[root@cos7 ~ ]#yum list all |grep openjdk #本地自带
[root@cos7 ~ ]#yum install java-1.8.0-openjdk
[root@cos7 ~ ]#alternatives - -list #可以修改默认的jdk
[root@cos7 ~ ]#java -version
openjdk version "1.8.0_161"
OpenJDK Runtime Environment (build 1.8.0_161-b14)
OpenJDK 64-Bit Server VM (build 25.161-b14, mixed mode)
[root@cos7 ~ ]#yum info tomcat
Loaded plugins: fastestmirror, langpacks
Loading mirror speeds from cached hostfile
Available Packages
Name : tomcat
Arch : noarch
Version : 7.0.76
Release : 6.el7
Size : 91 k
Repo : base
Summary : Apache Servlet/JSP Engine, RI for Servlet 3.0/JSP 2.2 API
URL : http://tomcat.apache.org/
License : ASL 2.0
Description : Tomcat is the servlet container that is used in the official Reference
[root@cos7 ~ ]#yum list all |grep tomcat
jglobus-ssl-proxies-tomcat.noarch 2.1.0-6.el7 epel1
tomcat.noarch 7.0.76-6.el7 base
tomcat-admin-webapps.noarch 7.0.76-6.el7 base
tomcat-docs-webapp.noarch 7.0.76-6.el7 base
tomcat-el-2.2-api.noarch 7.0.76-6.el7 base
tomcat-javadoc.noarch 7.0.76-6.el7 base
tomcat-jsp-2.2-api.noarch 7.0.76-6.el7 base
tomcat-jsvc.noarch 7.0.76-6.el7 base
tomcat-lib.noarch 7.0.76-6.el7 base
tomcat-native.x86_64 1.2.17-1.el7 epel1
tomcat-servlet-3.0-api.noarch 7.0.76-6.el7 base
tomcat-webapps.noarch 7.0.76-6.el7 base
tomcatjss.noarch 7.2.1-6.el7 base
[root@cos7 ~ ]#yum install tomcat-admin-webapps.noarch tomcat-webapps.noarch
[root@cos7 ~ ]#rpm -ql tomcat
/etc/logrotate.d/tomcat
/etc/sysconfig/tomcat
/etc/tomcat
[root@cos7 ~ ]#systemctl start tomcat
[root@cos7 ~ ]#ss -ntlp #8080 java
rpm包安装
rpm包安装的程序环境:
配置文件目录:/etc/tomcat
主配置文件:server.xml
webapps存放位置:/var/lib/tomcat/webapps/
examples
manager
host-manager
docs
Unit File:tomcat.service
环境配置文件:/etc/sysconfig/tomcat
[root@cos27 ~ ]#rpm -ivh jdk-8u144-linux-x64.rpm
[root@cos27 ~ ]#vim /etc/profile.d/java.sh
export JAVA_HOME=/usr/java/default
export PATH=$JAVA_HOME/bin:$path
[root@cos27 ~ ]#exec bash
[root@cos27 ~ ]#java -version
java version "1.8.0_144"
Java(TM) SE Runtime Environment (build 1.8.0_144-b01)
Java HotSpot(TM) 64-Bit Server VM (build 25.144-b01, mixed mode)
[root@cos27 ~ ]#tar -xf apache-tomcat-8.5.33.tar.gz -C /usr/local
[root@cos27 ~ ]#cd /usr/local/
[root@cos27 local ]#ls
apache-tomcat-8.5.33 bin etc games include lib lib64 libexec sbin share src
[root@cos27 local ]#ln -s apache-tomcat-8.5.33 tomcat
lrwxrwxrwx 1 root root 20 Sep 7 13:05 tomcat -> apache-tomcat-8.5.33
[root@cos27 local ]#useradd tomcat
[root@cos27 local ]#id tomcat
uid=1001(tomcat) gid=1001(tomcat) groups=1001(tomcat)
[root@cos27 local ]#chown -R tomcat.tomcat ./*
[root@cos27 bin ]#cd /usr/local/tomcat/bin/
[root@cos27 bin ]#./catalina.sh
