--- webapps/docs/config/http.xml (revision 1081117)
+++ webapps/docs/config/http.xml (working copy)
@@ -85,10 +85,10 @@
Set to Set to true
if you want calls to
+ request.getRemoteHost()
to perform DNS lookups in
order to return the actual host name of the remote client. Set
- to false
to skip the DNS lookup and return the IP
+ to POST
causes Tomcat
+ Note that any setting other than POST
Sets the protocol to handle incoming traffic. The default value is
- Set this attribute to the name of the protocol you wish to have
returned by calls to Set this attribute to Set this attribute to HTTP/1.1
which uses an auto-switching mechanism to select
+ PATH
(Windows) or LD_LIBRARY_PATH
(on
most unix systems) environment variables contain the Tomcat native
@@ -147,11 +147,11 @@
Java connectors.
To use an explicit protocol rather than rely on the auto-switching
mechanism described above, the following values may be used:
- org.apache.coyote.http11.Http11Protocol
-
+
- org.apache.coyote.http11.Http11NioProtocol
-
+
- org.apache.coyote.http11.Http11AprProtocol
-
+
Custom implementations may also be used.
Take a look at our Connector
@@ -189,18 +189,18 @@
request.getScheme()
. For
- example, you would set this attribute to "https
"
- for an SSL Connector. The default value is "http
".
+ example, you would set this attribute to true
if you wish to have
+ request.isSecure()
to return true
for requests received by this Connector. You would want this on an
SSL Connector or a non SSL connector that is receiving data from a
SSL accelerator, like a crypto card, a SSL appliance or even a webserver.
- The default value is false
.
false
.
+ the URL. The default value is Set this attribute to true
to cause Tomcat to use
+
Set this attribute to false
.
Set this attribute to true
to cause Tomcat to advertise
+
Set this attribute to false
.
2
. Also, with a lot of non keep alive connections, you
might want to increase this value as well. Default value is
- 1
.
+ Controls when the socket used by the connector is bound. By default it
is bound when the connector is initiated and unbund when the connector is
- destroyed. If set to false
, the socket will be bound when the
+ destroyed. If set to
The value is a comma separated list of MIME types for which HTTP
compression may be used.
- The default value is text/html,text/xml,text/plain
.
The number of milliseconds during which the sockets used by this
Connector will linger when they are closed.
- The default value -1
which disables this option.
Specifies the timeout, in milliseconds, to use while a data upload is
in progress. This only takes effect if
- disableUploadTimeout is set to false
.
+ disableUploadTimeout is set to
This flag allows the servlet container to use a different, usually
longer connection timeout during data upload. If not specified, this
- attribute is set to true
which disables this longer timeout.
+ attribute is set to
acceptCount
setting.
This setting is currently only applicable to the blocking Java connectors (AJP/HTTP).
- Default value is 10000
.
+ Default value is Limits the total length of trailing headers in the last chunk of
- a chunked HTTP request. If the value is -1
, no limit will be
- imposed. If not specified, the default value of 8192
will be
+ a chunked HTTP request. If the value is
The minimum number of threads always kept running. If not specified,
- the default of 10
is used.
The protocol handler caches Processor objects to speed up performance.
This setting dictates how many of these objects get cached.
- -1
means unlimited, default is 200
. Set this
+
Apache-Coyote/1.1
is used. Unless you are paranoid, you won't
+ Use this attribute to enable SSL traffic on a connector.
To turn on SSL handshake/encryption/decryption on a connector
- set this value to true
.
- The default value is false
.
- When turning this value true
you will want to set the
+ set this value to scheme
and the secure
attributes as well
to pass the correct request.getScheme()
and
request.isSecure()
values to the servlets
@@ -448,9 +448,9 @@
If set to true
, the TCP_NO_DELAY option will be
+
If set to true
by default.
(bool)Boolean value for the sockets so linger option (SO_LINGER).
A value for the standard attribute connectionLinger
- that is >=0 is equivalent to setting this to true
.
+ that is >=0 is equivalent to setting this to false
.
+ that is <0 is equivalent to setting this to soLingerTime
must be set else the
JVM defaults will be used for both.
(byte)Value between 0
and 255
for the
+
(byte)Value between
NoteOn some JDK versions, setting soTrafficClass causes a problem. A work around for this @@ -544,7 +544,7 @@
(int) The timeout for a socket unlock. When a connector is stopped, it will try to release the acceptor thread by opening a connector to itself.
- The default value is 250
and the value is in milliseconds
(int)The number of threads to be used to run for the polling events.
