| 1 |
<?xml version="1.0" encoding="UTF-8"?>
|
1 |
<?xml version="1.0" encoding="UTF-8"?>
|
| 2 |
<section xmlns="http://docbook.org/ns/docbook" version="5.0"
|
2 |
<section xmlns="http://docbook.org/ns/docbook" version="5.0"
|
| 3 |
xmlns:xi="http://www.w3.org/2001/XInclude"
|
3 |
xmlns:xi="http://www.w3.org/2001/XInclude"
|
| 4 |
xmlns:xlink="http://www.w3.org/1999/xlink">
|
4 |
xmlns:xlink="http://www.w3.org/1999/xlink">
|
| 5 |
|
5 |
|
| 6 |
|
6 |
|
| 7 |
<title>Installation</title>
|
7 |
<title>Installation</title>
|
| 8 |
<para>As of February 2013, XServices require Java 7. Older builds run against Java 5.</para>
|
8 |
<para>As of February 2013, XServices require Java 7. Older builds run against Java 5.</para>
|
| 9 |
<para>Apache Tomcat 7</para>
|
9 |
<para>As of April 2018, XServices require Java 8 and Tomcat 8.5.</para>
|
| - |
|
10 |
|
| 10 |
<para>tbd.</para>
|
11 |
<para>tbd.</para>
|
| 11 |
<para>In short: Deploy .WAR file to Apache Tomcat</para>
|
12 |
<para>In short: Deploy .WAR file to Apache Tomcat</para>
|
| 12 |
<section>
|
13 |
<section>
|
| 13 |
<title>Securing with Basic Authentication</title>
|
14 |
<title>Securing with Basic Authentication</title>
|
| 14 |
<para>There is a quick guide explaining Basic Authentication for Tomcat here: <link
|
15 |
<para>There is a quick guide explaining Basic Authentication for Tomcat here: <link
|
| 15 |
xlink:href="http://oreilly.com/pub/a/java/archive/tomcat-tips.html?page=1">
|
16 |
xlink:href="http://oreilly.com/pub/a/java/archive/tomcat-tips.html?page=1">
|
| 16 |
http://oreilly.com/pub/a/java/archive/tomcat-tips.html?page=1</link>
|
17 |
http://oreilly.com/pub/a/java/archive/tomcat-tips.html?page=1</link>
|
| 17 |
</para>
|
18 |
</para>
|
| 18 |
<para>
|
19 |
<para>
|
| 19 |
|
20 |
|
| 20 |
</para>
|
21 |
</para>
|
| 21 |
</section>
|
22 |
</section>
|
| 22 |
<section>
|
23 |
<section>
|
| 23 |
<title>Limit access by IP address</title>
|
24 |
<title>Limit access by IP address</title>
|
| 24 |
<para>Sometimes you'll only want to restrict access to to
|
25 |
<para>Sometimes you'll only want to restrict access to to
|
| 25 |
only
|
26 |
only
|
| 26 |
specified host names or IP addresses. This way, only
|
27 |
specified host names or IP addresses. This way, only
|
| 27 |
clients at
|
28 |
clients at
|
| 28 |
those specified addresses can use the web services.
|
29 |
those specified addresses can use the web services.
|
| 29 |
Tomcat provides
|
30 |
Tomcat provides
|
| 30 |
two configuration values for that:
|
31 |
two configuration values for that:
|
| 31 |
RemoteHostValve and
|
32 |
RemoteHostValve and
|
| 32 |
RemoteAddrValve.</para>
|
33 |
RemoteAddrValve.</para>
|
| 33 |
<para>These Valves allow you to filter requests by host name or
|
34 |
<para>These Valves allow you to filter requests by host name or
|
| 34 |
by IP
|
35 |
by IP
|
| 35 |
address, and to allow or deny hosts that match. The
|
36 |
address, and to allow or deny hosts that match. The
|
| 36 |
example below
|
37 |
example below
|
| 37 |
restricts access to the ArchiveService from any
|
38 |
restricts access to the ArchiveService from any
|
| 38 |
machine that is not
|
39 |
machine that is not
|
| 39 |
the local host.</para>
|
40 |
the local host.</para>
|
| 40 |
<programlisting language="xml"><Context
|
41 |
<programlisting language="xml"><Context
|
| 41 |
path="/XService/ArchiveService"
|
42 |
path="/XService/ArchiveService"
|
| 42 |
...> <Valve
|
43 |
...> <Valve
|
| 43 |
className="org.apache.catalina.valves.RemoteAddrValve"
|
44 |
className="org.apache.catalina.valves.RemoteAddrValve"
|
| 44 |
allow="127.0.0.1" deny=""/> </Context>
|
45 |
allow="127.0.0.1" deny=""/> </Context>
|
| 45 |
</programlisting>
|
46 |
</programlisting>
|
| 46 |
<para>If no allow pattern is given, then patterns that match
|
47 |
<para>If no allow pattern is given, then patterns that match
|
| 47 |
the deny
|
48 |
the deny
|
| 48 |
attribute patterns will be rejected, and all others
|
49 |
attribute patterns will be rejected, and all others
|
| 49 |
will be allowed.
|
50 |
will be allowed.
|
| 50 |
Similarly, if no deny pattern is given,
|
51 |
Similarly, if no deny pattern is given,
|
| 51 |
patterns that match the
|
52 |
patterns that match the
|
| 52 |
allow attribute will be allowed, and
|
53 |
allow attribute will be allowed, and
|
| 53 |
all others will be denied.
|
54 |
all others will be denied.
|
| 54 |
</para>
|
55 |
</para>
|
| 55 |
<para>The <context> element must be placed into the
|
56 |
<para>The <context> element must be placed into the
|
| 56 |
server.xml
|
57 |
server.xml
|
| 57 |
file (into <engine><host>).</para>
|
58 |
file (into <engine><host>).</para>
|
| 58 |
</section>
|
59 |
</section>
|
| 59 |
|
60 |
|
| 60 |
</section>
|
61 |
</section>
|
| 61 |
|
62 |
|
| 62 |
Generated by GNU Enscript 1.6.5.90.
|
63 |
Generated by GNU Enscript 1.6.5.90.
|
| 63 |
|
64 |
|
| 64 |
|
65 |
|