DNS mapping to APEX workspaces - ORDS, SODA & JSON in the Database

Hi All,
I have posted this many times, but didn't get an answer.
I have a website called www.mywebsite.com I want to map this website to an apex workspace.
I have changed the cname for the website domain to point to the server IP address then I changed the httpd.conf, server.xml to include the vhost entry but this didn't work.
Could you please help me to achieve this mapping? Am I modifying the right Apache setting? Is this the right way to map domain to APEX workspace?
My workspace details:
Oracle 11.2 SE1
Java 1.6.0_20
Apache Tomcat 6.0.26
APEX 3.2
APEX Listener 0.10.110.10.57
Thanks,
Fadi. 

You should configure virtual host in the HTTP server, which is used to access the APEX application.
and a typical entry would be like this:
<VirtualHost xxx.xxx.xxx.xx:80>
ServerName abc.com
ErrorLog logs/abc-error_log
CustomLog "logs/abc-access_log" common
DocumentRoot /app/oracle/htmldb/Apache/Apache/htdocs/
Alias /i/ "/app/oracle/dhtmldb/images/"
<Directory /app/oracle/dhtmldb/htdocs/>
AllowOverride none
Order deny,allow
Allow from all
</Directory>
</VirtualHost> Then access your apex application as:
http://def.com/pls/apex
change the above values as per your requirement.
regards 

Fahd,
Is that in the etc/httpd/conf/httpd.conf or $CATALINA_HOME/conf/server.xml?
Im using Tomcat 6.
thanks, 

In httpd.conf.
regards 

Hello,
httpd.conf is not recommended to use while you have server.xml in Tomcat 6
Any vhost I add to the httpd.conf is not recognized and whole file will be skipped in favour of the server.xmla and web.xml.
Your post mentioned no reference to the workspace mapping (the DocumentRoot is not compatible with APEX workspaces links).
Could you please explain more if you can.
thanks,
Fadi.

Related

Accessing Tomcat Manager from the web

Hi,
I currently have a server which is sucessfully serving JSP pages to the world. However, I am having issues accessing the tomcat manager remotely. I have set the firewall to allow port 8080 from my host but it still doesnt seem to work. We have multiple domains running on this server with the server.xml pointing to the approproate docBase.
The reason i want to access the tomcat manager is because i need the ability to stop and start different applications without restarting tomcat completely. This will prevent all the sites hosted on our server from going down.
I am running PLESK 7.5.3 and Tomcat 5.0. Tomcat is not integrated with the PLESK interface.
If anyone has any ideas or i need to give more information please let me know. 
Check this (from Tomcat manager doco):
In addition to the password restrictions the manager web application could be restricted by the remote IP address or host by adding a RemoteAddrValve or RemoteHostValve. Here is an example of restricting access to the localhost by IP address:
<Context path="/manager" debug="0" privileged="true"
         docBase="/usr/local/kinetic/tomcat5/server/webapps/manager">
         <Valve className="org.apache.catalina.valves.RemoteAddrValve"
                allow="127.0.0.1"/>
</Context> 
Hi,
I have tried what you have stated and it still doesnt seem to be working. I think the problem lies in the virtual hosts setup. I am trying to associate the context /manager and the revelent docBase to a "Subdomain" vhost on the server.
Is there anyway of configuring tomcat where i don't have to associate it with a vhost??

Sun Java System Identity Manager 8 - Proxy Server - Javascript

I'm using a apache web proxy server. Behind it is there a apache tomcat webserver. I have installed Identity Manager 8.0 on the tomcat server.
I have set this values in the Waveset.properties file for IDM:
ui.web.useBaseHref=false
ui.web.baseHrefURL=https://xyz.com/idm/
IDM works fine but the "Help"-button, wich is javascript, doesn't work. I have made a few changes in Apache but it doesn't help.
<Location /idm>
ProxyPass http://localhost:8080/idm
ProxyPassReverse http://localhost:8080/idm
SetOutputFilter proxy-html
ProxyHTMLExtended On
ProxyHTMLURLMap /idm /idm
</Location>
When I'm only using IDM in localhost, the "Help"-button works.
Is there a solution for it??

