="TLS" keystoreFile="C:/Documents
> and Settings/Administrator/.keystore"/>
>     </Connector>
> 
> 
>     <!-- Define a Coyote/JK2 AJP 1.3 Connector on port 8009 -->
>     <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
>                port="8009" minProcessors="5" maxProcessors="75"
>                enableLookups="true" redirectPort="8443"
>                acceptCount="10" debug="0" connectionTimeout="0"
>                useURIValidationHack="false"
> 
> protocolHandlerClassName="org.apache.jk.server.JkCoyoteHandler"/>
> 
>     <!-- Define an AJP 1.3 Connector on port 8009 -->
>     <!--
>     <Connector className="org.apache.ajp.tomcat4.Ajp13Connector"
>                port="8009" minProcessors="5" maxProcessors="75"
>                acceptCount="10" debug="0"/>
>     -->
> 
>     <!-- Define a Proxied HTTP/1.1 Connector on port 8082 -->
>     <!-- See proxy documentation for more information about using this. -->
>     <!--
>     <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
>                port="8082" minProcessors="5" maxProcessors="75"
>                enableLookups="true"
>                acceptCount="100" debug="0" connectionTimeout="20000"
>                proxyPort="80" useURIValidationHack="false"
>                disableUploadTimeout="true" />
>     -->
> 
>     <!-- Define a non-SSL legacy HTTP/1.1 Test Connector on port 8083 -->
>     <!--
>     <Connector className="org.apache.catalina.connector.http.HttpConnector"
>                port="8083" minProcessors="5" maxProcessors="75"
>                enableLookups="true" redirectPort="8443"
>                acceptCount="10" debug="0" />
>     -->
> 
>     <!-- Define a non-SSL HTTP/1.0 Test Connector on port 8084 -->
>     <!--
>     <Connector
> className="org.apache.catalina.connector.http10.HttpConnector"
>                port="8084" minProcessors="5" maxProcessors="75"
>                enableLookups="true" redirectPort="8443"
>                acceptCount="10" debug="0" />
>     -->
> 
>     <!-- An Engine represents the entry point (within Catalina) that
> processes
>          every request.  The Engine implementation for Tomcat stand alone
>          analyzes the HTTP headers included with the request, and passes
> them
>          on to the appropriate Host (virtual host). -->
> 
>     <!-- You should set jvmRoute to support load-balancing via JK/JK2 ie :
>     <Engine name="Standalone" defaultHost="localhost" debug="0"
> jmvRoute="jvm1">
>     -->
> 
>     <!-- Define the top level container in our container hierarchy -->
>     <Engine name="Standalone" defaultHost="134.226.35.151" debug="0">
> 
>       <!-- The request dumper valve dumps useful debugging information about
>            the request headers and cookies that were received, and the
> response
>            headers and cookies that were sent, for all requests received by
>            this instance of Tomcat.  If you care only about requests to a
>            particular virtual host, or a particular application, nest this
>            element inside the corresponding <Host> or <Context> entry
> instead.
> 
>            For a similar mechanism that is portable to all Servlet 2.3
>            containers, check out the "RequestDumperFilter" Filter in the
>            example application (the source for this filter may be found in
>            "$CATALINA_HOME/webapps/examples/WEB-INF/classes/filters").
> 
>            Request dumping is disabled by default.  Uncomment the following
>            element to enable it. -->
>       <!--
>       <Valve className="org.apache.catalina.valves.RequestDumperValve"/>
>       -->
> 
>       <!-- Global logger unless overridden at lower levels -->
>       <Logger className="org.apache.catalina.logger.FileLogger"
>               prefix="catalina_log." suffix=".txt"
>               timestamp="true"/>
> 
>       <!-- Because this Realm is here, an instance will be shared
> globally -->
> 
>       <!-- This Realm uses the UserDatabase configured in the global JNDI
>            resources under the key "UserDatabase".  Any edits
>            that are performed against this UserDatabase are immediately
>            available for use by the Realm.  -->
>       <Realm className="org.apache.catalina.realm.UserDatabaseRealm"
>                  debug="0" resourceName="UserDatabase"/>
> 
>       <!-- Comment out the old realm but leave here for now in case we
>            need to go back quickly -->
>       <!--
>       <Realm className="org.apache.catalina.realm.MemoryRealm" />
>       -->
> 
>       <!-- Replace the above Realm with one of the following to get a Realm
>            stored in a database and accessed via JDBC -->
> 
>       <!--
>       <Realm  className="org.apache.catalina.realm.JDBCRealm" debug="99"
>              driverName="org.gjt.mm.mysql.Driver"
>           connectionURL="jdbc:mysql://localhost/authority"
>          connectionName="test" connectionPassword="test"
>               userTable="users" userNameCol="user_name"
> userCredCol="user_pass"
>           userRoleTable="user_roles" roleNameCol="role_name" />
>       -->
> 
>       <!--
>       <Realm  className="org.apache.catalina.realm.JDBCRealm" debug="99"
