Subversion Repositories Integrator Subversion

<!DOCTYPE html SYSTEM "about:legacy-compat">

<html lang="en"><head><META http-equiv="Content-Type" content="text/html; charset=UTF-8"><link href="../images/docs-stylesheet.css" rel="stylesheet" type="text/css"><title>Apache Tomcat 9 Configuration Reference (9.0.112) - The Context Container</title></head><body><div id="wrapper"><header><div id="header"><div><div><div class="logo noPrint"><a href="https://tomcat.apache.org/"><img alt="Tomcat Home" src="../images/tomcat.png"></a></div><div style="height: 1px;"></div><div class="asfLogo noPrint"><a href="https://www.apache.org/" target="_blank"><img src="../images/asf-logo.svg" alt="The Apache Software Foundation" style="width: 266px; height: 83px;"></a></div><h1>Apache Tomcat 9 Configuration Reference</h1><div class="versionInfo">

            Version 9.0.112,

            <time datetime="2025-11-06">Nov 6 2025</time></div><div style="height: 1px;"></div><div style="clear: left;"></div></div></div></div></header><div id="middle"><div><div id="mainLeft" class="noprint"><div><nav><div><h2>Links</h2><ul><li><a href="../index.html">Docs Home</a></li><li><a href="index.html">Config Ref. Home</a></li><li><a href="https://cwiki.apache.org/confluence/display/TOMCAT/FAQ">FAQ</a></li><li><a href="#comments_section">User Comments</a></li></ul></div><div><h2>Top Level Elements</h2><ul><li><a href="server.html">Server</a></li><li><a href="service.html">Service</a></li></ul></div><div><h2>Executors</h2><ul><li><a href="executor.html">Executor</a></li></ul></div><div><h2>Connectors</h2><ul><li><a href="http.html">HTTP/1.1</a></li><li><a href="http2.html">HTTP/2</a></li><li><a href="ajp.html">AJP</a></li></ul></div><div><h2>Containers</h2><ul><li><a href="context.html">Context</a></li><li><a href="engine.html">Engine</a></li><li><a href="host.html">Host</a></li><li><a href="cluster.html">Cluster</a></li></ul></div><div><h2>Nested Components</h2><ul><li><a href="cookie-processor.html">CookieProcessor</a></li><li><a href="credentialhandler.html">CredentialHandler</a></li><li><a href="globalresources.html">Global Resources</a></li><li><a href="jar-scanner.html">JarScanner</a></li><li><a href="jar-scan-filter.html">JarScanFilter</a></li><li><a href="listeners.html">Listeners</a></li><li><a href="loader.html">Loader</a></li><li><a href="manager.html">Manager</a></li><li><a href="realm.html">Realm</a></li><li><a href="resources.html">Resources</a></li><li><a href="sessionidgenerator.html">SessionIdGenerator</a></li><li><a href="valve.html">Valve</a></li></ul></div><div><h2>Cluster Elements</h2><ul><li><a href="cluster.html">Cluster</a></li><li><a href="cluster-manager.html">Manager</a></li><li><a href="cluster-channel.html">Channel</a></li><li><a href="cluster-membership.html">Channel/Membership</a></li><li><a href="cluster-sender.html">Channel/Sender</a></li><li><a href="cluster-receiver.html">Channel/Receiver</a></li><li><a href="cluster-interceptor.html">Channel/Interceptor</a></li><li><a href="cluster-valve.html">Valve</a></li><li><a href="cluster-deployer.html">Deployer</a></li><li><a href="cluster-listener.html">ClusterListener</a></li></ul></div><div><h2>web.xml</h2><ul><li><a href="filter.html">Filter</a></li></ul></div><div><h2>Other</h2><ul><li><a href="runtime-attributes.html">Runtime attributes</a></li><li><a href="systemprops.html">System properties</a></li><li><a href="jaspic.html">JASPIC</a></li></ul></div></nav></div></div><div id="mainRight"><div id="content"><h2>The Context Container</h2><h3 id="Table_of_Contents">Table of Contents</h3><div class="text">

