If you want to restrict what pages/data items the user sees and to implement security for your web applications then I would look at portals jetspeed is a Portal Manager meaning it will only show the pages that the user is authorised to view as defined within the security roles
Martin-- This e-mail communication and any attachments may contain confidential and privileged information for the use of the designated recipients named above. If you are not the intended recipient, you are hereby notified that you have received this communication in error and that any review, disclosure, dissemination, distribution or copying of it or its contents ----- Original Message ----- From: "David Smith" <[EMAIL PROTECTED]> To: "Tomcat Users List" <users@tomcat.apache.org> Sent: Thursday, October 26, 2006 7:19 AM Subject: Re: Tomcat Security Problem > To my knowledge there is no known functionality like that. IMHO System > Administrators should review all applications and make a determination > as to a specific app's safety in their environment. > > --David > > Stephan Schöffel wrote: > >> hi everbody, >> >> i need tomcat to run/deploy only "known" applications. at startup the >> container should somehow realize that a certain app is a "not >> authorized one" and not load it. >> >> maybe you can point out at me where to start. >> >> thanks in advance >> stephan >> >> --------------------------------------------------------------------- >> To start a new topic, e-mail: users@tomcat.apache.org >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> > > > --------------------------------------------------------------------- > To start a new topic, e-mail: users@tomcat.apache.org > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
