Doug Black wrote:
How can I best pass ips allowed by a valve to pass through to my application
while forcing ips that are denied to log in through a realm? The only possible
behavior I can detect of either RemoteAddrValve or RemoteHostValve is to force
requests through the IP or host filter and also through the user realm for the
context. Do I have to write a custom valve java class? How hard is this for an
intermediate Java writer? Any tips on how to do this?
take the source code of the RemoteAddrValve and start there.
Basically, in the valve is request.getPrincipal returns null, then
redirect them to a URL that is protected by your web.xml and requires a
login.
remember to not trigger the valve on the "protected" urls
Filip
I apologize that I submitted essentially the same question a couple days ago,
but I got no responses so I thought I'd try with a less verbose phrasing.
Thanks, Doug
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
