-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 André,
André Warnier wrote: > However, to work around a problem of browsers not being set up properly, > I would need a servlet filter inserted *before* jCIFS in the chain, > which would : > - detect if a client attempts a Basic (or Digest) authentication > - if yes, either return a static non-no html page top the client > immediately as a response, or re-direct the client to such a page (1) > - if no, then simply let the request through to jCIFS and the application So... the user is rejected if they are using Basic or Digest authentication? That seems backward. > I can write such a servlet filter myself, but if it already exists I > might as well save myself the time. Didn't I already write this one for you? ;) > something usable under Tomcat and offering capabilities similar to the > mod_rewrite module of Apache would also interest me. You could check out http://tuckey.org/urlrewrite/, but I think that mod-rewrite is a full Swiss Army Chainsaw while urlrewrite is more of a santoku knife. > (1) and, as a subsidiary question, what would the Tomcat gurus here > suggest as the best alternative between [redirect versus not]? That depends on what you want your users' experiences to be. What if they hit RELOAD? Do you want to re-run the test just in case they have logged-in again? My guess is that you'll want them to be able to re-load, so I wouldn't redirect. On the other hand, if you want to essentially ignore reloads and continue showing the "go away" page, then you should do a redirect. It seems more likely that you'll want to return a 401 response to the initial request, rather than returning any 3xx response. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkjSgSQACgkQ9CaO5/Lv0PDDNwCgvqIMD+K4PYlTO7QZMjZbI77s 8kwAniT1ayMQ6DHG6gqOpbgM4L7Eia0V =+X87 -----END PGP SIGNATURE----- --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
