Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm
Precedence: bulk
Reply-To: "Tomcat Users List" <users@tomcat.apache.org>
Received-SPF: neutral (athena.apache.org: local policy)
Message-ID: <4A95429F.30601@christopherschultz.net>
Date: Wed, 26 Aug 2009 10:11:43 -0400
From: Christopher Schultz <chris@christopherschultz.net>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US;
 rv:1.9.1.1) Gecko/20090715 Thunderbird/3.0b3
MIME-Version: 1.0
To: Tomcat Users List <users@tomcat.apache.org>
Subject: Re: tomcat-users.xml on Tomcat6
References: <b30f17480908242314w757f354es662a2d6e25a3ad28@mail.gmail.com>
	 <4A939297.9000700@ice-sa.com>
 <b30f17480908251955y1336a9ffi5e742823e0152bc@mail.gmail.com>
In-Reply-To: <b30f17480908251955y1336a9ffi5e742823e0152bc@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Zaki,

On 8/25/2009 10:55 PM, Zaki Akhmad wrote:
> On Tue, Aug 25, 2009 at 2:28 PM, André Warnier<aw@ice-sa.com> wrote:
>>
>> That does not look like a login error, it looks like a "server error".
>> What does the Tomcat log say ?
> 
> Here's the log:
> [1]/var/log/tomcat6/localhost.2009-08-***.....
> [2]/var/log/tomcat6/catalina.2009-08-****.....

Looks like a broken SecurityManager configuration:

> SEVERE: Servlet.service() for servlet HTMLHostManager threw exception
> java.security.AccessControlException: access denied
> (java.util.PropertyPermission java.runtime.version read)
>         at java.security.AccessControlContext.checkPermission(AccessControlContext.java:342)
>         at java.security.AccessController.checkPermission(AccessController.java:553)
>         at java.lang.SecurityManager.checkPermission(SecurityManager.java:549)
>         at java.lang.SecurityManager.checkPropertyAccess(SecurityManager.java:1302)
>         at java.lang.System.getProperty(System.java:669)
>         at org.apache.catalina.manager.host.HTMLHostManagerServlet.list(HTMLHostManagerServlet.java:367)
>         at org.apache.catalina.manager.host.HTMLHostManagerServlet.doGet(HTMLHostManagerServlet.java:104)
>         at javax.servlet.http.HttpServlet.service(HttpServlet.java:617)
>         at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>         at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
>         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>         at java.lang.reflect.Method.invoke(Method.java:616)
>         at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:269)
>         at java.security.AccessController.doPrivileged(Native Method)
>         at javax.security.auth.Subject.doAsPrivileged(Subject.java:537)
>         at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:301)
>         at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:162)
>         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:283)
>         at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:56)
>         at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:189)
>         at java.security.AccessController.doPrivileged(Native Method)
>         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:185)
>         at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>         at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:525)
>         at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
>         at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>         at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>         at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:293)
>         at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:849)
>         at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
>         at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:454)
>         at java.lang.Thread.run(Thread.java:636)

Try disabling your security manager to see if everything works. If that
fixes your problem, you'll need to review your security manager
configuration and update it appropriately.

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkqVQp8ACgkQ9CaO5/Lv0PAl8ACfbou/5O3NMajznyOvyFkMe37N
D0YAnjoljayhfZaiH2IKEojtq5DBPhdE
=088i
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org