When using JBoss Enterprise Web Server 2.1 with the security manager, running a <command>curl -I</command> on the URLs for the <literal>/manager</literal> and <literal>/host-manager</literal> web applications returns an expected <literal>HTTP 404 Not Found</literal> error. This occurs because when a security manager is enabled, XML descriptors for contexts are not deployed by default, since this is less secure. A workaround for this issue is to set <literal>deployXML="true"</literal> on the host to enable XML descriptors.
This is a known issue is JBoss Enterprise Web Server 2.1.
Created attachment 897895[details]
catalina.out server log
Description of problem:
/manager and /host-manager webapps return HTTP 404 Not Found when running tomcat7 with security manager
Version-Release number of selected component (if applicable):
EWS-2.1.0-ER1
How reproducible:
100%
Steps to Reproduce:
1. unzip jboss-ews-application-servers-2.1.0-ER1-<platform>-<arch>.zip
2. cd jboss-ews-2.1/tomcat7/bin
3. ./startup.sh -security
4. curl -I http://localhost:8080/manager
curl -I http://localhost:8080/host-manager
Actual results:
HTTP/1.1 404 Not Found
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=utf-8
Content-Language: en
Content-Length: 975
Date: Wed, 21 May 2014 10:13:23 GMT
Expected results:
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=ISO-8859-1
Transfer-Encoding: chunked
Date: Wed, 21 May 2014 10:12:49 GMT
Additional info:
catalina.out in attachment
When a security manager is enabled xml descriptors for contexts are not deployed by default, since this is less secure. This can be fixed by setting deployXML="true" on the host to enable this back.
Actually, the error message is very good:
The web application with context path [/host-manager] was not deployed because it contained a deployment descriptor [/home/mhasko/jboss-ews-2.1/tomcat7/webapps/host-manager/META-INF/context.xml] which may include configuration necessary for the secure deployment of the application but processing of deployment descriptors is prevented by the deployXML setting of this host. An appropriate descriptor should be created at [/home/mhasko/jboss-ews-2.1/tomcat7/conf/Catalina/localhost/host-manager.xml] to deploy this application.
Instead of using deployXML, you can indeed copy that descriptor manually to enable the privilege for the manager webapp. So you get to decide which way should be documented ;)
Hi folks, this is not a docs bug, so it should not be assigned to a docs person. Setting this back to the original owner. Mandar, please clone this bug into a docs bug where you can track the work you are doing for it for docs while we let the developer own this bug.