How to check whether HTTP method PUT or DELETE from Tomcat used by catalog is blocked or not ?

Document ID : KB000016008
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

Catalog is using Tomcat .  Sometimes you will need to check whether  HTTP Methods PUT or DELETE from tomcat that catalog is using  is actually blocked   so that you can   make sure that they are not exposed for cyber attack 

Question:

How to check whether or not the HTTP method PUT or DELETE from Tomcat ( used by catalog )  is blocked  ? 

Environment:
catalog 12.9, 14.1 , 17.0
Answer:

The best way to verify  if Tomcat HTTP methods  PUT or DELETE is to use a tool like postman   (  you can download postman app from  get postman app here  

See the screenshots below ,  all you need to do is to simply give catalog url and choose the method  and then click 'send' :

GET method is ‘permitted’

 

GET.gif

PUT method is ‘forbidden’

PUT.gif

 

Note :

By default,  Tomcat's HTTP PUT or DELETE method is blocked already .