API tools faq
paste
Guest User

server configuration

a guest
Apr 29th, 2018
159
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.34 KB | None | 0 0
raw download clone embed print report
  1. <?xml version='1.0' encoding='utf-8'?>
  2. <Server port="6500" shutdown="SHUTDOWN">
  3.  
  4. <Listener className="org.apache.catalina.core.AprLifecycleListener" SSLEngine="on" />
  5. <Listener className="org.apache.catalina.core.JreMemoryLeakPreventionListener" />
  6. <Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener" />
  7.  
  8.  
  9. <GlobalNamingResources>
  10. <Resource name="UserDatabase" auth="Container"
  11. type="org.apache.catalina.UserDatabase"
  12. description="User database that can be updated and saved"
  13. factory="org.apache.catalina.users.MemoryUserDatabaseFactory"
  14. pathname="conf/tomcat-users.xml" />
  15. </GlobalNamingResources>
  16.  
  17. <Service name="Catalina">
  18.  
  19. <Connector port=“10443" protocol="org.apache.coyote.http11.Http11Nio2Protocol"
  20. sslImplementationName="org.apache.tomcat.util.net.openssl.OpenSSLImplementation"
  21. SSLEnabled="true"
  22. scheme="https"
  23. secure="true"
  24. URIEncoding="UTF-8"
  25. maxThreads=“**"
  26. maxPostSize=“****"
  27. maxHttpHeaderSize=“***"
  28. throwOnFailure="true"
  29. defaultSSLHostConfigName=“aa.com” >
  30. <SSLHostConfig honorCipherOrder="true" insecureRenegotiation="false"
  31. hostName=“aa.com"
  32. certificateVerification="none"
  33. disableCompression="true"
  34. disableSessionTickets="true"
  35. ciphers="ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:!DSS"
  36. >
  37. <Certificate certificateKeyFile=“<path to private key>"
  38. certificateChainFile=“<path to chain>"
  39. certificateFile=“<path to certificate>"
  40. type="RSA" />
  41. </SSLHostConfig>
  42. </Connector>
  43.  
  44. <Connector port=“11443" protocol="org.apache.coyote.http11.Http11Nio2Protocol"
  45. sslImplementationName="org.apache.tomcat.util.net.openssl.OpenSSLImplementation"
  46. SSLEnabled="true"
  47. scheme="https"
  48. secure="true"
  49. URIEncoding="UTF-8"
  50. maxThreads=“**"
  51. maxPostSize=“****"
  52. maxHttpHeaderSize=“****"
  53. throwOnFailure="true"
  54. defaultSSLHostConfigName=“aa.com" >
  55. <SSLHostConfig honorCipherOrder="true" insecureRenegotiation="false"
  56. hostName=“aa.com"
  57. certificateVerification="optional"
  58. caCertificateFile=“<path to singing CA>"
  59. certificateVerificationDepth="1"
  60. disableCompression="true"
  61. disableSessionTickets="true"
  62. ciphers="ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:!DSS"
  63. >
  64. <Certificate certificateKeyFile=“<path to private key>"
  65. certificateChainFile=“<path to chain>"
  66. certificateFile=“<path to certificate>"
  67. type="RSA" />
  68. </SSLHostConfig>
  69. </Connector>
  70. <Engine name="Catalina" defaultHost="localhost">
  71. <Realm className="org.apache.catalina.realm.UserDatabaseRealm"
  72. resourceName="UserDatabase"/>
  73. <Host name="localhost" appBase="webapps"
  74. unpackWARs="true" autoDeploy="true"
  75. xmlValidation="false" xmlNamespaceAware="false">
  76. <Valve className="org.apache.catalina.valves.RemoteIpValve"
  77. internalProxies="127\.0\.0\.1|10\.20\.4\.1|10\.20\.4\.2|10\.20\.4\.3"
  78. remoteIpHeader="x-forwarded-for"
  79. proxiesHeader="x-forwarded-by"
  80. protocolHeader="x-forwarded-proto"
  81. />
  82. <Valve className="org.apache.catalina.valves.AccessLogValve" directory=“<path to log>/logs" prefix=“test" suffix=".txt" requestAttributesEnabled="t
  83. rue" pattern="%h %l %u %t &quot;%r&quot; %s %b &quot;%{Referer}i&quot; &quot;%{User-Agent}i&quot; %D" resolveHosts="false"/>
  84. </Host>
  85. </Engine>
  86. </Service>
  87. </Server>
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!