<ul><li><a href="#Introduction">Introduction</a><ol><li><a href="#Parallel_deployment">Parallel deployment</a></li><li><a href="#Naming">Naming</a></li><li><a href="#Defining_a_context">Defining a context</a></li></ol></li><li><a href="#Attributes">Attributes</a><ol><li><a href="#Common_Attributes">Common Attributes</a></li><li><a href="#Standard_Implementation">Standard Implementation</a></li></ol></li><li><a href="#Nested_Components">Nested Components</a></li><li><a href="#Special_Features">Special Features</a><ol><li><a href="#Logging">Logging</a></li><li><a href="#Access_Logs">Access Logs</a></li><li><a href="#Automatic_Context_Configuration">Automatic Context Configuration</a></li><li><a href="#Context_Parameters">Context Parameters</a></li><li><a href="#Environment_Entries">Environment Entries</a></li><li><a href="#Lifecycle_Listeners">Lifecycle Listeners</a></li><li><a href="#Request_Filters">Request Filters</a></li><li><a href="#Resource_Definitions">Resource Definitions</a></li><li><a href="#Resource_Links">Resource Links</a></li><li><a href="#Transaction">Transaction</a></li></ol></li></ul>

</div><h3 id="Introduction">Introduction</h3><div class="text">

    <p><em>

    The description below uses the variable name $CATALINA_BASE to refer the

    base directory against which most relative paths are resolved. If you have

    not configured Tomcat for multiple instances by setting a CATALINA_BASE

    directory, then $CATALINA_BASE will be set to the value of $CATALINA_HOME,

    the directory into which you have installed Tomcat.

    </em></p>

  <p>The <strong>Context</strong> element represents a <em>web

  application</em>, which is run within a particular virtual host.

  Each web application is based on a <em>Web Application Archive</em>

  (WAR) file, or a corresponding directory containing the corresponding

  unpacked contents, as described in the Servlet Specification (version

  2.2 or later).  For more information about web application archives,

  you can download the

  <a href="https://cwiki.apache.org/confluence/display/TOMCAT/Specifications">Servlet

  Specification</a>, and review the Tomcat

  <a href="../appdev/index.html">Application Developer's Guide</a>.</p>

  <p>The web application used to process each HTTP request is selected

  by Catalina based on matching the longest possible prefix of the

  Request URI against the <em>context path</em> of each defined Context.

  Once selected, that Context will select an appropriate servlet to

  process the incoming request, according to the servlet mappings defined

  by the web application deployment.</p>

  <p>You may define as many <strong>Context</strong> elements as you

  wish.  Each such Context MUST have a unique context name within a virtual

  host. The context path does not need to be unique (see <em>parallel

  deployment</em> below). In addition, a Context must be present with a

  context path equal to

  a zero-length string.  This Context becomes the <em>default</em>

  web application for this virtual host, and is used to process all

  requests that do not match any other Context's context path.</p>

  <div class="subsection"><h4 id="Parallel_deployment">Parallel deployment</h4><div class="text">

  <p><b>You may deploy multiple versions of a web application with the same

  context path at the same time.</b> The rules used to match requests to a

  context version are as follows:

  </p>

  <ul>

  <li>If no session information is present in the request, use the latest

  version.</li>

  <li>If session information is present in the request, check the session

  manager of each version for a matching session and if one is found, use that

  version.</li>

  <li>If session information is present in the request but no matching session

  can be found, use the latest version.</li>

  </ul>

  <p>The <a href="host.html">Host</a> may be configured (via the

  <code>undeployOldVersions</code>) to remove old versions deployed in this way

  once they are no longer in use.</p>

  </div></div>

  <div class="subsection"><h4 id="Naming">Naming</h4><div class="text">

  <p>When <code>autoDeploy</code> or <code>deployOnStartup</code> operations

  are performed by a Host, the name and context path of the web application are

  derived from the name(s) of the file(s) that define(s) the web application.

