403 access denied on tomcat 7.0.42

java apache tomcat netbeans
50,187

Solution 1

Remove the manager-script and add "manager-gui,manager-status".

To access the HTML interface, you need to have the manager-gui role, but you must NOT have the manager-script or manager-jmx roles.

<tomcat-users>
  <role rolename="manager-script"/>
  <role rolename="manager-gui"/>
  <role rolename="manager-jmx"/>
  <role rolename="manager-status"/>
  <user username="tomcat" password="tomcat" roles="manager-gui,manager-status"/>
</tomcat-users>

some information for you about roles from http://tomcat.apache.org/tomcat-7.0-doc/manager-howto.html

  • manager-gui — Access to the HTML interface.
  • manager-status — Access to the "Server Status" page only.
  • manager-script — Access to the tools-friendly plain text interface that is described in this document, and to the "Server Status" page.
  • manager-jmx — Access to JMX proxy interface and to the "Server Status" page.

Solution 2

Though the answer is already the correct answer, I think maybe someone will be confused about the usage of "manager-script".

The "manager-script" is for accessing the Tomcat Manager API without using Web pages.

For instance, the command below is for requesting undeploy function instead of clicking the undeploy button on Tomcat Manager web app.

curl http://localhost:8080/manager/text/undeploy?path=/app_name
Share:
50,187
Umair Ayub
Author by

Umair Ayub

** I am currently looking for a Software Engineer opportunity outside Pakistan, preferably Europe ** I am a full time freelancer and I develop Web Scraping applications. You can contact me on iamumairayub AT gmail DOT com if you need my services.

Updated on July 09, 2022

Comments

  • Umair Ayub
    Umair Ayub almost 2 years

    I am having error 403 access denied on tomcat 7.0.42 while accessing Tomcat Manager App.

    This is what I have in tomcat-user.xml file. I have tried changing roles over and over but did not work.

    Note: - I start/stop tomcat from NetBeans 7.3.1

    <?xml version="1.0" encoding="UTF-8"?>
<tomcat-users>
 <role rolename="manager-script"/>
<user username="admin" password="admin" roles="manager-script" />
</tomcat-users>
  • jbarrameda
    jbarrameda almost 8 years
    You can have all the roles in the same user. From http://tomcat.apache.org/tomcat-7.0-doc/manager-howto.html: If you use web browser to access the Manager application using a user that has either manager-script or manager-jmx roles (for example for testing the plain text or JMX interfaces), you MUST close all windows of the browser afterwards to terminate the session.... It is recommended to never grant the manager-script or manager-jmx roles to users that have the manager-gui role.
  • jpfreire
    jpfreire over 7 years
    to me (using eclipse) did not work. tomcat pisses me off >:(
  • Piotr P. Karwasz
    Piotr P. Karwasz about 3 years
    The manager-status role is useless in the provided example, since it is implied by any of the remaining roles (cf. application descriptor).
  • Piotr P. Karwasz
    Piotr P. Karwasz about 3 years
    The accepted answer does not actually add the tomcat user to the manager-script role,

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Netbeans 8.0.2 The module has not been deployed
where does tomcat store my files?
Tomcat and null pointer exception when accesing session attributes
Starting of Tomcat failed from Netbeans
How do I register a Tomcat 7.0.41 server on NetBeans 7.3?
Unable to start Tomcat
Netbeans + tomcat on Ubuntu
How to overwrite war files during Tomcat hot deployment?
build-impl.xml:1045: Deployment error: Starting of Tomcat failed
Unable to access Tomcat Apache server from remote machine using browser