Dirk Silkenbäumer via FreeIPA-users wrote:
> According to a different thread "tomcat pre-9.0.31.0 uses
'requiredSecret'
> and afterward uses 'secret'."
https://tomcat.apache.org/migration-9.html#Tomcat_9.0.x_noteable_changes
> I am running my FreeIPA server on CentOS 8 Stream which uses tomcat 9.0.30. My
uninformed
> guess is the last FreeIPA update from 4.9.3 to 4.9.6 configured "secret"
only
> and not "requiredSecret" which "broke" the config for the tomcat
> version used. Hope this helps.
I can confirm this behavior. After update from 4.9.3 to 4.9.6 on CentOS 8 Stream I had
two entries in <Connector ... /> - 'requiredSecret' with the correct
password and 'secret' with wrong password.
Thanks for pointing me to the right direction!
Hmm, not good. Any chance you have an old set of config files you can
pass me out-of-band, with the passwords obfuscated obviously, so I can
see what went wrong with the upgrade process?
rob