  Consequently, the context path <strong>may not</strong> be defined in a

  <code>META-INF/context.xml</code> embedded in the application and there is a

  close relationship between the <em>context name</em>, <em>context path</em>,

  <em>context version</em> and the <em>base file name</em> (the name minus any

  <code>.war</code> or <code>.xml</code> extension) of the file.</p>

  <p>If no version is specified then the <em>context name</em> is always the

  same as the <em>context path</em>. If the <em>context path</em> is the empty

  string then the <em>base name</em> will be ROOT (always in upper case)

  otherwise the <em>base name</em> will be the <em>context path</em> with the

  leading '/' removed and any remaining '/' characters replaced with '#'.</p>

  <p>If a version is specified then the <em>context path</em> remains unchanged

  and both the <em>context name</em> and the <em>base name</em> have the string

  '##' appended to them followed by the version identifier.</p>

  <p>Some examples of these naming conventions are given below.</p>

  <table class="detail-table">

    <tr>

      <th>Context Path</th>

      <th>Context Version</th>

      <th>Context Name</th>

      <th>Base File Name</th>

      <th>Example File Names (.xml, .war &amp; directory)</th>

    </tr>

    <tr>

      <td>/foo</td>

      <td><i>None</i></td>

      <td>/foo</td>

      <td>foo</td>

      <td>foo.xml, foo.war, foo</td>

    </tr>

    <tr>

      <td>/foo/bar</td>

      <td><i>None</i></td>

      <td>/foo/bar</td>

      <td>foo#bar</td>

      <td>foo#bar.xml, foo#bar.war, foo#bar</td>

    </tr>

    <tr>

      <td><i>Empty String</i></td>

      <td><i>None</i></td>

      <td><i>Empty String</i></td>

      <td>ROOT</td>

      <td>ROOT.xml, ROOT.war, ROOT</td>

    </tr>

    <tr>

      <td>/foo</td>

      <td>42</td>

      <td>/foo##42</td>

      <td>foo##42</td>

      <td>foo##42.xml, foo##42.war, foo##42</td>

    </tr>

    <tr>

      <td>/foo/bar</td>

      <td>42</td>

      <td>/foo/bar##42</td>

      <td>foo#bar##42</td>

      <td>foo#bar##42.xml, foo#bar##42.war, foo#bar##42</td>

    </tr>

    <tr>

      <td><i>Empty String</i></td>

      <td>42</td>

      <td>##42</td>

      <td>ROOT##42</td>

      <td>ROOT##42.xml, ROOT##42.war, ROOT##42</td>

    </tr>

  </table>

  <p>The version component is treated as a <code>String</code> both for

  performance reasons and to allow flexibility in versioning schemes. String

  comparisons are used to determine version order. If version is not specified,

  it is treated as the empty string.

  Therefore,

  <code>foo.war</code> will be treated as an earlier version than

  <code>foo##11.war</code> and

  <code>foo##11.war</code> will be treated as an earlier version than

  <code>foo##2.war</code>. If using a purely numerical versioning scheme it is

  recommended that zero padding is used so that <code>foo##002.war</code> is

  treated as an earlier version than <code>foo##011.war</code>.

  </p>

  <p>To get the current webapp version number in a servlet you should use

  <code>org.apache.catalina.webappVersion</code>

  <a href="runtime-attributes.html">attribute</a>, like this:

  <code>String webappVersion =

  (String)request.getServletContext().getAttribute("org.apache.catalina.webappVersion");

  </code>

  </p>

  <p>If you want to deploy a WAR file or a directory using a context path that

  is not related to the base file name then one of the following options must

  be used to prevent double-deployment:

  </p>

  <ul>

  <li>Disable autoDeploy and deployOnStartup and define all

  <strong>Context</strong>s in server.xml</li>

  <li>Locate the WAR and/or directory outside of the Host's

      <code>appBase</code> and use a context.xml file with a

      <code>docBase</code> attribute to define it.</li>

  </ul>

  </div></div>

  <div class="subsection"><h4 id="Defining_a_context">Defining a context</h4><div class="text">

