I've tried to find this but keep running into the three remote address valves (address, IP, and CIDR) what I'm looking for is an access valve that uses roles from a realm that checks roles to either path or web application identifiers - not remote address. This is classic authorization - role-based authorization.
-- Richard Monson-Haefel https://twitter.com/rmonson https://www.linkedin.com/in/monsonhaefel/
