Re: pagecatalog still visible in production mode

Martin Strand Thu, 08 Dec 2011 19:11:34 -0800

You could configure your servlet container so that it doesn't return the proxy 
IP as request.remoteAddr, but instead uses the X-Forwarded-For header and 
returns the real client IP.


For Jetty, this is just a matter of setting forwarded=true on the connector
http://wiki.eclipse.org/Jetty/Howto/Configure_mod_proxy#Configuring_mod_proxy_as_a_Reverse_Proxy.5D:


On Fri, 09 Dec 2011 03:59:13 +0100, angelochen <angelochen...@yahoo.com.hk> 
wrote:

I'd prefer this to have the same behavior as servicestatus, I discovered this
when I rolled out a production version:

example.com:8080/pagecatalog   this works
example.com/pagecatalog   this shows everything

because in the server, apache server is used to proxy to tomcat, and t5 sees
it as localhost, that's whitelisted.


Howard Lewis Ship wrote


Try accessing PageCatalog from beyond your localhost  ... localhost is
"white listed", other IP addresses are not on the white list unless
you make a specific contribution.

See:


http://tapestry.apache.org/current/apidocs/org/apache/tapestry5/annotations/WhitelistAccessOnly.html

http://tapestry.apache.org/current/apidocs/org/apache/tapestry5/services/security/ClientWhitelist.html

On Thu, Dec 8, 2011 at 1:24 AM, angelochen &lt;angelochen960@.com&gt;
wrote:

hi,
setting production mode to true in 5.3, servicestatus not show details,
but
pagecatalog still shows everything.
what's the easy way to turn this off? Thanks,
angelo

--
View this message in context:
http://tapestry.1045711.n5.nabble.com/pagecatalog-still-visible-in-production-mode-tp5058173p5058173.html
Sent from the Tapestry - User mailing list archive at Nabble.com.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@.apache
For additional commands, e-mail: users-help@.apache




--
Howard M. Lewis Ship

Creator of Apache Tapestry

The source for Tapestry training, mentoring and support. Contact me to
learn how I can get you up and productive in Tapestry fast!

(971) 678-5210
http://howardlewisship.com

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@.apache
For additional commands, e-mail: users-help@.apache



--
View this message in context: 
http://tapestry.1045711.n5.nabble.com/pagecatalog-still-visible-in-production-mode-tp5058173p5060616.html
Sent from the Tapestry - User mailing list archive at Nabble.com.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tapestry.apache.org
For additional commands, e-mail: users-h...@tapestry.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tapestry.apache.org
For additional commands, e-mail: users-h...@tapestry.apache.org

Re: pagecatalog still visible in production mode

Reply via email to