  <p><b>It is NOT recommended to place &lt;Context&gt; elements directly in the

  server.xml file.</b> This is because it makes modifying the

  <strong>Context</strong> configuration more invasive since the main

  <code>conf/server.xml</code> file cannot be reloaded without restarting

  Tomcat. Default <strong>Context</strong> elements (see below) will also

  <strong>overwrite</strong> the configuration of any &lt;Context&gt; elements

  placed directly in server.xml. To prevent this, the <code>override</code>

  attribute of the <Context> element defined in server.xml should be set

  to <code>true</code>.</p>

  <p>Individual <strong>Context</strong> elements may be explicitly defined:

  </p>

  <ul>

  <li>In an individual file at <code>/META-INF/context.xml</code> inside the

  application files. Optionally (based on the Host's copyXML attribute)

  this may be copied to

  <code>$CATALINA_BASE/conf/[enginename]/[hostname]/</code> and renamed to

  application's base file name plus a ".xml" extension.</li>

  <li>In individual files (with a ".xml" extension) in the

  <code>$CATALINA_BASE/conf/[enginename]/[hostname]/</code> directory.

  The context path and version will be derived from the base name of the file

  (the file name less the .xml extension). This file will always take precedence

  over any context.xml file packaged in the web application's META-INF

  directory.</li>

  <li>Inside a <a href="host.html">Host</a> element in the main

  <code>conf/server.xml</code>.</li>

  </ul>

  <p>Default <strong>Context</strong> elements may be defined that apply to

  multiple web applications. Configuration for an individual web application

  will override anything configured in one of these defaults. Any nested

  elements, e.g. <Resource> elements, that are defined in a default

  <strong>Context</strong> will be created once for each

  <strong>Context</strong> to which the default applies. They will <b>not</b> be

  shared between <strong>Context</strong> elements.

  </p>

  <ul>

  <li>In the <code>$CATALINA_BASE/conf/context.xml</code> file:

  the Context element information will be loaded by all web applications.</li>

  <li>In the

  <code>$CATALINA_BASE/conf/[enginename]/[hostname]/context.xml.default</code>

  file: the Context element information will be loaded by all web applications

  of that host.</li>

  </ul>

  <p>With the exception of server.xml, files that define <strong>Context

  </strong> elements may only define a single <strong>Context</strong> element.

  </p>

  <p>In addition to explicitly specified Context elements, there are

  several techniques by which Context elements can be created automatically

  for you.  See <a href="host.html#Automatic_Application_Deployment">

  Automatic Application Deployment</a> and

  <a href="host.html#User_Web_Applications">User Web Applications</a>

  for more information.</p>

  <p>To define multiple contexts that use a single WAR file or directory,

  use one of the options described in the <a href="#Naming">Naming</a>

  section above for creating a <strong>Context</strong> that has a path

  that is not related to the base file name.</p>

  </div></div>

</div><h3 id="Attributes">Attributes</h3><div class="text">

  <div class="subsection"><h4 id="Common_Attributes">Common Attributes</h4><div class="text">

    <p>All implementations of <strong>Context</strong>

    support the following attributes:</p>

    <table class="defaultTable"><tr><th style="width: 15%;">

          Attribute

        </th><th style="width: 85%;">

          Description

        </th></tr><tr id="Attributes_Common Attributes_allowCasualMultipartParsing"><td><code class="attributeName">allowCasualMultipartParsing</code></td><td>

        <p>Set to <code>true</code> if Tomcat should automatically parse

        multipart/form-data request bodies when HttpServletRequest.getPart*

        or HttpServletRequest.getParameter* is called, even when the

        target servlet isn't marked with the @MultipartConfig annotation

        (See Servlet Specification 3.0, Section 3.2 for details).

        Note that any setting other than <code>false</code> causes Tomcat

        to behave in a way that is not technically spec-compliant.