>              driverName="oracle.jdbc.driver.OracleDriver"
>           connectionURL="jdbc:oracle:thin:@ntserver:1521:ORCL"
>          connectionName="scott" connectionPassword="tiger"
>               userTable="users" userNameCol="user_name"
> userCredCol="user_pass"
>           userRoleTable="user_roles" roleNameCol="role_name" />
>       -->
> 
>       <!--
>       <Realm  className="org.apache.catalina.realm.JDBCRealm" debug="99"
>              driverName="sun.jdbc.odbc.JdbcOdbcDriver"
>           connectionURL="jdbc:odbc:CATALINA"
>               userTable="users" userNameCol="user_name"
> userCredCol="user_pass"
>           userRoleTable="user_roles" roleNameCol="role_name" />
>       -->
> 
>       <!-- Define the default virtual host -->
>       <Host name="134.226.35.151" debug="0" appBase="webapps"
>        unpackWARs="true" autoDeploy="true">
> 
> <Listener className="org.apache.ajp.tomcat4.config.ApacheConfig"
> append="true" forwardAll="false"
> modJk="c:/apache/Apache2/modules/mod_jk-2.0.43.dll" />
> 
>         <!-- Normally, users must authenticate themselves to each web app
>              individually.  Uncomment the following entry if you would like
>              a user to be authenticated the first time they encounter a
>              resource protected by a security constraint, and then have that
>              user identity maintained across *all* web applications
> contained
>              in this virtual host. -->
>         <!--
>         <Valve className="org.apache.catalina.authenticator.SingleSignOn"
>                    debug="0"/>
>         -->
> 
>         <!-- Access log processes all requests for this virtual host.  By
>              default, log files are created in the "logs" directory relative
> to
>              $CATALINA_HOME.  If you wish, you can specify a different
>              directory with the "directory" attribute.  Specify either a
> relative
>              (to $CATALINA_HOME) or absolute path to the desired directory.
>         -->
>         <!--
>         <Valve className="org.apache.catalina.valves.AccessLogValve"
>                  directory="logs"  prefix="localhost_access_log."
> suffix=".txt"
>                  pattern="common" resolveHosts="false"/>
>         -->
> 
>         <!-- Logger shared by all Contexts related to this virtual host.  By
>              default (when using FileLogger), log files are created in the
> "logs"
>              directory relative to $CATALINA_HOME.  If you wish, you can
> specify
>              a different directory with the "directory" attribute.  Specify
> either a
>              relative (to $CATALINA_HOME) or absolute path to the desired
>              directory.-->
>         <Logger className="org.apache.catalina.logger.FileLogger"
>                  directory="logs"  prefix="localhost_log." suffix=".txt"
> 	        timestamp="true"/>
> 
>         <!-- Define properties for each web application.  This is only
> needed
>              if you want to set non-default properties, or have web
> application
>              document roots in places other than the virtual host's appBase
>              directory.  -->
> 
>         <!-- Tomcat Root Context -->
>         <!--
>           <Context path="" docBase="ROOT" debug="0"/>
>         -->
> 
>         <!-- Tomcat Examples Context -->
> 
> 
> 
>         <Context path="/kite" docBase="kite" debug="0"
>                  reloadable="true" crossContext="true">
>           <Logger className="org.apache.catalina.logger.FileLogger"
>                      prefix="localhost_kite_log." suffix=".txt"
>         	  timestamp="true"/>
>           <Ejb   name="ejb/EmplRecord" type="Entity"
>                  home="com.wombat.empl.EmployeeRecordHome"
>                remote="com.wombat.empl.EmployeeRecord"/>
> 
>           <!-- If you wanted the examples app to be able to edit the
>                user database, you would uncomment the following entry.
>                Of course, you would want to enable security on the
>                application as well, so this is not done by default!
>                The database object could be accessed like this:
> 
>                Context initCtx = new InitialContext();
>                Context envCtx = (Context) initCtx.lookup("java:comp/env");
>                UserDatabase database =
>                     (UserDatabase) envCtx.lookup("userDatabase");
>           -->
> <!--
>           <ResourceLink name="userDatabase" global="UserDatabase"
>                         type="org.apache.catalina.UserDatabase"/>
> -->
> 
> 
>           <!-- PersistentManager: Uncomment the section below to test
> Persistent
> 		       Sessions.
> 
>                saveOnRestart: If true, all active sessions will be saved
>                  to the Store when Catalina is shutdown, regardless of
>                  other settings. All Sessions found in the Store will be
>                  loaded on startup. Sessions past their expiration are
>                  ignored in both cases.
>                maxActiveSessions: If 0 or greater, having too many active
>                  sessions will result in some being swapped out. minIdleSwap
>                  limits this. -1 or 0 means unlimited sessions are allowed.
