-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mark,
Mark Thomas wrote: |> Many of securityfilter's users use it merely because it allows |> drive-by logins. We're happy to have them (!), but this seems like |> a reasonable feature to have in the core of Tomcat. | | Given there is a demand for this, adding it as an option to the Form | Auth valve seems reasonable to me. As ever, patches are always welcome | on Bugzilla and this looks like a simple one although care will need to | be taken on the error handling. Actually, I am working on re-architecting securityfilter a bit so that it can be used outside of it's current filter-only implementation. The goal is to make it possible to write it as a Tomcat Valve, and then possibly have Tomcat use securityfilter as its authentication and authorization mechanism. Since the last release, the servlet spec has changed somewhat (last release mostly covered 2.3 spec), so I'm also working on making it as spec-compliant as possible. Thanks, - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkihlfkACgkQ9CaO5/Lv0PCiSwCfXQPdO6RfVWV7j05OfrgGcx5i rCkAn3xq8gCrwfBwpc3MFaGJQPLwRcuJ =BfZs -----END PGP SIGNATURE----- --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
