You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Jeffrey Barnett <je...@yale.edu> on 2005/01/31 22:41:35 UTC

Use of Admin application creates duplicate "secure" attribute in server.xml

We have recently upgraded from Tomcat 4 to Tomcat 5.0.27.  Now whenever 
we use the Admin application to alter webapp context parameters the new 
server.xml that gets written out contains an extra 'secure="true"' 
attribute at the end of the ssl <Connector>, which causes the server to 
fail with a SEVERE: Parse Fatal Error on restart.  Removing the extra 
attribute manually allows the server to be started, but is operationally 
unacceptable.

Where is the extra attribute coming from (is there a template 
somewhere)?  How can we stop this from happening?  Why is a new 
server.xml created at all? (Nothing is changed but the addition of the 
incorrect attribute)

Here is the exception:
Jan 29, 2005 7:30:54 AM org.apache.commons.digester.Digester fatalError
SEVERE: Parse Fatal Error at line 22 column 221: Attribute "secure" was 
already specified for element "Connector".
org.xml.sax.SAXParseException: Attribute "secure" was already specified 
for element "Connector".

And here is the offending element (second attribute highlighted):
    <Connector acceptCount="100" disableUploadTimeout="true" port="8443" 
scheme="https" secure="true" sslProtocol="TLS" clientauth="false" 
maxSpareThreads="75" maxThreads="150" minSpareThreads="25" 
protocol="TLS" *secure="true"*>
    </Connector>


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org

Re: Admin application creates duplicate "secure" attribute in server.xml

Posted by Jeffrey Barnett <je...@yale.edu>.

More info:
Apparently the manual change didn't fix things after all.  The server 
starts, and some webapps run, but those using ssl get the following 
error message:

Connection refused when attempting to contact <myhost>:8443

The full service definition follows:
<Service name="Catalina">
    <Connector acceptCount="100" connectionTimeout="20000" 
disableUploadTimeout="true" port="8085" redirectPort="8443" 
maxSpareThreads="75" maxThreads="150" minSpareThreads="25">
    </Connector>
    <Connector acceptCount="100" disableUploadTimeout="true" port="8443" 
scheme="https" secure="true" sslProtocol="TLS" clientauth="false" 
maxSpareThreads="75" maxThreads="150" minSpareThreads="25" protocol="TLS">
    </Connector>
    <Connector port="8009" protocol="AJP/1.3" 
protocolHandlerClassName="org.apache.jk.server.JkCoyoteHandler" 
redirectPort="8443">
    </Connector>
    <Engine defaultHost="localhost" name="Catalina">
      <Host appBase="webapps" name="localhost" xmlValidation="true">
        <Logger className="org.apache.catalina.logger.FileLogger" 
prefix="localhost_log." suffix=".txt" timestamp="true"/>
      </Host>
      <Logger className="org.apache.catalina.logger.FileLogger" 
prefix="catalina_log." suffix=".txt" timestamp="true"/>
      <Realm className="org.apache.catalina.realm.UserDatabaseRealm"/>
    </Engine>
  </Service>

Jeffrey Barnett wrote:

> We have recently upgraded from Tomcat 4 to Tomcat 5.0.27.  Now 
> whenever we use the Admin application to alter webapp context 
> parameters the new server.xml that gets written out contains an extra 
> 'secure="true"' attribute at the end of the ssl <Connector>, which 
> causes the server to fail with a SEVERE: Parse Fatal Error on 
> restart.  Removing the extra attribute manually allows the server to 
> be started, but is operationally unacceptable.
>
> Where is the extra attribute coming from (is there a template 
> somewhere)?  How can we stop this from happening?  Why is a new 
> server.xml created at all? (Nothing is changed but the addition of the 
> incorrect attribute)
>
> Here is the exception:
> Jan 29, 2005 7:30:54 AM org.apache.commons.digester.Digester fatalError
> SEVERE: Parse Fatal Error at line 22 column 221: Attribute "secure" 
> was already specified for element "Connector".
> org.xml.sax.SAXParseException: Attribute "secure" was already 
> specified for element "Connector".
>
> And here is the offending element (second attribute highlighted):
>    <Connector acceptCount="100" disableUploadTimeout="true" 
> port="8443" scheme="https" secure="true" sslProtocol="TLS" 
> clientauth="false" maxSpareThreads="75" maxThreads="150" 
> minSpareThreads="25" protocol="TLS" *secure="true"*>
>    </Connector>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org



---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org