2019.9.22 tomcat access control and management functions using

Others 2019-09-22 14:09:14 views: null

Note: The test function, do not use the production environment

     Tomcat Tomcat management functions for applications deployed on their own as well as the Tomcat for web application management.

Default is in the disabled state. If you need to turn on this feature, you need to configure user management, namely configure tomcat-user.xml file.

 As we row the upper right corner of the Server Status will pop up this prompt

 

 [Root @ localhost ~] # vim /usr/local/tomcat8/conf/tomcat-users.xml // modify files

<role rolename="tomcat"/>
<role rolename="role1"/>
<user username="tomcat" password="<must-be-changed>" roles="tomcat"/>
<user username="both" password="<must-be-changed>" roles="tomcat,role1"/>
<user username="role1" password="<must-be-changed>" roles="role1"/>
-->
<role rolename="manager-gui" />
<role rolename="admin-gui" />                                                       
<user username="tomcat" password="tomcat" roles="manager-gui,admin-gui" />        //用户是tomcat,密码是tomcat,对manager-gui和admin-gui这两个生效。

</ Tomcat-users> // before this line three of the above

[Root @ localhost ~] # /usr/local/tomcat8/bin/startup.sh // start the service

Test show or error.

[Root @ localhost ~] # vim /usr/local/tomcat8/webapps/manager/META-INF/context.xml // ip it allowed all disabled

->
<= antiResourceLocking the Context "to false" Privileged = "to true">
<-! <Valve className = "org.apache.catalina.valves.RemoteAddrValve" // <-! -> The use of these symbols to allowed ip to disable
the allow = "127 \ \ D + \ \ D + \ \ D + | ::. 1 | 0:... 0: 0: 0: 0: 0: 0:. 1" /> ->
<Manager sessionAttributeValueClassNameFilter = "java \ .lang \ ( ?: Boolean | Integer | Long | Number | String) | org \ .apache \ .catalina \ .filters \ .CsrfPreventionFilter \ $ LruCache. (:? \ $ 1) |? java \. util \. (?: Linked)? HashMap "/>
</ Context>

[Root @ localhost ~] # /usr/local/tomcat8/bin/shutdown.sh // Close

[Root @ localhost ~] # /usr/local/tomcat8/bin/startup.sh // restart

  The next test is to use a password that we created, the user password is tomcat tomcat

 

 And there are sensitive information, usually in the test machine to do the above.

 

Guess you like

Origin www.cnblogs.com/otherwise/p/11566874.html
Recommended
The sixth meeting of openKylin Community Ecology Committee was successfully held
Alibaba Cloud officially releases Tongyi Qianwen 2.5
Python 3.13 releases first Beta: experimental free-threading mode and JIT, improved interactive interpreter
Stack Overflow used my code to train large AI models and banned my account.
Pop!_OS’s COSMIC desktop completes App Store listing
Report: Django is still the first choice for 74% of developers
"Internet Investment and Financing Operation in the First Quarter of 2024" Research Report
15 years ago, he was on the "FFmpeg pillar of shame", and today he still has to thank us - Tencent QQPlayer avenges its shame?
Ranking
Python handwritten digit recognition, the corresponding mathematical formulas and Detailed procedures
Der M-Chip-Mac implementiert mehrere Android-Emulatoren
CentOS 명령줄 모드에서 화면이 항상 켜져 있도록 설정 ---- 예상한 효과를 얻지 못했습니다.
Teach you step by step how to use GDB to debug programs: a comprehensive guide from entry to mastery
python3 pip ipython installation
A lot of python crawler source code sharing -- talk about the little thing about python crawler
Agile Sprint in Alpha Stage (7)
Access URL in Unity
FunctoinDemo form
MS SQL common SQL statements (6): create, modify, delete triggers and other operations sq
Daily
More
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)

Code World

© 2018 codetd.com