Re: [PROPOSAL] Tomcat 4 SecurityManager implementation

2001-01-16 Thread Craig R. McClanahan
Sorry not to get this out earlier ... comments intermixed. Glenn Nielsen wrote: > Here is my proposal for implementing the Java SecurityManager in Tocmat 4. > Work on implementing this proposal is in progress. Comments please? > > Tomcat 4 Java SecurityManager Proposal > > Tomca

Re: [PROPOSAL] Tomcat 4 SecurityManager implementation

2001-01-15 Thread Anil Vijendran
Hi Glenn, I had a few questions/comments on: > Jasper JSP class loading > The work directory will be moved inside the web application context > /WEB-INF/ directory. This will make security configuration easier > and security checks more efficient. The jasper work dir for a context > would be

Re: [PROPOSAL] Tomcat 4 SecurityManager implementation

2001-01-14 Thread Glenn Nielsen
Peter Donald wrote: > > At 12:46 14/1/01 -0600, Glenn Nielsen wrote: > >Tomcat 4 Java SecurityManager Proposal > > > > > >Tomcat 4 will require the Java SecurityManager, use of the > >SecurityManager will be optional when Tomcat is embedded in > >another application. > > Why not

Re: [PROPOSAL] Tomcat 4 SecurityManager implementation

2001-01-14 Thread Remy Maucherat
> -0. Why not make it optional for standard use as well? If I use Tomcat > for development only, I'm not concerned with security and don't > want to mess with policy files. Same here. There's a switch for the naming features, and I think it should be the same with the security manager. Remy --

Re: [PROPOSAL] Tomcat 4 SecurityManager implementation

2001-01-14 Thread Peter Donald
At 12:46 14/1/01 -0600, Glenn Nielsen wrote: >Tomcat 4 Java SecurityManager Proposal > > >Tomcat 4 will require the Java SecurityManager, use of the >SecurityManager will be optional when Tomcat is embedded in >another application. Why not always have it optional possibly determi

RE: [PROPOSAL] Tomcat 4 SecurityManager implementation

2001-01-14 Thread Paulo Gaspar
Tomcat would be a great tool to provide catalogs and presentations on CD - with additional advantages if there are already web versions of such applications. I know of a lot of people (me included) that would like to use Tomcat this way. I already implemented a proof of concept where a Delphi ap

Re: [PROPOSAL] Tomcat 4 SecurityManager implementation

2001-01-14 Thread Hans Bergsten
Glenn Nielsen wrote: > > Here is my proposal for implementing the Java SecurityManager in Tocmat 4. > Work on implementing this proposal is in progress. Comments please? > > Tomcat 4 Java SecurityManager Proposal > > Tomcat 4 will require the Java SecurityManager, use of the >

[PROPOSAL] Tomcat 4 SecurityManager implementation

2001-01-14 Thread Glenn Nielsen
Here is my proposal for implementing the Java SecurityManager in Tocmat 4. Work on implementing this proposal is in progress. Comments please? Tomcat 4 Java SecurityManager Proposal Tomcat 4 will require the Java SecurityManager, use of the SecurityManager will be optional whe