On Feb 6, 2009, at 10:20 AM, Dave Pawson wrote:
2009/2/6 Caldarale, Charles R <chuck.caldar...@unisys.com>:
From: Dave Pawson [mailto:dave.paw...@gmail.com]
Subject: Re: TC6 ${CATALINA_HOME}/conf/web.xml Is this the
place to constrain the mime type?
I'm coming down in favour of a valve, rather than a filter,
to make it container specific,
Which is a good reason not to use a valve. Unless you need access
to Tomcat internals, use a filter.
? Unclear why Charles?
To make it 'filter' all server traffic?
AFAIK I don't need access to any internals.
You seem to be making this much more complicated than it needs to be.
First, if you really need your templates to be secure, this won't
solve the problem because someone can easily duplicate your client.
And if you don't /really/ need it secure, why do it?
If you do need it secure, why not just use a security constraint. If
there are just a few people that need to access the templates, you
could use the default tomcat-users.xml setup - easy.
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#MemoryRealm
best,
-Rob
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
