升级Tomcat版本 apache-tomcat-7.0.77
diff --git a/tomcat-cas/webapps/host-manager/WEB-INF/jsp/401.jsp b/tomcat-cas/webapps/host-manager/WEB-INF/jsp/401.jsp
index c71c9ea..6b0e501 100644
--- a/tomcat-cas/webapps/host-manager/WEB-INF/jsp/401.jsp
+++ b/tomcat-cas/webapps/host-manager/WEB-INF/jsp/401.jsp
@@ -14,6 +14,7 @@
See the License for the specific language governing permissions and
limitations under the License.
--%>
+<%@ page session="false" trimDirectiveWhitespaces="true" %>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
@@ -45,8 +46,8 @@
<user username="tomcat" password="s3cret" roles="admin-gui"/>
</pre>
<p>
- Note that for Tomcat 6.0.30 onwards, the roles required to use the host
- manager application were changed from the single <tt>admin</tt> role to the
+ Note that for Tomcat 7 onwards, the roles required to use the host manager
+ application were changed from the single <tt>admin</tt> role to the
following two roles. You will need to assign the role(s) required for
the functionality you wish to access.
</p>
@@ -59,8 +60,6 @@
To maintain the CSRF protection:
</p>
<ul>
- <li>The deprecated <tt>admin</tt> role should not be assigned to any
- user.</li>
<li>Users with the <tt>admin-gui</tt> role should not be granted the
<tt>admin-script</tt> role.</li>
<li>If the text interface is accessed through a browser (e.g. for testing