[root@cos27 tomcat ]#su - tomcat -c "/usr/local/tomcat/bin/catalina.sh start"
浏览器输入:192.168.31.27:8080
tomcat程序环境:
tomcat的目录结构
bin:脚本,及启动时用到的类;
conf:配置文件目录;
lib:库文件,Java类库,jar;
logs:日志文件目录;
temp:临时文件目录;
webapps:webapp的默认目录;
work:工作目录;
Tomcat的servlet
使用java语言编写:
tomcat的配置文件构成:
server.xml:主配置文件;
web.xml:每个webapp只有“部署”后才能被访问,它的部署方式通常由web.xml进行定义,其存放位置为WEB-INF/目录中;此文件为所有的webapps提供默认部署相关的配置;
context.xml:每个webapp都可以专用的配置文件,它通常由专用的配置文件context.xml来定义,其存放位置为WEB-INF/目录中;此文件为所有的webapps提供默认配置;
tomcat-users.xml:用户认证的账号和密码文件;
catalina.policy:当使用-security选项启动tomcat时,用于为tomcat设置安全策略;
catalina.properties:Java属性的定义文件,用于设定类加载器路径,以及一些与JVM调优相关参数;
logging.properties:日志系统相关的配置; log4j
Tomcat的核心组件:server.xml
<Server>
<Service>
<connector/>
<connector/>
...
<Engine>
<Host>
<Context/>
<Context/>
...
</Host>
<Host>
...
</Host>
...
</Engine>
</Service>
</Server>
/etc/tomcat
每一个组件都由一个Java“类”实现,这些组件大体可分为以下几个类型:
顶级组件:Server
服务类组件:Service
连接器组件:http, https, ajp(apache jserv protocol)
容器类:Engine, Host, Context
被嵌套类:valve, logger, realm, loader, manager, …
集群类组件:listener, cluster, …
[root@cos7 ~ ]#cd /etc/tomcat/
[root@cos7 tomcat ]#ls
Catalina catalina.properties context.xml logging.properties tomcat.conf web.xml
catalina.policy conf.d log4j.properties server.xml tomcat-users.xml
[root@cos7 tomcat ]#vim server.xml
tomcat:JSP
[root@cos7 tomcat ]#cd /usr/share/tomcat/
[root@cos7 tomcat ]#ls
bin conf lib logs temp webapps work
[root@cos7 webapps ]#cd /usr/share/java/tomcat/
[root@cos7 tomcat ]#ls;
annotations-api.jar commons-pool.jar tomcat-api.jar tomcat-jsp-2.2-api.jar
catalina-ant.jar extras tomcat-coyote.jar tomcat-juli.jar
catalina-ha.jar jasper-el.jar tomcat-el-2.2-api.jar tomcat-servlet-3.0-api.jar
catalina.jar jasper.jar tomcat-i18n-es.jar tomcat-util.jar
catalina-tribes.jar jasper-jdt.jar tomcat-i18n-fr.jar websocket-api.jar
commons-collections.jar log4j.jar tomcat-i18n-ja.jar
commons-dbcp.jar tomcat7-websocket.jar tomcat-jdbc.jar
JSP WebAPP的组织结构:
/: webapps的根目录
index.jsp, index.html:主页;
WEB-INF/:当前webapp的私有资源路径;通常用于存储当前webapp的web.xml和context.xml配置文件;
META-INF/:类似于WEB-INF/;
classes/:类文件,当前webapp所提供的类;
lib/:类文件,当前webapp所提供的类,被打包为jar格式;
webapp归档格式:
.war:webapp
.jar:EJB的类打包文件;
.rar:资源适配器类打包文件;
.ear:企业级webapp;
部署(deploy)webapp的相关操作:
deploy:将webapp的源文件放置于目标目录(网页程序文件存放目录),配置tomcat服务器能够基于web.xml和context.xml文件中定义的路径来访问此webapp;将其特有的类和依赖的类通过class loader装载至JVM;
部署有两种方式:
自动部署:auto deploy
手动部署:
冷部署:把webapp复制到指定的位置,而后才启动tomcat;
热部署:在不停止tomcat的前提下进行部署;
部署工具:manager、ant脚本、tcd(tomcat client deployer)等;
undeploy:反部署,停止webapp,并从tomcat实例上卸载webapp;
start:启动处于停止状态的webapp;
stop:停止webapp,不再向用户提供服务;其类依然在jvm上;
redeploy:重新部署;
手动提供一测试类应用,并冷部署:
# mkidr -pv /usr/local/tomcat/webapps/test/{classes,lib,WEB-INF}
创建文件/usr/local/tomcat/webapps/test/index.jsp
