Recently I’ve updated some of my development Tomcat instances from v5 to v6, which I would highly recommend.
But there was a new restriction in Tomcat 6 regarding the use of the InvokerServlet. For those of you who don’t know the InvokerServlet can catch all incoming requests to an Url (eg: /servlet/*) and forward them to registered servlets. Because I’m working on a rather old webapplication the InvokerServlet is still used.
Luckily you can still enable it in the web.xml of Tomcat (located in the <server>/conf/web.xml). Just uncomment the invoker part. However as I soon found out you also need to enable the privilege feature on each web-app in the context.xml file.