Solved

Question about Tomcat 7.x   regarding Alowed HTTP verbs

Posted on 2014-07-27
5
110 Views
Last Modified: 2014-08-29
Is it true the webapp controls the allowance of the VERBS if the webservice accepts it then so does Tomcat or is there
a setting to allow say PUT,GET,POST, DELETE   and what about OPTIONS or the other obscure verbs?
0
Comment
Question by:Robert Silver
  • 3
  • 2
5 Comments
 
LVL 58

Expert Comment

by:Gary
ID: 40223117
Not sure I'm following you but if your webapp doesn't recognize the verb then it's not going to do anything so it will end there.
0
 
LVL 2

Author Comment

by:Robert Silver
ID: 40248859
My question was really on a Tomcat 7.x or greater version server by default capable of handling PUT,DELETE, HEAD, OPTIONS and all the typical RESTFUL Verbs or is this fully controlled by what Spring MVC Rest controller specifies in each webapp?
0
 
LVL 58

Accepted Solution

by:
Gary earned 500 total points
ID: 40248869
controlled by what Spring MVC Rest controller - Simple answer is Yes
0
 
LVL 2

Author Comment

by:Robert Silver
ID: 40248977
Any Spring MVC controller I would  write e.g:
within a Conrtoller  class:
  @RequestMapping(method = RequestMethod.DELETE, value = "/{gameId}")
    ResponseEntity<Void> destroyGame(@PathVariable Long gameId) throws GameDoesNotExistException {
        this.gameRepository.remove(gameId);
        return new ResponseEntity<Void>(HttpStatus.OK);
    }
I mean to ask by default are these HTTP verbs enabled   or should I say not disable in versions 7.x and above?
0
 
LVL 2

Author Closing Comment

by:Robert Silver
ID: 40292907
I would have appreciated a bit of history like when in the history of Tomcat these verbs were enabled by default was that always the case?
I know Trace has to be enabled right? Also taking it another step if Mod_JK or  mod_proxy were used to go through an HTTPD apache server would those HTTP verbs  also be enabled by default Or are there additional settings needed on the Apache HTTPD server???
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Go is an acronym of golang, is a programming language developed Google in 2007. Go is a new language that is mostly in the C family, with significant input from Pascal/Modula/Oberon family. Hence Go arisen as low-level language with fast compilation…
Why do we like using grid based layouts in website design? Let's look at the live examples of websites and compare them to grid based WordPress themes.
This tutorial will introduce the viewer to VisualVM for the Java platform application. This video explains an example program and covers the Overview, Monitor, and Heap Dump tabs.
The viewer will learn how to dynamically set the form action using jQuery.

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now