        The default is <code>false</code>.</p>

      </td></tr><tr id="Attributes_Common Attributes_allowMultipleLeadingForwardSlashInPath"><td><code class="attributeName">allowMultipleLeadingForwardSlashInPath</code></td><td>

        <p>Tomcat normalises sequences of multiple <code>/</code> characters in

        a URI to a single <code>/</code>. This is for consistency with the

        behaviour of file systems as URIs are often translated to file system

        paths. As a result, the return value of

        <code>HttpServletRequest#getContextPath()</code> is expected to start

        with multiple <code>/</code> characters for some URIs. This will cause

        problems if this value is used directly with

        <code>HttpServletResponse#sendRedirect()</code> as redirect paths that

        start with <code>//</code> are treated as protocol relative redirects.

        To avoid potential issues, Tomcat will collapse multiple leading

        <code>/</code> characters at the start of the return value for

        <code>HttpServletRequest#getContextPath()</code> to a single

        <code>/</code>. This attribute has a default value of <code>false</code>

        which enables the collapsing of multiple <code>/</code> characters. To

        disable this behaviour, set this attribute to <code>true</code>.</p>

      </td></tr><tr id="Attributes_Common Attributes_altDDName"><td><code class="attributeName">altDDName</code></td><td>

        <p>The absolute path to the alternative deployment descriptor for this

        context. This overrides the default deployment descriptor located at

        <code>/WEB-INF/web.xml</code>.</p>

      </td></tr><tr id="Attributes_Common Attributes_backgroundProcessorDelay"><td><code class="attributeName">backgroundProcessorDelay</code></td><td>

        <p>This value represents the delay in seconds between the

        invocation of the backgroundProcess method on this context and

        its child containers, including all wrappers.

        Child containers will not be invoked if their delay value is not

        negative (which would mean they are using their own processing

        thread). Setting this to a positive value will cause

        a thread to be spawn. After waiting the specified amount of time,

        the thread will invoke the backgroundProcess method on this host

        and all its child containers. A context will use background

        processing to perform session expiration and class monitoring for

        reloading. If not specified, the default value for this attribute is

        -1, which means the context will rely on the background processing

        thread of its parent host.</p>

      </td></tr><tr id="Attributes_Common Attributes_className"><td><code class="attributeName">className</code></td><td>

        <p>Java class name of the implementation to use.  This class must

        implement the <code>org.apache.catalina.Context</code> interface.

        If not specified, the standard value (defined below) will be used.</p>

      </td></tr><tr id="Attributes_Common Attributes_containerSciFilter"><td><code class="attributeName">containerSciFilter</code></td><td>

        <p>The regular expression that specifies which container provided SCIs

        should be filtered out and not used for this context. Matching uses

        <code>java.util.regex.Matcher.find()</code> so the regular expression

        only has to match a sub-string of the fully qualified class name of the

        container provided SCI for it to be filtered out. If not specified,

        no filtering will be applied.</p>

      </td></tr><tr id="Attributes_Common Attributes_cookies"><td><code class="attributeName">cookies</code></td><td>

        <p>Set to <code>true</code> if you want cookies to be used for

        session identifier communication if supported by the client (this

        is the default).  Set to <code>false</code> if you want to disable

        the use of cookies for session identifier communication, and rely

        only on URL rewriting by the application.</p>

      </td></tr><tr id="Attributes_Common Attributes_createUploadTargets"><td><code class="attributeName">createUploadTargets</code></td><td>

        <p>Set to <code>true</code> if Tomcat should attempt to create the

        temporary upload location specified in the <code>MultipartConfig</code>

        for a Servlet if the location does not already exist. If not specified,

        the default value of <code>false</code> will be used.</p>

      </td></tr><tr id="Attributes_Common Attributes_crossContext"><td><code class="attributeName">crossContext</code></td><td>

        <p>Set to <code>true</code> if you want calls within this application

        to <code>ServletContext.getContext()</code> to successfully return a

        request dispatcher for other web applications running on this virtual

        host.  Set to <code>false</code> (the default) in security

        conscious environments, to make <code>getContext()</code> always

        return <code>null</code>.</p>

      </td></tr><tr id="Attributes_Common Attributes_dispatchersUseEncodedPaths"><td><code class="attributeName">dispatchersUseEncodedPaths</code></td><td>

