Apache Tomcat

Software Screenshot:
Apache Tomcat
Software Details:
Version: 8.0.24 / 7.0.63 / 6.0.44 updated
Upload Date: 20 Jul 15
Distribution Type: Freeware
Downloads: 1542

Rating: 3.3/5 (Total Votes: 4)

Apache Tomcat is next to Apache's HTTP server, the second most successful technology the foundation is developing and curating.

The Java Servlet and JavaServer Pages are technologies used in rendering Java-based web pages, and while many think they are a standard, you can still implement different ways how these technologies are run.

Tomcat is Apache's take on the process and aggregates all those technologies into a single server solution for enterprise and small scale environments alike.

The Tomcat server can power large-scale, critical, traffic-heavy Web applications and works across a diverse range of hardware infrastructures.

There are three main versions of the server currently being developed, each targeting different versions of the Java language:
- Tomcat 6.x is for Java 5+, Servlet 2.5+ and JSP 2.1+
- Tomcat 7.x is for Java 6+, Servlet 3.0+ and JSP 2.2+
- Tomcat 8.x is for Java 7+, Servlet 3.1+ and JSP 3.0+


Besides these source code packages offered for download on the Softoware's Scripts section, binary files for OS-specific builds are also available on Softoware

What is new in this release:

  • Fixed a crash when the poller returned multiple events for the same socket.
  • Link Windows binaries with OpenSSL 1.0.1m and APR 1.5.1.

What is new in version 8.0.23 / 7.0.62 / 6.0.44:

  • Fixed a crash when the poller returned multiple events for the same socket.
  • Link Windows binaries with OpenSSL 1.0.1m and APR 1.5.1.

What is new in version 8.0.22 / 7.0.61 / 6.0.43:

  • Fixed a crash when the poller returned multiple events for the same socket.
  • Link Windows binaries with OpenSSL 1.0.1m and APR 1.5.1.

What is new in version 8.0.21 / 7.0.59 / 6.0.43:

  • Fixed a crash when the poller returned multiple events for the same socket.
  • Link Windows binaries with OpenSSL 1.0.1m and APR 1.5.1.

What is new in version 8.0.17:

  • Correct a regression in annotation scanning introduced in 8.0.15.
  • The RemoteAddrValve and RemoteHostValve can now optionally include the port when filtering along with a new option to trigger authentication rather than denying access.
  • Various edge cases fixes in WebSocket.

What is new in version 8.0.15:

  • Added support for RFC6265 cookie parsing and generation. This is currently disabled by default and may be enabled via the CookieProcessor element of a Context.
  • Added pluggable password derivation support to the Realms via the new CredentialHandler interface.
  • Added support for TLSv1.1 and TLSv1.2 for APR connector. Based upon a patch by Marcel Šebek. This feature requires Tomcat Native library 1.1.32 or later.
  • Disabled SSLv3 by default for all HTTPS connectors.

What is new in version 8.0.12:

  • Fix a regression in the processing of includes and forwards when Contexts had been reloaded.
  • Session ID generation is now extensible.
  • Extend support for the permessage-deflate extension to compression of outgoing messages on the server side.

What is new in version 8.0.11:

  • Update to Tomcat Native Library version 1.1.31 to pick up the Windows binaries that are based on OpenSSL 1.0.1h
  • Added support for OpenSSL syntax for ciphers when using JSSE SSL connectors
  • Added support for the WebSocket permessage-deflate extension. This is currently limited to decompressing incoming messages on the server side.

What is new in version 8.0.9:

  • Support for Java Servlet 3.1, JavaServer Pages 2.3, Java Unified Expression Language 3.0 and Java WebSocket 1.0.
  • The default connector implementation is now the Java non-blocking implementation (NIO) for both HTTP and AJP.
  • A new resources implementation that replaces Aliases, VirtualLoader, VirtualDirContext, JAR resources and external repositories with a single, consistent approach for configuring additional Web application resources.

What is new in version 8.0.8:

  • Support for Java Servlet 3.1, JavaServer Pages 2.3, Java Unified Expression Language 3.0 and Java WebSocket 1.0.
  • The default connector implementation is now the Java non-blocking implementation (NIO) for both HTTP and AJP.
  • A new resources implementation that replaces Aliases, VirtualLoader, VirtualDirContext, JAR resources and external repositories with a single, consistent approach for configuring additional Web application resources.

What is new in version 7.0.47:

  • Ported the JSR-356 Java WebSocket 1.0 implementation from Apache Tomcat 8.
  • Deprecated the Apache Tomcat proprietary WebSocket API in favour of the new JSR-356 implementation.
  • Added a drawing board example to the WebSocket examples.

