1.启动tomcat,访问tomcat
2.点击Manager App,未配置的情况下, 会返回403错误
根据提示,有两个地方需要修改,①.打开manager-gui,添加用户权限;②.开启允许远程访问,否则只能本机访问
⒈修改tomcat-users.xml,添加角色和用户
<role rolename="manager-gui"/>
<role rolename="admin-gui"/>
<user username="tomcat" password="tomcat" roles="manager-gui,admin-gui"/>
注意对于tomcat9来说,不能同时赋予用户manager-script和manager-gui角色。
⒉开启远程访问,有以下两种方式:
⑴打开manager.xml,若没有则新建
/conf/Catalina/localhost/manager.xml
添加如下内容:
<Context privileged="true" antiResourceLocking="false"
docBase="${catalina.home}/webapps/manager">
<Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="^.*$" />
</Context>
⑵ 修改/webapps/manager/META-INF/context.xml,注释掉value里内容:
<Context antiResourceLocking="false" privileged="true" >
<Valve className="org.apache.catalina.valves.RemoteAddrValve"
allow="127\.\d+\.\d+\.\d+|::1|0:0:0:0:0:0:0:1" />
<Manager sessionAttributeValueClassNameFilter="java\.lang\.(?:Boolean|Integer|Long|Number|String)|org\.apache\.catalina\.filters\.CsrfPreventionFilter\$LruCache(?:\$1)?|java\.util\.(?:Linked)?HashMap"/>
</Context>
改为:
<Context antiResourceLocking="false" privileged="true" >
<!--
<Valve className="org.apache.catalina.valves.RemoteAddrValve"
allow="127\.\d+\.\d+\.\d+|::1|0:0:0:0:0:0:0:1" />
-->
<Manager sessionAttributeValueClassNameFilter="java\.lang\.(?:Boolean|Integer|Long|Number|String)|org\.apache\.catalina\.filters\.CsrfPreventionFilter\$LruCache(?:\$1)?|java\.util\.(?:Linked)?HashMap"/>
</Context>
3.重启之后,输入账号和密码,即可访问