-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Baran,
On 9/25/14 4:15 PM, Baran Topal wrote: > The hierarchy is as this: > > <programnameunderCdriveProgramFiles>tomcat/webapps/ROOT/WEB-INF and > under WEB-INF, there is jsp folder in which it covers the jsp pages > of admin that i want to filter out for a particular IP. > > I think, there is no concern to make the change in server.xml > because there will be absolutely one web application under this > Tomcat. So, the change can be application-wide i guess. But you will have to completely bounce Tomcat in order to make any changes. This loses a lot of flexibility for you. > For just testing, within the given valve above, i can filter out > index.jsp which is in the path, > <programnameunderCdriveProgramFiles>/tomcat/webapps/ROOT/ and i can > filter that particular file successfully but fail to filter > <programnameunderCdriveProgramFiles>/tomcat/webapps/ROOT/WEB-INF/jsp/admin > > folder. Tomcat won't serve anything from within WEB-INF, so you don't need to specially protect that directory. Internal forwards and includes can include files from within WEB-INF, so you do need to be careful, there. Honestly, the best thing to do would be to implement proper role-based security which can work on url patterns instead of being so heavy-handed like a Valve is. I still think you have no idea what is going on here, but I wish you the best of luck if you think you've achieved your goal. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJUJIS1AAoJEBzwKT+lPKRYAW0P/02MA/q0RtJC6fzaq5EOfeLa UJc3slAk2n9ON/nRg+qqxo8oC20OB+bsvBDqn9QrGLIMFfuPQqLeJRIHpQEYMwML icvJkwrdl28thL85lZqCPKCfJn6e5F5Eu/q3b5vvCw0VF2VpDIvBnXXiZ1mM/RR+ 3n7xAJWBU0ju0dcm8nHmdpjvu5z1xmRHzIJwqXCpvrEYKloWVf5hcn0rTOT2+pvR c/SSaNk5KTy0d2WwqioC15KWgmMBg0Ef0PR7bzJaud8QJp8mQJjf95wdar9qf4Q2 rKtVQmhvZeGKtSzHRewU4c7gT461r7a20SAL5pjAcuDe89bEi46Jsk/mvUjOCq6t iGQ0TXVxui4LbPpGMIWvg2IpYefBFO0RZwMpfpuDs/XtIFaiVMhteM4t5bcshc7h MZIt86hvj1aOnUGBB4ad9d6fk9qhqc+/q1X864IKltoFdnAYWFHW7Wh+sYrRbxEH gydVGxstlWc8MQoHIAtBZi4LIXLFBdSdS1DcZvSlUMF2WtSWLrm7WZyjSvf9LLOj qpHlQ89p81hcByBwo4out5/w94Js2vxStME2ywyzW7/BxxEJ0p/sNVE3jJHMFn7j 2irPcpU9t98jkO4+rkNyvtuxxXdFQ0zEkTdTfZjWIP1AutRfdJifVKCUS+/eWPLk NebrmYZHXED63Dk5JAuQ =9Sb3 -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