<%@ page language="java" %>
<%@ page import="java.util.*" %>
<html>
<head>
<title>Test Page</title>
</head>
<body>
<% out.println("hello world");
%>
</body>
</html>
自动部署
[root@cos7 ~ ]#mkdir myapp/{classes,lib,WET-INF,META-INF} -p
[root@cos7 myapp ]#vi index.jsp
[root@cos7 myapp ]#ls
classes index.jsp lib META-INF WET-INF
[root@cos7 ~ ]#cp -pr myapp /usr/share/tomcat/webapps/
浏览器输入http://192.168.31.7:8080/myapp/
可以看见hello world
tomcat工作目录
[root@cos7 work ]#rpm -ql tomcat
/var/cache/tomcat/work/
[root@cos7 ~ ]#cd /var/cache/tomcat/work/
[root@cos7 work ]#ls
Catalina
[root@cos7 work ]#tree
.
└── Catalina
└── localhost
├── myapp
│ └── org
│ └── apache
│ └── jsp
│ ├── index_jsp.class
│ └── index_jsp.java
└── sample
[root@cos7 work ]#vim Catalina/localhost/myapp/org/apache/jsp/index_jsp.java
web界面管理部署工具
[root@cos7 work ]#rpm -q tomcat-admin-webapps
tomcat-admin-webapps-7.0.76-6.el7.noarch
For example, to add the manager-gui role to a user named tomcat with a password of s3cret, add the following to the config file listed above.
浏览器提示信息
<role rolename="manager-gui"/>
<user username="tomcat" password="s3cret" roles="manager-gui"/>
[root@cos7 ~ ]#vim /etc/tomcat/tomcat-users.xml
<role rolename="manager-gui"/>
<user username="tomcat" password="tomcat" roles="manager-gui"/>
tomcat读取并放到内存中,重启tomcat
[root@cos7 ~ ]#systemctl restart tomcat
tomcat的两个管理应用:
manager:管理webapps应用程序
host-manager:管理虚拟主机
一个查看服务器连接状态
tomcat的常用组件配置:
tomcat单实例servlet最大32G,tomcat的bug,如果内存大,可以配置多个tomcat实例
Server:代表tomcat instance,即表现出的一个java进程;监听在8005端口,只接收“SHUTDOWN”。各server监听的端口不能相同,因此,在同一物理主机启动多个实例时,需要修改其监听端口为不同的端口;
Service
:用于实现将一个或多个connector组件关联至一个engine组件;
Connector
组件:端点
负责接收请求,常见的有三类http/https/ajp;
进入tomcat的请求可分为两类:
(1) standalone : 请求来自于客户端浏览器;
(2) 由其它的web server反代:来自前端的反代服务器;
nginx --> http connector --> tomcat
httpd(proxy_http_module) --> http connector --> tomcat
httpd(proxy_ajp_module) --> ajp connector --> tomcat
httpd(mod_jk) --> ajp connector --> tomcat
属性:
port="8080"
protocol="HTTP/1.1"
connectionTimeout="20000"
address:监听的IP地址;默认为本机所有可用地址;
maxThreads:最大并发连接数,默认为200;
enableLookups:是否启用DNS查询功能;
acceptCount:等待队列的最大长度;
secure:
sslProtocol:
Engine组件
:Servlet实例,即servlet引擎,其内部可以一个或多个host组件来定义站点; 通常需要通过defaultHost属性来定义默认的虚拟主机;
属性:
name=
defaultHost=”localhost”
jvmRoute=
Host组件
:位于engine内部用于接收请求并进行相应处理的主机或虚拟主机,示例:
<Host name="localhost" appBase="webapps"
unpackWARs="true" autoDeploy="true">
</Host>
Webapp
常用属性说明:
(1) appBase:此Host的webapps的默认存放目录,指存放非归档的web应用程序的目录或归档的WAR文件目录路径;可以使用基于$CATALINA_BASE变量所定义的路径的相对路径;
(2) autoDeploy:在Tomcat处于运行状态时,将某webapp放置于appBase所定义的目录中时,是否自动将其部署至tomcat;
示例:
<Host name="tc1.dhy.com" appBase="/appdata/webapps" unpackWARs="true" autoDeploy="true">
