5
我一直在這個問題上停留了一段時間。我試圖訪問我使用HttpClient與Tomcat 7實現的ContainerServlet。我不斷收到錯誤消息「Restricted(ContainerServlet)」。我添加了基本身份驗證,並嘗試將其設置爲與內置的主機管理器應用程序一樣沒有運氣。Tomcat 7受限制(ContainerServlet)錯誤
我HostManagerServlet始於:
public class HostManagerServlet
extends HttpServlet implements ContainerServlet {...
我的web.xml中包含:
<servlet>
<servlet-name>virtualHostCreator</servlet-name>
<servlet-class>com.eatmyfish.servlets.HostManagerServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>virtualHostCreator</servlet-name>
<url-pattern>/virtualhostcreator/*</url-pattern>
</servlet-mapping>
<security-constraint>
<web-resource-collection>
<web-resource-name>HostManager commands</web-resource-name>
<url-pattern>/virtualhostcreator/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<!-- NOTE: This role is not present in the default users file -->
<role-name>admin-script</role-name>
</auth-constraint>
</security-constraint>
<security-constraint>
<web-resource-collection>
<web-resource-name>HTMLHostManager commands</web-resource-name>
<url-pattern>/virtualhostcreator/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<!-- NOTE: This role is not present in the default users file -->
<role-name>admin-gui</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
</login-config>
<security-role>
<description>
The role that is required to log in to the Host Manager Application HTML
interface
</description>
<role-name>admin-gui</role-name>
</security-role>
<security-role>
<description>
The role that is required to log in to the Host Manager Application text
interface
</description>
<role-name>admin-script</role-name>
</security-role>
我的tomcat-users.xml中包含:
.
.
.
<role rolename="admin-gui"/>
<role rolename="admin-script"/>
<role rolename="manager-gui"/>
<role rolename="tomcat"/>
<role rolename="role1"/>
<user username="tomcat" password="tomcat" roles="tomcat,admin-gui,admin-script,manager-gui"/>
.
.
.
,使代碼的HttpClient電話(我試過幾種不同的方法):
一種用法 -
String url = environment.getProperty("baseurl");
url += "virtualhostcreator/createVirualHost?name="+group.getGroupName();
HttpClient httpclient = new DefaultHttpClient();
HttpGet httpget = new HttpGet(url);
httpget.addHeader(BasicScheme.authenticate(
new UsernamePasswordCredentials("tomcat", "tomcat"),
"UTF-8", false));
HttpResponse response = httpclient.execute(httpget);
方法二 -
String url = environment.getProperty("baseurl");
url += "virtualhostcreator/createVirualHost?name="+group.getGroupName();
DefaultHttpClient httpclient = new DefaultHttpClient();
httpclient.getCredentialsProvider().setCredentials(
new AuthScope("localhost", 8080),
new UsernamePasswordCredentials("tomcat", "tomcat"));
// Create AuthCache instance
AuthCache authCache = new BasicAuthCache();
// Generate BASIC scheme object and add it to the local
// auth cache
HttpHost targetHost = new HttpHost("localhost", 8080, "http");
BasicScheme basicAuth = new BasicScheme();
authCache.put(targetHost, basicAuth);
// Add AuthCache to the execution context
BasicHttpContext localcontext = new BasicHttpContext();
localcontext.setAttribute("http.auth.auth-cache", authCache);
HttpGet httpget = new HttpGet(url);
HttpResponse response = httpclient.execute(targetHost, httpget,localcontext);
錯誤的堆棧跟蹤:
SEVERE: Allocate exception for servlet virtualHostCreator
java.lang.SecurityException: Restricted (ContainerServlet) class com.eatmyfish.servlets.HostManagerServlet
at org.apache.catalina.core.DefaultInstanceManager.checkAccess(DefaultInstanceManager.java:536)
at org.apache.catalina.core.DefaultInstanceManager.loadClassMaybePrivileged(DefaultInstanceManager.java:509)
at org.apache.catalina.core.DefaultInstanceManager.newInstance(DefaultInstanceManager.java:124)
at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1136)
at org.apache.catalina.core.StandardWrapper.allocate(StandardWrapper.java:857)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:135)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:169)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:581)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:168)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98)
at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407)
at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:987)
at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:579)
at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:307)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1110)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:603)
at java.lang.Thread.run(Thread.java:722)
任何想法我做錯了嗎?我無法越過受限制的(ContainerServlet)錯誤。
迪安 - 當你問這樣的問題,你應該包括報告錯誤的堆棧跟蹤。如果沒有別的,它會讓其他有同樣問題的人更容易找到你的問題/答案。 –
我編輯我的問題,包括您的請求堆棧跟蹤。 –
@Dean,你是怎麼在'getWrapper()'和'setWrapper()寫'方法 – Kainix