前往小程序,Get更优阅读体验!
立即前往
首页
学习
活动
专区
工具
TVP
发布
社区首页 >专栏 >Tomcat8访问管理页面localhost出现:403 Access Denied

Tomcat8访问管理页面localhost出现:403 Access Denied

作者头像
Arebirth
发布2019-09-24 15:23:37
9700
发布2019-09-24 15:23:37
举报
文章被收录于专栏:arebirth重生者的IT之路

在访问Tomcat8的时候已经在tomcat-users.xml中配置了

代码语言:javascript
复制
<role rolename="manager-gui"/>
        <role rolename="manager-script"/>
        <user username="arebirth" password="arebirth" roles="manager-gui,manager-script"/>

可是根本没有起到作用,错误的页面信息为

代码语言:javascript
复制
403 Access Denied

You are not authorized to view this page.

If you have already configured the Manager application to allow access and you have used your browsers back button, used a saved book-mark or similar then you may have triggered the cross-site request forgery (CSRF) protection that has been enabled for the HTML interface of the Manager application. You will need to reset this protection by returning to the main Manager page. Once you return to this page, you will be able to continue using the Manager appliction’s HTML interface normally. If you continue to see this access denied message, check that you have the necessary permissions to access this application.

If you have not changed any configuration files, please examine the file conf/tomcat-users.xml in your installation. That file must contain the credentials to let you use this webapp.

For example, to add the manager-gui role to a user named tomcat with a password of s3cret, add the following to the config file listed above.



Note that for Tomcat 7 onwards, the roles required to use the manager application were changed from the single manager role to the following four roles. You will need to assign the role(s) required for the functionality you wish to access.

manager-gui - allows access to the HTML GUI and the status pages
manager-script - allows access to the text interface and the status pages
manager-jmx - allows access to the JMX proxy and the status pages
manager-status - allows access to the status pages only
The HTML interface is protected against CSRF but the text and JMX interfaces are not. To maintain the CSRF protection:

Users with the manager-gui role should not be granted either the manager-script or manager-jmx roles.
If the text or jmx interfaces are accessed through a browser (e.g. for testing since these interfaces are intended for tools not humans) then the browser must be closed afterwards to terminate the session.

仔细一看,已经提示我们的context.xml中没有配置权限,此时我们只需要用最高效的解决办法就是

tomcat目录\webapps/manager/META-INF/context.xml

打开这个文件找到里面的Valve className=”org.apache.catalina.valves.RemoteAddrValve” allow=”127.\d+.\d+.\d+|::1|0:0:0:0:0:0:0:1” /> 这个句话,然后并把它注释掉,

然后大工告成

本文参与 腾讯云自媒体同步曝光计划,分享自作者个人站点/博客。
原始发表:2019-09-19 ,如有侵权请联系 cloudcommunity@tencent.com 删除

本文分享自 作者个人站点/博客 前往查看

如有侵权,请联系 cloudcommunity@tencent.com 删除。

本文参与 腾讯云自媒体同步曝光计划  ,欢迎热爱写作的你一起参与!

评论
登录后参与评论
0 条评论
热度
最新
推荐阅读
领券
问题归档专栏文章快讯文章归档关键词归档开发者手册归档开发者手册 Section 归档