</Host>
# mkdir -pv /appdata/webapps
# mkdir -pv /appdata/webapps/ROOT/{lib,classes,WEB-INF}
提供一个测试页即可;
Context组件
:
示例:
<Context path="/PATH" docBase="/PATH/TO/SOMEDIR" reloadable=""/
[root@cos7 ~ ]#vim /etc/tomcat/server.xml
<Server port="8005" shutdown="SHUTDOWN">
<Connector port="8080" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8443" />
#上述可以监听多个端口,即复制后把端口更改为其它可用端口
<Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />
#ajp协议用的较少
<Engine name="Catalina" defaultHost="localhost" jvmRoute="jvm1">
#sun的jwp和asf的jserv重构后的项目名称Catelina,把多个tomcat构建为集群,彼此之间识别对方的标识符
<Realm className="org.apache.catalina.realm.LockOutRealm">
#认证文件
<Host name="localhost" appBase="webapps"
unpackWARs="true" autoDeploy="true">
#虚拟主机,使用主机名,tomcat仅支持基于主机名的虚拟主机,unpackWARs是war格式的可以自动解压,unpack译:卸下,接触
[root@cos7 ~ ]#telnet 127.0.0.1 8005
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
SHUTDOWN
Connection closed by foreign host.
#8005端口被关闭,不安全,可以把SHUODOWN改为给极其复杂的密码,或者端口改成-1,即禁止监听端口
虚拟主机host
[root@cos7 ~ ]#vim /etc/tomcat/server.xml
#再添加一个虚拟主机如下
<Host name="cos7.dhy.com" appBase="/data/webapps"
unpackWARs="true" autoDeploy="true"/>
</Engine>
[root@cos7 ~ ]#mkdir -p /data/webapps
[root@cos7 ~ ]#cd /data/webapps/
[root@cos7 webapps ]#mkdir ROOT/{WEB-INF,META-INF,classes,lib} -p
[root@cos7 webapps ]#vim ROOT/index.jsp
<%@ page language="java" %>
<html>
<head><title>TomcatA</title></head>
<body>
<h1><font color="red">TomcatA.dhy.com</font></h1>
<table align="centre" border="1">
<tr>
<td>Session ID</td>
<% session.setAttribute("dhy.com","dhy.com"); %>
<td><%= session.getId() %></td>
</tr>
<tr>
<td>Created on</td>
<td><%= session.getCreationTime() %></td>
</tr>
</table>
</body>
</html>
[root@cos7 webapps ]#systemctl restart tomcat
[root@cos7 webapps ]#ss -ntl
8080端口
[root@cos7 webapps ]#tail /var/log/tomcat/catalina.2018-09-07.log
[root@cos6 ~ ]#vim /etc/hosts
192.168.31.7 cos7.dhy.com
[root@cos6 ~ ]#curl cos7.dhy.com:8080
<html>
<head><title>TomcatA</title></head>
<body>
<h1><font color="red">TomcatA.dhy.com</font></h1>
<table align="centre" border="1">
<tr>
<td>Session ID</td>
<td>2F63FB6D9BECC4C903749039F6FE3589</td>
</tr>
<tr>
<td>Created on</td>
<td>1536308466812</td>
</tr>
</table>
</body>
</html>
C:\Windows\System32\drivers\etc\hosts
192.168.31.7 cos7.dhy.com
如图cos
context
[root@cos7 webapps ]#cp -r ROOT/ myapp
[root@cos7 webapps ]#ls
myapp ROOT
[root@cos7 webapps ]#pwd
/data/webapps
[root@cos7 ~ ]#vim /etc/tomcat/server.xml
<Host name="cos7.dhy.com" appBase="/data/webapps"
unpackWARs="true" autoDeploy="true">
<Context path="/myapp" docBase="myapp" reloadable=""/>
</Host>
</Engine>
[root@cos7 ~ ]#systemctl restart tomcat