>                  If it is not possible to swap sessions new sessions will
>                  be rejected.
>                  This avoids thrashing when the site is highly active.
>                minIdleSwap: Sessions must be idle for at least this long
>                  (in seconds) before they will be swapped out due to
>                  activity.
>                  0 means sessions will almost always be swapped out after
>                  use - this will be noticeably slow for your users.
>                maxIdleSwap: Sessions will be swapped out if idle for this
>                  long (in seconds). If minIdleSwap is higher, then it will
>                  override this. This isn't exact: it is checked
> periodically.
>                  -1 means sessions won't be swapped out for this reason,
>                  although they may be swapped out for maxActiveSessions.
>                  If set to >= 0, guarantees that all sessions found in the
>                  Store will be loaded on startup.
>                maxIdleBackup: Sessions will be backed up (saved to the
> Store,
>                  but left in active memory) if idle for this long (in
> seconds),
>                  and all sessions found in the Store will be loaded on
> startup.
>                  If set to -1 sessions will not be backed up, 0 means they
>                  should be backed up shortly after being used.
> 
>                To clear sessions from the Store, set maxActiveSessions,
> maxIdleSwap,
>                and minIdleBackup all to -1, saveOnRestart to false, then
> restart
>                Catalina.
>           -->
> 		  <!--
>           <Manager className="org.apache.catalina.session.PersistentManager"
>               debug="0"
>               saveOnRestart="true"
>               maxActiveSessions="-1"
>               minIdleSwap="-1"
>               maxIdleSwap="-1"
>               maxIdleBackup="-1">
>                 <Store className="org.apache.catalina.session.FileStore"/>
>           </Manager>
> 		  -->
>           <Environment name="maxExemptions" type="java.lang.Integer"
>                       value="15"/>
>           <Parameter name="context.param.name" value="context.param.value"
>                      override="false"/>
>           <Resource name="jdbc/EmployeeAppDb" auth="SERVLET"
>                     type="javax.sql.DataSource"/>
>           <ResourceParams name="jdbc/EmployeeAppDb">
>             <parameter><name>username</name><value>sa</value></parameter>
>             <parameter><name>password</name><value></value></parameter>
>             <parameter><name>driverClassName</name>
>               <value>org.hsql.jdbcDriver</value></parameter>
>             <parameter><name>url</name>
>               <value>jdbc:HypersonicSQL:database</value></parameter>
>           </ResourceParams>
>           <Resource name="mail/Session" auth="Container"
>                     type="javax.mail.Session"/>
>           <ResourceParams name="mail/Session">
>             <parameter>
>               <name>mail.smtp.host</name>
>               <value>localhost</value>
>             </parameter>
>           </ResourceParams>
>           <ResourceLink name="linkToGlobalResource"
>                     global="simpleValue"
>                     type="java.lang.Integer"/>
>         </Context>
> 
>       </Host>
> 
>     </Engine>
> 
>   </Service>
> 
>   <!-- The MOD_WEBAPP connector is used to connect Apache 1.3 with Tomcat
> 4.0
>        as its servlet container. Please read the README.txt file coming with
>        the WebApp Module distribution on how to build it.
>        (Or check out the "jakarta-tomcat-connectors/webapp" CVS repository)
> 
>        To configure the Apache side, you must ensure that you have the
>        "ServerName" and "Port" directives defined in "httpd.conf".  Then,
>        lines like these to the bottom of your "httpd.conf" file:
> 
>          LoadModule webapp_module libexec/mod_webapp.so
>          WebAppConnection warpConnection warp localhost:8008
>          WebAppDeploy examples warpConnection /examples/
> 
>        The next time you restart Apache (after restarting Tomcat, if needed)
>        the connection will be established, and all applications you make
>        visible via "WebAppDeploy" directives can be accessed through Apache.
>   -->
> 
>   <!-- Define an Apache-Connector Service -->
> <!--
>   <Service name="Tomcat-Apache">
> 
>     <Connector className="org.apache.catalina.connector.warp.WarpConnector"
>      port="8008" minProcessors="5" maxProcessors="75"
>      enableLookups="true" appBase="webapps"
>      acceptCount="10" debug="0"/>
> 
>     <Engine className="org.apache.catalina.connector.warp.WarpEngine"
>      name="Apache" debug="0">
> 
>       <Logger className="org.apache.catalina.logger.FileLogger"
>               prefix="apache_log." suffix=".txt"
>               timestamp="true"/>
> 
>       <Realm className="org.apache.catalina.realm.MemoryRealm" />
> 
>     </Engine>
> 
>   </Service>
> -->
> 
> </Server>
> 
> 
> 
> 
> 
> 
> Kieran Mc Nally
> Centre for Health Informatics,
> Trinity College Dublin.
> 
> 00353 1 6083466
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
> 



---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message