type="org.apache.catalina.UserDatabase"
description="Userdatabasethatcanbeupdatedandsaved"
factory="org.apache.catalina.users.MemoryUserDatabaseFactory"
pathname="conf/tomcat-users.xml"/>
--A"Service"isacollectionofoneormore"Connectors"thatshare
asingle"Container"(andthereforethewebapplicationsvisible
withinthatContainer). Normally,thatContainerisan"Engine",
butthisisnotrequired.
Note:
A"Service"isnotitselfa"Container",soyoumaynot
definesubcomponentssuchas"Valves"or"Loggers"atthislevel.
-->
--DefinetheTomcatStand-AloneService-->
--A"Connector"representsanendpointbywhichrequestsarereceived
andresponsesarereturned. EachConnectorpassesrequestsontothe
associated"Container"(normallyanEngine)forprocessing.
Bydefault,anon-SSLHTTP/1.1Connectorisestablishedonport8080.
YoucanalsoenableanSSLHTTP/1.1Connectoronport8443by
followingtheinstructionsbelowanduncommentingthesecondConnector
entry. SSLsupportrequiresthefollowingsteps(seetheSSLConfig
HOWTOintheTomcat5documentationbundleformoredetailed
instructions):
*IfyourJDKversion1.3orprior,downloadandinstallJSSE1.0.2or
later,andputtheJARfilesinto"$JAVA_HOME/jre/lib/ext".
*Execute:
%JAVA_HOME%\bin\keytool-genkey-aliastomcat-keyalgRSA(Windows)
$JAVA_HOME/bin/keytool-genkey-aliastomcat-keyalgRSA (Unix)
withapasswordvalueof"changeit"forboththecertificateand
thekeystoreitself.
Bydefault,DNSlookupsareenabledwhenawebapplicationcalls
request.getRemoteHost(). Thiscanhaveanadverseimpacton
performance,soyoucandisableitbysettingthe
"enableLookups"attributeto"false". WhenDNSlookupsaredisabled,
request.getRemoteHost()willreturntheStringversionofthe
IPaddressoftheremoteclient.
-->
--Defineanon-SSLHTTP/1.1Connectoronport8080-->
port="8080" maxHttpHeaderSize="8192"
maxThreads="150"minSpareThreads="25"maxSpareThreads="75"
enableLookups="false"redirectPort="8443"acceptCount="100"
connectionTimeout="20000"disableUploadTimeout="true"/>
--Note:
Todisableconnectiontimeouts,setconnectionTimeoutvalue
to0-->
--Note:
Tousegzipcompressionyoucouldsetthefollowingproperties:
compression="on"
compressionMinSize="2048"
noCompressionUserAgents="gozilla,traviata"
compressableMimeType="text/html,text/xml"
-->
--DefineaSSLHTTP/1.1Connectoronport8443-->
--
maxThreads="150"minSpareThreads="25"maxSpareThreads="75"
enableLookups="false"disableUploadTimeout="true"
acceptCount="100"scheme="https"secure="true"
clientAuth="false"sslProtocol="TLS"/>
-->
--DefineanAJP1.3Connectoronport8009-->
enableLookups="false"redirectPort="8443"protocol="AJP/1.3"/>
--DefineaProxiedHTTP/1.1Connectoronport8082-->
--Seeproxydocumentationformoreinformationaboutusingthis.-->
--
maxThreads="150"minSpareThreads="25"maxSpareThreads="75"
enableLookups="false"acceptCount="100"connectionTimeout="20000"
proxyPort="80"disableUploadTimeout="true"/>
-->
--AnEnginerepresentstheentrypoint(withinCatalina)thatprocesses
everyrequest. TheEngineimplementationforTomcatstandalone
analyzestheHTTPheadersincludedwiththerequest,andpassesthem
ontotheappropriateHost(virtualhost).-->
--YoushouldsetjvmRoutetosupportload-balancingviaAJPie:
-->
--Definethetoplevelcontainerinourcontainerhierarchy-->
--Therequestdumpervalvedumpsusefuldebugginginformationabout
therequestheadersandcookiesthatwerereceived,andtheresponse
headersandcookiesthatweresent,forallrequestsreceivedby
thisinstanceofTomcat. Ifyoucareonlyaboutrequeststoa
particularvirtualhost,oraparticularapplication,nestthis
elementinsidethecorrespondingorentryinstead.
ForasimilarmechanismthatisportabletoallServlet2.4
containers,checkoutthe"RequestDumperFilter"Filterinthe
exampleapplication(thesourceforthisfiltermaybefoundin
"$CATALINA_HOME/webapps/examples/WEB-INF/classes/filters").
Requestdumpingisdisabledbydefault. Uncommentthefollowing
elementtoenableit.-->
--
-->
--BecausethisRealmishere,aninstancewillbesharedglobally-->
--ThisRealmusestheUserDatabaseconfiguredintheglobalJNDI
resourcesunderthekey"UserDatabase". Anyedits
thatareperformedagainstthisUserDatabaseareimmediately
availableforusebytheRealm. -->
resourceName="UserDatabase"/>
--Commentouttheoldrealmbutleaveherefornowincasewe
needtogobackquickly-->
--
-->
--ReplacetheaboveRealmwithoneofthefollowingtogetaRealm
storedinadatabaseandaccessedviaJDBC-->
--
driverName="org.gjt.mm.mysql.Driver"
connectionURL="jdbc:
mysql:
//localhost/authority"
connectionName="test"connectionPassword="test"
userTable="users"userNameCol="user_name"userCredCol="user_pass"
userRoleTable="user_roles"roleNameCol="role_name"/>
-->
--
driverName="oracle.jdbc.driver.OracleDriver"
connectionURL="jdbc:
oracle:
thin:
@ntserver:
1521:
ORCL"
connectionName="scott"connectionPassword="tiger"
userTable="users"userNameCol="user_name"userCredCol="user_pass"
userRoleTable="user_roles"roleNameCol="role_name"/>
-->
--
driverName="sun.jdbc.odbc.JdbcOdbcDriver"
connectionURL="jdbc:
odbc:
CATALINA"
userTable="users"userNameCol="user_name"userCredCol="user_pass"
userRoleTable="user_roles"roleNameCol="role_name"/>
-->
--Definethedefaultvirtualhost
Note:
XMLSchemavalidationwillnotworkwithXerces2.2.
-->
unpackWARs="true"autoDeploy="true"
xmlValidation="false"xmlNamespaceAware="false">
maxActive
100
maxIdle
30
maxWait
10000
removeAbandoned
true
升级会员 