Tomcat Prevent external access to ROOT and other webapps

tomcat6

I have a Tomcat 6 server running just fine. I have external access working.
I wanted to know how to prevent someone from seeing specific webapps, for example, I dont want external access to the ROOT tomcat page. How would I go about preventing some webapps while leaving other webapps visible to external users ?

Best Answer

check this answer:

How to block access to a file from being served by Tomcat?

and also this link:

http://www.ka-2.ru/index.php?book=74&pg=051

(don't worry about the .ru it's in english)

Related Solutions

Ssl – Tomcat 6 disableProxyCaching with no authentication

It turns out that no-cache was added by F5 load balancer. Once networking guys put an iRule to not do it - the problem went away. Tomcat was not adding anything inappropriate.

Redirect all traffic regardless of port or protocol to temporary page

As noted in my updates to the question and stated in the comments above:

To handle the port Apache (port 80) 404's, I used the following in the Apache config:

<VirtualHost _default_:*>
    DocumentRoot /var/www
    ServerName host
    ServerAlias *
    ErrorDocument 404 /index.html
</VirtualHost>

To handle them in Tomcat (8080, in my case), in /etc/tomcat/web.xml i added:

<error-page>
    <error-code>404</error-code>
    <location>/index.html</location>
</error-page>

The only other problem I came across is that the tomcat 404 would not display on IE. I ended up needing to add additional data to the page in form of comments to add some weight to the file for IE to display my custom page instead of it's own. How silly.

I hope this helps someone else, in the future.

Best Answer

Related Solutions

Ssl – Tomcat 6 disableProxyCaching with no authentication

Redirect all traffic regardless of port or protocol to temporary page

Related Topic