        <p>Controls whether paths used in calls to obtain a request dispatcher

        ares expected to be encoded. This affects both how Tomcat handles calls

        to obtain a request dispatcher as well as how Tomcat generates paths

        used to obtain request dispatchers internally. If not specified, the

        default value of <code>true</code> is used. When encoding/decoding paths

        for a request dispatcher, UTF-8 is always used.</p>

      </td></tr><tr id="Attributes_Common Attributes_docBase"><td><strong><code class="attributeName">docBase</code></strong></td><td>

        <p>The <em>Document Base</em> (also known as the <em>Context

        Root</em>) directory for this web application, or the pathname

        to the web application archive file (if this web application is

        being executed directly from the WAR file). You may specify

        an absolute pathname for this directory or WAR file, or a pathname

        that is relative to the <code>appBase</code> directory of the

        owning <a href="host.html">Host</a>.</p>

        <p>The value of this field must not be set unless the Context element is

        defined in server.xml or the <code>docBase</code> is not located under

        the <a href="host.html">Host</a>'s <code>appBase</code>.</p>

        <p>If a symbolic link is used for <code>docBase</code> then changes to

        the symbolic link will only be effective after a Tomcat restart or

        by undeploying and redeploying the context. A context reload is not

        sufficient.</p>

      </td></tr><tr id="Attributes_Common Attributes_encodedReverseSolidusHandling"><td><code class="attributeName">encodedReverseSolidusHandling</code></td><td>

        <p>When set to <code>reject</code>, an attempt to obtain a

        <code>RequestDispatcher</code> for a path containing a <code>%5c</code>

        sequence will trigger an <code>IllegalArgumentException</code>. When set

        to <code>decode</code>, any <code>%5c</code> sequence in the path used

        to obtain a <code>RequestDispatcher</code> will have that sequence

        decoded to <code>\</code> (and then normalized to <code>/</code>) before

        the <code>RequestDispatcher</code> is created. When set to

        <code>passthrough</code>, any <code>%5c</code> sequence in the path used

        to obtain a <code>RequestDispatcher</code> will remain unchanged.</p>

        <p>If <code>passthrough</code> is used then it is the application's

        responsibility to perform any further <code>%nn</code> decoding required.

        Any <code>%25</code> sequences (encoded <code>%</code>) in the path will

        also be processed with the <code>%25</code> sequence unchanged

        to avoid potential corruption and/or decoding failure when the path is

        subsequently <code>%nn</code> decoded by the application.</p>

        <p>If not specified, the default value is <code>decode</code>.</p>

      </td></tr><tr id="Attributes_Common Attributes_encodedSolidusHandling"><td><code class="attributeName">encodedSolidusHandling</code></td><td>

        <p>When set to <code>reject</code>, an attempt to obtain a

        <code>RequestDispatcher</code> for a path containing a <code>%2f</code>

        sequence will trigger an <code>IllegalArgumentException</code>. When set

        to <code>decode</code>, any <code>%2f</code> sequence in the path used

        to obtain a <code>RequestDispatcher</code> will have that sequence

        decoded to <code>/</code> before the <code>RequestDispatcher</code> is

        created. When set to <code>passthrough</code>, any <code>%2f</code>

        sequence in the path used to obtain a <code>RequestDispatcher</code>

        will remain unchanged.</p>

        <p>If <code>passthrough</code> is used then it is the application's

        responsibility to perform any further <code>%nn</code> decoding required.