浏览器输入http://cos7.dhy.com:8080/myapp/
[root@cos7 ~ ]#mkdir /data/myapp
[root@cos7 myapp ]#mkdir v1.1.{1,2,3}
[root@cos7 myapp ]#ln -s v1.1.3 latest
[root@cos7 myapp ]#cp -pr /data/webapps/myapp/* v1.1.3
[root@cos7 myapp ]#ls v1.1.3
classes index.jsp lib META-INF WEB-INF
[root@cos7 myapp ]#vim /etc/tomcat/server.xml
<Host name="cos7.dhy.com" appBase="/data/webapps"
unpackWARs="true" autoDeploy="true">
<Context path="/myapp" docBase="/data/myapp/latest" reloadable=""/>
</Host>
</Engine>
valve组件:
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
Valve存在多种类型:
定义访问日志:org.apache.catalina.valves.AccessLogValve
定义访问控制:org.apache.catalina.valves.RemoteAddrValve
<Valve className="org.apache.catalina.valves.RemoteAddrValve" deny="172\.16\.100\.67"/>
#访问控制,支持正则表达式,定义在host中deny,allow
#定义在host标签中,每一个虚拟主机都可以有一个单独的日志
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log." suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
单主机nginx与tomcat
"/etc/nginx/conf.d/www.conf" 14L, 230C 11,2-9 All
server {
listen 80;
server_name cos7 cos7.dhy.com;
index index.jsp index.html;
location / {
root /data/web/html;
# rewrite / /index.jsp last;
}
location ~* \.(jsp|do)$ {
proxy_pass http://cos7.localhost:8080;
}
}
单机上httpd的反向代理到本机器上的tomcat
很过公司开发的应用程序基于httpd的功能特性,nginx不支持
支持两种不同的连接器连入tomcat
proxy_http_module代理配置示例:
<VirtualHost *:80>
ServerName cos7 #服务器名称
ProxyRequests Off #正向代理
ProxyVia On #代理服务器是谁
ProxyPreserveHost On
<Proxy *>
Require all granted
</Proxy>
ProxyPass / http://127.0.0.1:8080/
ProxyPassReverse / http://127.0.0.1:8080/
<Location />
Require all granted
</Location>
</VirtualHost>
# <LocationMatch "\.(jsp|do)$>
# ProxyPass / http://tc1.dhy.com:8080/
# </LocationMatch>
proxy_ajp_module代理配置示例:
<VirtualHost *:80>
ServerName cos7.dhy.com
ProxyRequests Off
ProxyVia On
ProxyPreserveHost Off
<Proxy *>
Require all granted
</Proxy>
ProxyPass / ajp://127.0.0.1:8009/
ProxyPassReverse / ajp://127.0.0.1:8009/
<Location />
Require all granted
</Location>
</VirtualHost>
[root@cos27 ~ ]#yum install httpd
[root@cos27 ~ ]#httpd -M
lbmethod_bybusyness_module (shared) #类似lc(least connection)
lbmethod_byrequests_module (shared) #类似轮询roundrobin
lbmethod_bytraffic_module (shared) #根据链路流量调度
lbmethod_heartbeat_module (shared)
proxy_module (shared) #代理核心模块
proxy_ajp_module (shared) #ajp连接器
proxy_balancer_module (shared) #负载调度算法
proxy_http_module (shared) #http连接器
C:\Windows\System32\drivers\etc\hosts
192.168.31.7 cos7 cos7.dhy.com
[root@cos7 data ]#vim /etc/httpd/conf.d/www.conf
proxy_http_module代理配置示例:
[root@cos7 data ]#systemctl start httpd
如图7
[root@cos7 data ]#vim /etc/httpd/conf.d/www.conf
proxy_ajp_module代理配置示例:
[root@cos7 data ]#systemctl restart httpd
如图8