1 <?xml version='1.0' encoding='utf-8'?>

     2 <!--

     3   Licensed to the Apache Software Foundation (ASF) under one or more

     4   contributor license agreements.  See the NOTICE file distributed with

     5   this work for additional information regarding copyright ownership.

     6   The ASF licenses this file to You under the Apache License, Version 2.0

     7   (the "License"); you may not use this file except in compliance with

     8   the License.  You may obtain a copy of the License at

     9 

    10       http://www.apache.org/licenses/LICENSE-2.0

    11 

    12   Unless required by applicable law or agreed to in writing, software

    13   distributed under the License is distributed on an "AS IS" BASIS,

    14   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

    15   See the License for the specific language governing permissions and

    16   limitations under the License.

    17 -->

    18 <!-- Note:  A "Server" is not itself a "Container", so you may not

    19      define subcomponents such as "Valves" at this level.

    20      Documentation at /docs/config/server.html

    21  -->

    22 <Server port="8005" shutdown="SHUTDOWN">

    23   <Listener className="org.apache.catalina.startup.VersionLoggerListener" />

    24   <!-- Security listener. Documentation at /docs/config/listeners.html

    25   <Listener className="org.apache.catalina.security.SecurityListener" />

    26   -->

    27   <!--APR library loader. Documentation at /docs/apr.html -->

    28   <Listener className="org.apache.catalina.core.AprLifecycleListener" SSLEngine="on" />

    29   <!-- Prevent memory leaks due to use of particular java/javax APIs-->

    30   <Listener className="org.apache.catalina.core.JreMemoryLeakPreventionListener" />

    31   <Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener" />

    32   <Listener className="org.apache.catalina.core.ThreadLocalLeakPreventionListener" />

    33 

    34   <!-- Global JNDI resources

    35        Documentation at /docs/jndi-resources-howto.html

    36   -->

    37   <GlobalNamingResources>

    38     <!-- Editable user database that can also be used by

    39          UserDatabaseRealm to authenticate users

    40     -->

    41     <Resource name="UserDatabase" auth="Container"

    42               type="org.apache.catalina.UserDatabase"

    43               description="User database that can be updated and saved"

    44               factory="org.apache.catalina.users.MemoryUserDatabaseFactory"

    45               pathname="conf/tomcat-users.xml" />

    46   </GlobalNamingResources>

    47 

    48   <!-- A "Service" is a collection of one or more "Connectors" that share

    49        a single "Container" Note:  A "Service" is not itself a "Container",

    50        so you may not define subcomponents such as "Valves" at this level.

    51        Documentation at /docs/config/service.html

    52    -->

    53   <Service name="Catalina">

    54 

    55     <!--The connectors can use a shared executor, you can define one or more named thread pools-->

    56     <!--

    57     <Executor name="tomcatThreadPool" namePrefix="catalina-exec-"

    58         maxThreads="150" minSpareThreads="4"/>

    59     -->

    60 

    61 

    62     <!-- A "Connector" represents an endpoint by which requests are received

    63          and responses are returned. Documentation at :

    64          Java HTTP Connector: /docs/config/http.html (blocking & non-blocking)

    65          Java AJP  Connector: /docs/config/ajp.html

    66          APR (HTTP/AJP) Connector: /docs/apr.html

    67          Define a non-SSL/TLS HTTP/1.1 Connector on port 8080

    68     -->

    69     <Connector port="8080" protocol="HTTP/1.1"

    70                connectionTimeout="20000"

    71                redirectPort="8443" />

    72     <!-- A "Connector" using the shared thread pool-->

    73     <!--

    74     <Connector executor="tomcatThreadPool"

    75                port="8080" protocol="HTTP/1.1"

    76                connectionTimeout="20000"

    77                redirectPort="8443" />

    78     -->

    79     <!-- Define a SSL/TLS HTTP/1.1 Connector on port 8443

    80          This connector uses the NIO implementation that requires the JSSE

    81          style configuration. When using the APR/native implementation, the

    82          OpenSSL style configuration is required as described in the APR/native

    83          documentation -->

    84     <!--

    85     <Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"

    86                maxThreads="150" SSLEnabled="true" scheme="https" secure="true"

    87                clientAuth="false" sslProtocol="TLS" />

    88     -->

    89 

    90     <!-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -->

    91     <Connector protocol="org.apache.coyote.http11.Http11NioProtocol"

    92                port="8443" maxThreads="200"

    93                scheme="https" secure="true" SSLEnabled="true"

    94                keystoreFile="/usr/local/tomcat/ssl/server.keystore" keystorePass="caskeystore"

    95                clientAuth="false" sslProtocol="TLS"/>

    96 

    97     <!-- Define an AJP 1.3 Connector on port 8009 -->

    98     <Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />

    99 

   100 

   101     <!-- An Engine represents the entry point (within Catalina) that processes

   102          every request.  The Engine implementation for Tomcat stand alone

   103          analyzes the HTTP headers included with the request, and passes them

   104          on to the appropriate Host (virtual host).

   105          Documentation at /docs/config/engine.html -->

   106 

   107     <!-- You should set jvmRoute to support load-balancing via AJP ie :

   108     <Engine name="Catalina" defaultHost="localhost" jvmRoute="jvm1">

   109     -->

   110     <Engine name="Catalina" defaultHost="localhost">

   111 

   112       <!--For clustering, please take a look at documentation at:

   113           /docs/cluster-howto.html  (simple how to)

   114           /docs/config/cluster.html (reference documentation) -->

   115       <!--

   116       <Cluster className="org.apache.catalina.ha.tcp.SimpleTcpCluster"/>

   117       -->

   118 

   119       <!-- Use the LockOutRealm to prevent attempts to guess user passwords

   120            via a brute-force attack -->

   121       <Realm className="org.apache.catalina.realm.LockOutRealm">

   122         <!-- This Realm uses the UserDatabase configured in the global JNDI

   123              resources under the key "UserDatabase".  Any edits

   124              that are performed against this UserDatabase are immediately

   125              available for use by the Realm.  -->

   126         <Realm className="org.apache.catalina.realm.UserDatabaseRealm"

   127                resourceName="UserDatabase"/>

   128       </Realm>

   129 

   130       <Host name="localhost"  appBase="webapps"

   131             unpackWARs="true" autoDeploy="true">

   132 

   133         <!-- SingleSignOn valve, share authentication between web applications

   134              Documentation at: /docs/config/valve.html -->

   135         <!--

   136         <Valve className="org.apache.catalina.authenticator.SingleSignOn" />

   137         -->

   138 

   139         <!-- Access log processes all example.

   140              Documentation at: /docs/config/valve.html

   141              Note: The pattern used is equivalent to using pattern="common" -->

   142         <Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"

   143                prefix="localhost_access_log" suffix=".txt"

   144                pattern="%h %l %u %t "%r" %s %b" />

   145 

   146       </Host>

   147     </Engine>

   148   </Service>

   149 </Server>