Confluence version 7.4.0 and new Tomcat version does not work out-of-the-box

[thonixx]

Affected Puppet, Ruby, OS and module versions/distributions

• Module version: 3.2.0

How to reproduce (e.g Puppet code you use)

Install Confluence version 7.4.0 with this module

What are you seeing

catalina.out: Caused by: java.lang.IllegalArgumentException: The AJP Connector is configured with secretRequired="true" but the secret attribute is either null or "". This combination is not valid.

What behaviour did you expect instead

no error about secretRequired="true"

Any additional information you'd like to impart

After consulting my favoured search engine it seems that Tomcat introduced a new default behaviour around March 2020 which requires to pass a secret to the AJP connector or to disable the security feature with secretRequired="false".

As I am no expert in Tomcat configurations I do not know which changes need to be done in the module to get the Tomcat working within this module. Just disabling the feature by setting it to false in server.xml seems a bad idea as some sources in the internet refer to a CVE called Ghostcat (see dev.lucee.org/t/tomcat-cve-2020-1938-ghostcat-ajp/6650/4).

[timdeluxe]

FYI: This is already fixed in the repo, however there was no new release of the module since 2018 (i don't know why). If you want to have a working module in your setup put for example this into your Puppetfile instead of your current entry:
mod 'puppet-confluence', :git => 'https://github.com/voxpupuli/puppet-confluence', :ref => '847c6e3e8b05709ec136f503cb4fd4baf30786fc'