- Default value is 1
per processor. Can't see a reason to go
+ Default value is
(int)The time in milliseconds to timeout on a select() for the
poller. This value is important, since connection clean up is done on
the same thread, so do not set this value to an extremely high one. The
- default value is 1000
milliseconds.
(bool)Whether to allow comet servlets or not. Default value is
- true
.
(bool)Use this attribute to enable or disable sendfile capability.
- The default value is true
.
(bool)Boolean value, whether to use direct ByteBuffers or java mapped
- ByteBuffers. Default is (int)Each connection that is opened up in Tomcat get associated with
a read ByteBuffer. This attribute controls the size of this buffer. By
- default this read buffer is sized at (int)Each connection that is opened up in Tomcat get associated with
a write ByteBuffer. This attribute controls the size of this buffer. By
- default this write buffer is sized at (int)The NIO connector uses a class called NioChannel that holds
elements linked to a socket. To reduce garbage collection, the NIO
connector caches these channel objects. This value specifies the size of
- this cache. The default value is false
.
+ ByteBuffers. Default is
When you are using direct buffers, make sure you allocate the
appropriate amount of memory for the direct memory space. On Sun's JDK
that would be something like -XX:MaxDirectMemorySize=256m
.
@@ -609,7 +609,7 @@
8192
bytes. For lower
+ default this read buffer is sized at 8192
bytes. For low
+ default this write buffer is sized at
@@ -630,9 +630,9 @@
500
, and represents that
+ this cache. The default value is -1
for unlimited cache and 0
for no cache.
buffer size = application read buffer size +
application write buffer size + network read buffer size +
network write buffer size
1024*1024*100
+ The value is in bytes, the default value is (int)Tomcat will cache SocketProcessor objects to reduce garbage
collection. The integer value specifies how many objects to keep in the
- cache at most. The default is 500
. Other values are
- -1
for unlimited cache and 0
for no cache.
(int)Tomcat will cache KeyAttachment objects to reduce garbage
collection. The integer value specifies how many objects to keep in the
- cache at most. The default is 500
. Other values are
- -1
for unlimited cache and 0
for no cache.
(int)Tomcat will cache PollerEvent objects to reduce garbage
collection. The integer value specifies how many objects to keep in the
- cache at most. The default is 500
. Other values are
- -1
for unlimited cache and 0
for no cache.
(int)The max selectors to be used in the pool, to reduce selector
contention. Use this option when the command line
org.apache.tomcat.util.net.NioSelectorShared
value is set
- to false. Default value is 200
.
org.apache.tomcat.util.net.NioSelectorShared
- value is set to false. Default value is -1
(unlimited).
+ value is set to false. Default value is The following command line options are available for the NIO
connector:
-Dorg.apache.tomcat.util.net.NioSelectorShared=true|false
- - default is true
. Set this value to false if you wish to
+ - default is
oomParachute
represents
the size in bytes of the parachute(the byte array). The default value is
- 1024*1024
(1MB). Please note, this only works for OOM errors
+ Sets the TCP_DEFER_ACCEPT
flag on the listening socket
- for this connector. The default value is true
where
+ for this connector. The default value is TCP_DEFER_ACCEPT
is supported by the operating system,
- otherwise it is false
.
(bool)Whether to allow comet servlets or not. Default value is
- true
.
(bool)Use this attribute to enable or disable sendfile capability.
- The default value is true
.
You can enable SSL support for a particular instance of this
Connector by setting the SSLEnabled
attribute to
- true
.
You will also need to set the The certificate encoding algorithm to be used. This defaults to
scheme
and secure
attributes to the values https
and true
@@ -855,8 +855,8 @@
KeyManagerFactory.getDefaultAlgorithm()
which returns
- SunX509
for Sun JVMs. IBM JVMs return
- IbmX509
. For other vendors, consult the JVM
+
Is unsafe legacy TLS renegotiation allowed which is likely to expose
users to CVE-2009-3555, a man-in-the-middle vulnerability in the TLS
protocol that allows an attacker to inject arbitrary data into the user's
- request. If not specified, a default of false
is used. This
+ request. If not specified, a default of ALL
+ the JSSE cipher naming convention. The special value of ALL
is intended for testing purposes only.
Set to true
if you want the SSL stack to require a
+
Set to want
if you want the SSL stack to request a client
- Certificate, but not fail if one isn't presented. A false
+ Set to CLIENT-CERT
authentication.
The type of keystore file to be used for the server certificate.
- If not specified, the default value is "JKS
".
The class name of the SSL implementation to use. If not specified, the
- default of org.apache.tomcat.util.net.jsse.JSSEImplementation
+ default of
The version of the SSL protocol to use. If not specified,
- the default is "TLS
".
"
+