What is new in version 7.0.42:

  • Added support for time to first byte in the AccessLogValve.
  • Corrected a regression introduced in 7.0.39 (refactoring of base 64 encoding and decoding) that broke the JNDI Realm when userPassword was set and passwords were hashed with MD5 or SHA1.
  • Ensured that the build process produces Javadoc that is not vulnerable to CVE-2013-1571.

What is new in version 7.0.41:

  • Added a Servlet Filter that implements CORS.
  • Ensure that when Tomcat's anti-resource locking features are used that the temporary copy of the web application and not the original is removed when the web application stops.
  • Added support for the version attribute to the deploy command of the Ant tasks for interfacing with the text based Manager application.

What is new in version 7.0.40:

  • A fix for an information disclosure issue.
  • Various fixes to stop Tomcat attempting to parse text that looks like an EL expression in a JSP document as an EL expression when EL expressions are either not permitted or not enabled.
  • Improved handling and reporting if a ConcurrentModificationException occurs while checking for memory leaks when a web application is being stopped.

What is new in version 7.0.37:

  • Fixed the regression in the JspC tool that is used to pre-compile JSP pages introduced in 7.0.35.
  • Improved handling of ciphers and sslEnabledProtocols options for the BIO and NIO connectors. The behaviour of each connector is now the same. The values provided are pruned to those supported by the SSL implementation and when none of the remaining values are supported a warning is issued and the connector configured with an empty set of options (which essentially disables HTTPS support).
  • Updated to Commons Daemon 1.0.13.

What is new in version 7.0.35:

  • Integrated documentation of Tomcat 7 with Apache Comments System. People can leave their comments when reading the documentation online.
  • Improved detection of JAVA_HOME on OSX.
  • Added support for auto-detection and configuration of JARs on the classpath that provide tag plug-in implementations.

What is new in version 7.0.34:

  • Improvements to the AccessLogValve to better handle non-standard DST changes and to provide option for the current access log to have a standard name.
  • Fixed various JMX registration and deregistration issues.
  • Updated the Eclipse JDT compiler to 4.2.1.

What is new in version 7.0.33:

  • A fix to the AccessLogValve to address a bug that caused some entries to be made with incorrect time stamps.
  • A re-written, smaller, faster HTTP header parser.
  • Further performance improvements for Jasper, Tomcat's JSP engine.

What is new in version 7.0.32:

  • A new option to automatically remove old, unused versions (ones where there are no longer any active sessions) of applications deployed using parallel deployment.
  • Faster parsing of JSPs.
  • Making the members and deployer associated with a cluster visible via JMX.

What is new in version 7.0.30:

  • Significantly reduced memory footprint during web application start while Servlet 3.0 annotation and SCI scanning is in progress.
  • Adds support for scanning of classes that use Java 7 specific byte code for Servlet 3.0 annotation and SCI scanning.
  • Improvements to DIGEST and FORM authentication.

What is new in version 7.0.29:

  • Added support for a default error page
  • The servlet version defined in web.xml no longer determines if Tomcat scans for annotations when the web application starts. This is now solely controlled by metadata-complete element.
  • On web application start, JARs are now always scanned for ServletContainerInitializers regardless of the setting of metadata-complete.

What is new in version 7.0.28:

  • The minimum required APR/native library version required if the APR/native connector is used is now 1.1.24.
  • Various fixes and improvements to WebSocket support including the use of infinite time outs by default for WebSocket connections.
  • Various fixes and improvements to annotation scanning.

What is new in version 7.0.27:

  • Support for the WebSocket protocol (RFC6455). Both streaming and message based APIs are provided and the implementation currently fully passes the Autobahn test suite. Also included are several examples.
  • A number of fixes to the HTTP NIO connector, particularly when using Comet.
  • Improve the memory leak prevention and detection code so that it works well with JVMs from IBM.

What is new in version 7.0.26:

  • Improved @HandlesTypes processing which no longer loads all classes on web application start.
  • Ensure that POST bodies are available for reply after FORM authentication when using the AJP connectors
  • Corrected a regression that broke annotation scanning for many use cases including web applications packaged as WARs and many embedded scenarios.

What is new in version 5.5.35:

  • This release includes many bug fixes and a number of security fixes over Apache Tomcat 5.5.34.

What is new in version 7.0.23:

  • Added the ability to start and stop child containers.
  • Cache the results of parsing the global and host level context.xml files to improve start times.
  • Improved the handling of failed deployments so that a broken application can be fixed (e.g. via JMX) and another attempt made to start it rather than it having to be removed.

What is new in version 7.0.22:

  • Further improvements to the memory leak detection and prevention features.
  • Fix issue that prevented using SSL with the HTTP BIO connector and Java 7.
  • Add support for controlling which session attributes are replicated when using session replication (a.k.a clustering).

