Application logging broken under Tomcat 9: permission denied to /var/log/myapp

This is caused by new systemd sandboxing around tomcat 9 as part of Debian/Ubuntu. To solve the problem you need to tell systemd to allow read write access to additional directories for Tomcat.

sudo mkdir -p /etc/systemd/system/tomcat9.service.d
echo -e "[Service]\nReadWritePaths=/var/log/" | sudo tee /etc/systemd/system/tomcat9.service.d/logging-allow.conf
sudo systemctl daemon-reload
sudo systemctl restart tomcat9

After making these changes, web apps can once again write to their own directories in /var/log.

Source: Debian Tomcat 9 release notes

Application logging broken under Tomcat 9: permission denied to /var/log/myapp

Tags:

Logging

Permissions

File Permissions

Log Files

Tomcat9

Related

Recent Posts