/sgd interface only on 1 ip  /tarantella on 2 ip's

I have the following problem.
a sgd 4.2 with 2 network interfaces, 1 in a DMZ 1 in the internal lan
on the internal LAN i want users to be able to access the the /sgd user interface
and the /tarantella user interface.
on the DMZ interface i only want to allow the /tarantella user interface
if i do a redirect in the jsp pages this will effect both network "sides" off my SGD server.
my "plan" is to get tomcat to listen only on my interlan ip adress
but i don't have any clou how to do this.
regards,
Cock van't Hoog
Dupaco Distribution b.v. 
Hi Cock,
Sounds like Apache Access Control can be your solution.
http://httpd.apache.org/docs/2.0/howto/auth.html
ScriptAlias /tarantella/cgi-bin /opt/tarantella/var/docroot/cgi-bin
Alias /tarantella /opt/tarantella/var/docroot
<Directory /opt/tarantella/var/docroot>
Options FollowSymLinks
AllowOverride AuthConfig
Allow from 192.168.0
</Directory>
The addition I suggest for you in the httpd.conf file is the "Allow from" line. Replace "192.168.0" with your internal network. See the Apache documentation on the Allow directive:
http://httpd.apache.org/docs/2.0/mod/mod_access.html#allow
Regards,
Arno Staal
Divider B.V. 
Hi Cock,
Sounds like Apache Access Control can be your
solution.
http://httpd.apache.org/docs/2.0/howto/auth.html
ScriptAlias /tarantella/cgi-bin
/opt/tarantella/var/docroot/cgi-bin
Alias /tarantella /opt/tarantella/var/docroot
<Directory /opt/tarantella/var/docroot>
Options FollowSymLinks
AllowOverride AuthConfig
Allow from 192.168.0
rectory>
The addition I suggest for you in the httpd.conf file
is the "Allow from" line. Replace "192.168.0" with
your internal network. See the Apache documentation
on the Allow directive:
http://httpd.apache.org/docs/2.0/mod/mod_access.html#a
llow
Regards,
Arno Staal
Divider B.V.Hello arno,
your suggestion does the opposit
and will restrict access to the /tarantella userinterface and web pages
I only want access restrictions on my /sgd virual directory
this is only revered to in httpd.conf as
JkMount /sgd tta
JkMount /sgd/* tta
i tried the following in the httpd.conf file:
<VirtualHost 192.168.1.1:443>
ServerName lanservername.domain.local
JkMount /axis axis
JkMount /axis/* axis
JkMount /sgd tta
JkMount /sgd/* tta
JkMount /examples/* examples
</VirtualHost>
but this results in /sgd not working on both ipadresses.
Regards,
Cock van't Hoog
Dupaco Distribution B.V. 
Cock,
Can you specify if you have SGD in Firewall Traversal Mode?
If you are using the Firewall Traversal Mode you will have a question which is not that easy to answer. Since the http-packages will be send via SGD (I always say the Security Pack) to the webserver. Apache will always think a user is connecting to 127.0.0.1 (firewall-forwarding-url).
The easiest thing I can think of is to set up 2 SGD servers. Both (or at least one) running in a seperate zone.
- Remold Krol | Everett 
Cock,
Can you specify if you have SGD in Firewall Traversal
Mode?
If you are using the Firewall Traversal Mode you will
have a question which is not that easy to answer.
Since the http-packages will be send via SGD (I
always say the Security Pack) to the webserver.
Apache will always think a user is connecting to
127.0.0.1 (firewall-forwarding-url).
The easiest thing I can think of is to set up 2 SGD
servers. Both (or at least one) running in a seperate
zone.
- Remold Krol | Everetthello remold,
this helped a lot,
my final solution is this, on the LAN side the user can only use the unencrypted
/sgd interface
the /tarantella interface encrypted en unencrypted works on both sides
from the dmz the firewall is only passing https to SGD server
and i disabled access to " https://server/sgd" by putting this in the
httpd.conf
<Location /sgd/>
Order Deny,Allow
Deny from 127.0.0.1
</Location>
Remold, Arno thanks !
regards,
Cock van't Hoog
Dupaco

APEX Listener 2.0 and RewriteRule

Hello,
I am currently hosting a number of APEX applications, using OHS as the webserver and I looking into using the APEX Listener instead. However I have a lot of rewwriterules in my OHS configuration. Is this something that can be configured in the APEX Listener?
<VirtualHost *:80>
ServerAdmin webmaster#dummy-host.example.com
DocumentRoot "${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/htdocs"
ServerName application-a.example.com
RewriteEngine On
RewriteRule ^/$ http://apex.example.com/pls/apex/f?p=117 [L]
</VirtualHost>--Andy
Edited by: A Tael on Sep 20, 2012 2:42 PM 
Hi Andy,
ApexListener does not have rewrite engine.
What we have done is we have put an Apache server (not OHS) in front of the J2EE container running ApexListener.
The URL rewriting is done in the Apache. Your existing OHS rules have to be copy/pasted in to the Apache server.
Cheers, 
How did you do that? Can you please share the steps? 
Hi
Install regular Apache HTTP server. Reconfig Apache as Reverse Proxy. Also in apache config file you can create virtual host with mod_rewrite rules.
That's all

SSI from third party server

Hi All!
I have two iPlanet 7 web servers running on Solaris 9
One server is outside firewall and second is behind firewall.
We need to be able to pull Server Side Includes from some other server (www.somehost.com).
I tried to enable SSI on virtual server and entered www.somehost.com in the URI field, but that doesn't work.
Could you please provide me with step by step instructions of how to achieve this. 
SSI is just for local file systems. But if you want remote files, you can still use the exec directive with wget command. 
Thanks Pascal!
I will try wget approach.
Also I have instructions of how to do this on Apache (see below),
so there should be a way to do the same on iPlanet.
To allow SSI to access files held on remote servers, a reverse proxy setup is needed.
The following should be added to the server’s httpd.conf file:
ProxyPass /templates http://www.somehost.com/templates
ProxyPassReverse /templates http://www.somehost.com/templates
If the root-relative path /templates conflicts with an existing directory,
it may be changed to any other name desired as long as the beginning
of the include paths are changed to match.
To prevent server encoding from returning compressed data, the following
should also be added to the httpd.conf file:
+<Location /templates>+
RequestHeader unset Accept-Encoding
+</Location>+
The path within the Location node should match the first path in the ProxyPass settings.
Finally, the site directory needs to be configured to allow includes, and also to allow
includes with .html extensions. The following can be added to the site’s Directory node
in httpd.conf, or an .htaccess file held on the server:
Options Includes+
AddType text/html .html
AddOutputFilter INCLUDES .html
Now you can use HTML virtual includes as if the page were hosted on the
same server as the include:
+<!--#include virtual="/templates/template.html" -->+
If Apache server is behind a firewall, the requests for
those directories need to forward to an outbound proxy.
The following addition to httpd.conf will allow for this:
+# Be careful with lines below. You should probably add some security around this with the <Proxy *> directive+
+# This is an example and this should be configured based on your environment+
ProxyRequests On
ProxyRemote http://www.somehost.com/ <**your proxy host**>:3128

Categories

Resources