tomcat.md

Tomcat topics.

Encryption and proxy

• How To Encrypt Tomcat 8 Connections with Apache or Nginx on Ubuntu 16.04
• Tomcat behind Nginx: how to proxy both HTTP and HTTPS, possibly on non-standard ports?

Struts

• Apache Struts Provide high level history of Apache struts

How to add SSL certificate to a JVM

• https://connect2id.com/blog/importing-ca-root-cert-into-jvm-trust-store
• java -Djavax.net.debug=ssl SSLPoke yourADserver 636 This is used to test the SSL connection is all right as expected.

setting up the tomcat authentication

• Using Varnish and mod_security as a web frontend is a solution
• jaspic-providers.xml needs to be updated using oauth file.

The digest authentication needs to update the following files.
digest.sh in the /bin folder can be used to create the values.

• /config/server.xml
• /conf/tomcat-users.xml

Update the server.xml with the following realm

<realm className="org.apache.catalina.realm.LockOutRealm>

Use the digest.sh to create the digest value.

digest.sh -a sha-512 -h org.apache.catalina.realm.MessageDigestCredentialHandler somepassword

And in tomcat-users.xml replace the pass

curl -u admin:somepassword host-manager/text/list lesson: use normal password to login instead for digest password. realm-howto.html -- add LDAP for realms using LDAP.

how to perform this in .net rewrite Tomcat in Go and learn about it.

load balancer

mod_proxy is for the lighter load.
mod_jk - maintain consistent pools.

http://people.apache.org/~mturk/docs/article/ftwai.html

https://linuxhint.com/set-up-load-balancing-for-apache-tomcat/

https://techdocs.broadcom.com/us/en/ca-mainframe-software/devops/ca-endevor-software-change-manager/18-0/installing/how-to-enable-web-services/configure-apache-tomcat-load-balancing.html

tomcat clustering.

https://www.openlogic.com/blog/apache-tomcat-clustering#:~:text=Tomcat%20clustering%20is%20a%20group,referred%20to%20as%20a%20node. https://tomcat.apache.org/tomcat-9.0-doc/cluster-howto.html

tomcat6 try to do different stuff with it.

what is tomcat client deployer? purpose?
do more checking and packaging.

Manager. - deployment
Realm - ACL control list of info.

server side includes

clustering - 
security - 
Connectors - connect to other servers or device?
Monitoring and management - JMX remote support to gen report.
Logging - apache common logging. a redirection to other system or wrapper.
portable runtime - APR - use local OS functionality.
virtual hosting - multiple hosting?
Advanced IO - non blocking. like nginx? e.g. chat?

Architecture
	catalina - servlet container
	coyote - connector, JK protocol for external.
		how about nginx? Yes, and many others.
	Jasper - JSP engine.