        Any <code>%25</code> sequences (encoded <code>%</code>) in the path will

        also be processed with the <code>%25</code> sequence unchanged

        to avoid potential corruption and/or decoding failure when the path is

        subsequently <code>%nn</code> decoded by the application.</p>

        <p>If not specified, the default value is <code>decode</code>. This

        default will change to <code>reject</code> (to align with the

        <strong>Connector</strong>) in Tomcat 12.</p>

      </td></tr><tr id="Attributes_Common Attributes_failCtxIfServletStartFails"><td><code class="attributeName">failCtxIfServletStartFails</code></td><td>

        <p>Set to <code>true</code> to have the context fail its startup if any

        servlet that has load-on-startup &gt;=0 fails its own startup.</p>

        <p>If not specified, the attribute of the same name in the parent Host

        configuration is used if specified. Otherwise the default value of

        <code>false</code> is used.</p>

      </td></tr><tr id="Attributes_Common Attributes_fireRequestListenersOnForwards"><td><code class="attributeName">fireRequestListenersOnForwards</code></td><td>

        <p>Set to <code>true</code> to fire any configured

        ServletRequestListeners  when Tomcat forwards a request. This is

        primarily of use to users of CDI frameworks that use

        ServletRequestListeners to configure the necessary environment for a

        request. If not specified, the default value of <code>false</code> is

        used.</p>

      </td></tr><tr id="Attributes_Common Attributes_logEffectiveWebXml"><td><code class="attributeName">logEffectiveWebXml</code></td><td>

        <p>Set to <code>true</code> if you want the effective web.xml used for a

        web application to be logged (at INFO level) when the application

        starts. The effective web.xml is the result of combining the

        application's web.xml with any defaults configured by Tomcat and any

        web-fragment.xml files and annotations discovered. If not specified, the

        default value of <code>false</code> is used.</p>

      </td></tr><tr id="Attributes_Common Attributes_mapperContextRootRedirectEnabled"><td><code class="attributeName">mapperContextRootRedirectEnabled</code></td><td>

        <p>If enabled, requests for a web application context root will be

        redirected (adding a trailing slash) if necessary by the Mapper rather

        than the default Servlet. This is more efficient but there are security

        side effects. First, the existence of a web application or a directory

        may be confirmed even though the user does not have access to that

        directory. Secondly, any Valves and/or Filters - including those

        providing security functionality - will not have an opportunity to

        process the request. If not specified, the default value of

        <code>true</code> is used.</p>

      </td></tr><tr id="Attributes_Common Attributes_mapperDirectoryRedirectEnabled"><td><code class="attributeName">mapperDirectoryRedirectEnabled</code></td><td>

        <p>If enabled, requests for a web application directory will be

        redirected (adding a trailing slash) if necessary by the Mapper rather

        than the default Servlet. This is more efficient but there are security

        side effects. First, the existence of a web application or a directory

        may be confirmed even though the user does not have access to that

        directory. Secondly, any Valves and/or Filters - including those

        providing security functionality - will not have an opportunity to

        process the request. If not specified, the default value of

        <code>false</code> is used.</p>

      </td></tr><tr id="Attributes_Common Attributes_override"><td><code class="attributeName">override</code></td><td>

        <p>Set to <code>true</code> to ignore any settings in both the global

        or <a href="host.html">Host</a> default contexts.  By default, settings

        from a default context will be used but may be overridden by a setting

        the same attribute explicitly for the Context.</p>

      </td></tr><tr id="Attributes_Common Attributes_parallelAnnotationScanning"><td><code class="attributeName">parallelAnnotationScanning</code></td><td>

        <p>When set to <code>true</code> annotation scanning will be performed

        using the utility executor. It will allow processing scanning in

        parallel which may improve deployment type at the expense of higher

        server load. If not specified, the default of <code>false</code> is

        used.</p>

      </td></tr><tr id="Attributes_Common Attributes_path"><td><code class="attributeName">path</code></td><td>

        <p>The <em>context path</em> of this web application, which is

        matched against the beginning of each request URI to select the

        appropriate web application for processing.  All of the context paths

        within a particular <a href="host.html">Host</a> must be unique.

        If you specify a context path of an empty string (""), you are

        defining the <em>default</em> web application for this Host, which

        will process all requests not assigned to other Contexts.</p>

        <p>This attribute must only be used when statically defining a Context

        in server.xml. In all other circumstances, the path will be inferred

        from the filenames used for either the .xml context file or the

        <code>docBase</code>.

