- Java must be installed before installing Apache Tomcat.
- There are issues with Tomcat 8.
- With OpenMRS 1.8+ it is necessary to increase the Tomcat Permgen memory after installing Tomcat but before deploying OpenMRS. More information: https://wiki.openmrs.org/display/docs/Troubleshooting+Memory+Errors
- Download the latest available version of Tomcat. You can use the .exe version, which installs Tomcat as a service or the .zip archive. At the time of writing, any version less than Tomcat 7.0 fails to properly launch the OpenMRS application.
- Execute the file and install running the default settings o Accept the license agreement
- Accept default destination folder
- Accept HTTP/1.1 Connector Port 8080
- Set Administrator login (username/password)
- Accept the Java directory detected
- Select Install Tomcat# After installation is complete you will need to change users roles by following this directory on your windows explorer
- C:\Program Files\Apache Software Foundation\Tomcat 6.0\conf
- Locate the file "tomcat-users.xml" and try to open it.
- Most likely your operating system will fail to detect the application that opens the file so make a right-click on the file then select down the menu Open With > Notepad
- You will notice that a text editor will show up then locate this character set <tomcat-users> The character set is located on line 18 of the file.
- Open the Tomcat users file (e.g. C:\Program Files\Apache Software Foundation\Tomcat 6.0\conf\tomcat-users.xml) in a text editor.
- Create a new user called admin with the roles admin, manager and manager-gui. This file should be protected so you will need to open it as Administrator (right-click on your text editor and select "Run as administrator")
Then save the file
- Your operating system might bring an error message that indicates that you do not have sufficient privileges to save the file. Then it will ask you to save it in a different directory.
- You need to save the file in the current directory, right-click on the file "tomcat-users" and click on Properties, at the bottom of the menu.
- Navigate to the "Security" tab
- Select the username you are currently using on the machine
- Click the "Edit" button
- Permissions table will allow you to edit your privileges as a user.
- Click on Full Control then click OK and then OK again
- Now, you should be able to edit and save the file in the same directory.
(Optional) If you've installed Tomcat as a service, you can configure it to start automatically when the computer boots:
- Start > Settings > Control Panel > Administrative Tools > Services
- Right Click "Apache Tomcat" > Properties > Set "Startup Type" to Automatic
- Click Start or restart your pc
Other operating systems
- Download the zip archive of Tomcat 6.0.29
- Unpack the zip file to a suitable location such as /opt on Linux or /Library on Mac OSX
Open the Tomcat users file (e.g. /opt/tomcat/conf/tomcat-users.xml) in a text editor. Create a new user called admin with the roles admin,manager and manager-gui. This file should be protected so you will need to open it as root (e.g. sudo nano /opt/tomcat/conf/tomcat-users.xml)
As a package for Debian, Ubuntu & other Unix systems
- Run the following command from a terminal
Open the Tomcat users file (e.g. /etc/tomcat7/tomcat-users.xml) in a text editor. Create a new user called admin with the roles admin,manager and manager-gui. This file should be protected so you will need to open it as root (e.g. sudo nano __/etc/tomcat/tomcat-users.xml)
Turn off tomcat security flag in /etc/init.d/tomcat7 file: Find "TOMCAT7_SECURITY=yes" and change it to "TOMCAT7_SECURITY=no" For Tomcat 7, it is "no" by default.
Create OpenMRS application data directory and make it writable by Tomcat: (so that the runtime properties file can be written by the webapp during initial startup)
To know more about the recommended application directory for OpenMRS refer to this discussion on Talk.
To start/stop/restart tomcat7, please type the following commands:
Jetty as an alternative to Tomcat
This is meant to run in a Linux environment.
- Download the Jetty 7.4.5 tar.gz from here. Don't download 7.5.4; it may not recognize the jdk that you have installed.
- Unpack the tar file to your preferred directory (I usually use /usr/share/jetty)
Now to make it start when you start the system and make Jetty a service
Edit /etc/init.d/jetty to include the following two lines after the comments so Jetty knows where your Java and Jetty directories are.
Jetty is now officially installed and can be run as a service. Now you can run Jetty by using the following command. First put the openmrs.war in to /usr/share/jetty/webapps/ so Jetty will know to run the war.
In newest versions of Tomcat(> version 7), by default HttpOnly flag will be set by the server. But in older versions of Tomcat, it needs to set this flag through a configuration. The HttpOnly flag is an additional flag that is used to prevent an XSS (Cross-Site Scripting) exploit from taking access to the session cookie. Because one of the most known ways of subjecting to an XSS attack is access to the session cookie, and to subsequently hijack the victim’s session, the HttpOnly flag is a useful prevention mechanism where a client side script won't be able to access the session cookie from. To add the HttpOnly flag to session cookies in older versions of Tomcat, you need to edit the <TOMCAT_HOME>/conf/context.xml to add useHttpOnly="true" attribute as below: