Hi Chris,
but "allows" is part of RequestFilterValve.
Not in the current trunk. Your code expects the "allows" variable to
be of type String[], and no such variable exists in RequestFilterValve.
Right: the point of the RequestFilterValve is that you don't have to
override the process() meth
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Remon,
On 10/19/2011 12:23 PM, Remon Sadikni wrote:
> Hi Chris,
>>
>> If you overrode the process() method (and I'm sure you changed
>> other things, too, since the variable "allows" is not part of
>> RequestFilterValve), then you really aren't gett
Hi Chris,
If you overrode the process() method (and I'm sure you changed other
things, too, since the variable "allows" is not part of
RequestFilterValve), then you really aren't getting anything by
extending RequestFilterValve.
but "allows" is part of RequestFilterValve. I only extended this
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Remon,
On 10/19/2011 7:57 AM, Remon Sadikni wrote:
> I managed to get it working. If you are interested in my solution
> for Tomcat 6: I extended the Valve RequestFilterValve and overwrote
> the method process with this content:
>
> // Check the allo
Hi André, hi Christopher,
The use of HTTP BASIC authentication confuses things here because
of the credential transfer mechanism (HTTP headers). I suppose
you could write a Valve that sniffs the user's IP address and
then adds HTTP headers to the request for the "Authentication"
header to essent
Hi Christopher,
You
should probably extend ValveBase so you don't have to implement
all the silly management methods.
http://tomcat.apache.org/tomcat-7.0-doc/api/org/apache/catalina/valves/ValveBase.html
This
will let you implement only the important method: invoke().
ok, I will try
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
André,
On 9/27/2011 7:40 AM, André Warnier wrote:
> The reason why I was mentioning further complexity for the Valve
> solution, is that as far as I know, the HttpServletRequest object
> is "immutable" (iow read-only), as it is received.
For the mos
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Remon,
On 9/27/2011 5:14 AM, Remon Sadikni wrote:
> Hi André, hi Christopher,
>
> thanks for your answers.
>>
>> The use of HTTP BASIC authentication confuses things here because
>> of the credential transfer mechanism (HTTP headers). I suppose
>> y
Remon Sadikni wrote:
Hi André, hi Christopher,
thanks for your answers.
The use of HTTP BASIC authentication confuses things here because of
the credential transfer mechanism (HTTP headers). I suppose you could
write a Valve that sniffs the user's IP address and then adds HTTP
headers to the r
Hi André, hi Christopher,
thanks for your answers.
The use of HTTP BASIC authentication confuses things here because of
the credential transfer mechanism (HTTP headers). I suppose you could
write a Valve that sniffs the user's IP address and then adds HTTP
headers to the request for the "Authen
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
André,
On 9/26/2011 9:29 AM, André Warnier wrote:
> You may also want to have a look at SecurityFilter, which could
> well be an easier way for you
> (http://securityfilter.sourceforge.net/) I do not think that it has
> provisions for "automatically"
Remon Sadikni wrote:
Dear Tomcat developers and users,
I managed to restrict a web application by IP-adress with
RemoteAddrValve and to restrict another one by basic authentication. Now
I would like to restrict the same web application by both methods:
- If the user is inside a specific networ
Remon Sadikni wrote:
Dear Tomcat developers and users,
I managed to restrict a web application by IP-adress with
RemoteAddrValve and to restrict another one by basic authentication. Now
I would like to restrict the same web application by both methods:
- If the user is inside a specific networ
Dear Tomcat developers and users,
I managed to restrict a web application by IP-adress with
RemoteAddrValve and to restrict another one by basic authentication. Now
I would like to restrict the same web application by both methods:
- If the user is inside a specific network (e.g. 134.134.*.*),
14 matches
Mail list logo