What is new in version 7.0.21:

  • A fix for CVE-2011-3190 that allowed an attacker to inject requests when Tomcat was configured behind a reverse proxy using the AJP protocol.
  • Multiple additions and improvements to the memory leak detection/prevention features.
  • Improved validation of received AJP messages.

What is new in version 7.0.20:

  • JSP files with dependencies in JARs are no longer recompiled on every
  • access thereby improving performance.
  • Update to version 1.1.22 of the native component of the AJP and HTTP
  • APR/native connectors.
  • Update to Commons Daemon 1.0.7.
  • Converted unit tests to JUnit 4.

What is new in version 7.0.19:

  • JSP recompilation is now triggered by any change (backwards as well as forwards) in the last modified time of the JSP or any of its dependencies.
  • Support for installing multiple instances with the Windows Installer.
  • Include jdbc-pool (an alternative database connection pool).

What is new in version 7.0.16:

  • NIO implementation of the AJP connector.
  • Enable Servlet 3 asynchronous processing support when using clustering.
  • Add parallel deployment support to the Manager's Ant tasks.

What is new in version 7.0.14:

  • New StuckThreadDetectionValve to identify long running requests.
  • JAAS authentication support for the JMXRemoteLifecycleListener.
  • Updated MIME type mappings to align with those of Apache httpd.

What is new in version 7.0.10:

  • Fixed bugs:
  • Add URL encoding where missing to parameters in URLs presented by Ant tasks to the Manager application.
  • Improve handling of SSL renegotiation by failing earlier when the request body contains more bytes than maxSavePostSize.
  • Improve shut down speed by not renewing threads during shut down when the ThreadLocalLeakPreventionListener is enabled.

What is new in version 7.0.8:

  • Catalina:
  • Fix NPE in CoyoteAdapter when postParseRequest() call fails.
  • 50709: Make ApplicationContextFacade non-final to enable extension.
  • When running under a security manager, user requests may fail with a security exception.
  • Coyote:
  • Reduce level of log message for invalid URL parameters from WARNING to INFO.
  • Fix hanging Servlet 3 asynchronous requests when using the APR based AJP connector.
  • Other:
  • Align server.xml installed by the Windows installer with the one bundled in zip/tar.gz files. The differences are LockOutRealm being used and AccessLogValve being enabled by default.

What is new in version 7.0.6:

  • Add an option to the Authenticators to force the creation of a session on authentication which may offer some performance benefits.
  • Correct removal of LifeCycleListenters from Containers via JMX.
  • Return the client's IP address rather than null for calls to getRemoteHost() when the APR connector is used with enableLookups="true" but the IP address is not resolveable.
  • Avoid leak caused by using a cached exception instance in JspDocumentParser and ProxyDirContext.
  • Make TagLibraryInfo.getTag() more robust at handling nulls.
  • Update to Commons Daemon 1.0.4.
  • Add support for maxActiveSessions attribute to BackupManager.

What is new in version 7.0.5 Beta:

  • Provide a mechanism to gracefully handle the case where users book-mark the form login page or otherwise misuse the FORM authentication process.
  • Fix threading issues in org.apache.catalina.security.SecurityUtil.

What is new in version 7.0.4 Beta:

  • Apache Tomcat 7.0 includes new features over Apache Tomcat 6.0, including support for the new Servlet 3.0, JSP 2.2 and EL 2.2 specifications, web application memory leak detection and prevention, improved security for the Manager and Host Manager applications, Generic CSRF protection, support for including external content directly in a web application (aliases), re-factoring (connectors, life-cycle) and lots of internal code clean-up.
  • The 7.0.4 release contains numerous bug fixes compared to 7.0.2.

What is new in version 6.0.26:

  • Encode all property files using ascii escaped UTF-8. Also fixes deployment problem when using French locale.

What is new in version 5.5.29:

  • Deprecate the jni Buffer and Thread classes.
  • Make location and filename of catalina.out configurable in catalina.sh.
  • Update Windows installer to use NSIS 2.45.
  • Correct MD5 generation in the build process.
  • Encode all property files using ascii escaped UTF-8.

Similar Software

clogger
clogger

13 May 15

LogBox
LogBox

1 Mar 15

Apache Geronimo
Apache Geronimo

13 Apr 15

Other Software of Developer Apache Software Foundation

Apache Wave
Apache Wave

13 Apr 15

Apache OpenJPA
Apache OpenJPA

20 Jul 15

Apache Buildr
Apache Buildr

20 Jul 15

Apache Tez
Apache Tez

11 Mar 16

Comments to Apache Tomcat

Comments not found
Add Comment
Turn on images!