        </p>

        <p>Even when statically defining a Context in server.xml, this attribute

        must not be set unless either the <code>docBase</code> is not located

        under the <a href="host.html">Host</a>'s <code>appBase</code> or

        both <code>deployOnStartup</code> and <code>autoDeploy</code> are

        <code>false</code>. If this rule is not followed, double deployment is

        likely to result.</p>

      </td></tr><tr id="Attributes_Common Attributes_preemptiveAuthentication"><td><code class="attributeName">preemptiveAuthentication</code></td><td>

        <p>When set to <code>true</code> and the user presents credentials for a

        resource that is not protected by a security constraint, if the

        authenticator supports preemptive authentication (the standard

        authenticators provided with Tomcat do) then the user' credentials

        will be processed. If not specified, the default of <code>false</code> is

        used.

        </p>

      </td></tr><tr id="Attributes_Common Attributes_privileged"><td><code class="attributeName">privileged</code></td><td>

        <p>Set to <code>true</code> to allow this context to use container

        servlets, like the manager servlet. Use of the <code>privileged</code>

        attribute will change the context's parent class loader to be the

        <em>Server</em> class loader rather than the <em>Shared</em> class

        loader. Note that in a default installation, the <em>Common</em> class

        loader is used for both the <em>Server</em> and the <em>Shared</em>

        class loaders.</p>

      </td></tr><tr id="Attributes_Common Attributes_reloadable"><td><code class="attributeName">reloadable</code></td><td>

        <p>Set to <code>true</code> if you want Catalina to monitor classes in

        <code>/WEB-INF/classes/</code> and <code>/WEB-INF/lib</code> for

        changes, and automatically reload the web application if a change

        is detected.  This feature is very useful during application

        development, but it requires significant runtime overhead and is

        not recommended for use on deployed production applications.  That's

        why the default setting for this attribute is <i>false</i>.  You

        can use the <a href="../manager-howto.html">Manager</a> web

        application, however, to trigger reloads of deployed applications

        on demand.</p>

      </td></tr><tr id="Attributes_Common Attributes_resourceOnlyServlets"><td><code class="attributeName">resourceOnlyServlets</code></td><td>

        <p>Comma separated list of Servlet names (as used in

        <code>/WEB-INF/web.xml</code>) that expect a resource to be present.

        Ensures that welcome files associated with Servlets that expect a

        resource to be present (such as the JSP Servlet) are not used when there

        is no resource present. This prevents issues caused by the clarification

        of welcome file mapping in section 10.10 of the Servlet 3.0

        specification. If the

        <code>org.apache.catalina.STRICT_SERVLET_COMPLIANCE</code>

        <a href="systemprops.html">system property</a> is set to

        <code>true</code>, the default value of this attribute will be the empty

        string, else the default value will be <code>jsp</code>.</p>

      </td></tr><tr id="Attributes_Common Attributes_sendRedirectBody"><td><code class="attributeName">sendRedirectBody</code></td><td>

        <p>If <code>true</code>, redirect responses will include a short

        response body that includes details of the redirect as recommended by

        RFC 2616. This is disabled by default since including a response body

        may cause problems for some application component such as compression

        filters.</p>

      </td></tr><tr id="Attributes_Common Attributes_sessionCookieDomain"><td><code class="attributeName">sessionCookieDomain</code></td><td>

        <p>The domain to be used for all session cookies created for this

        context. If set, this overrides any domain set by the web application.

        If not set, the value specified by the web application, if any, will be

        used.</p>

      </td></tr><tr id="Attributes_Common Attributes_sessionCookieName"><td><code class="attributeName">sessionCookieName</code></td><td>

        <p>The name to be used for all session cookies created for this

        context. If set, this overrides any name set by the web application.

        If not set, the value specified by the web application, if any, will be

        used, or the name <code>JSESSIONID</code> if the web application does

        not explicitly set one.</p>

      </td></tr><tr id="Attributes_Common Attributes_sessionCookiePath"><td><code class="attributeName">sessionCookiePath</code></td><td>

        <p>The path to be used for all session cookies created for this

        context. If set, this overrides any path set by the web application.